Cybersecurity Service Provider; CSSP Engineering Team Lead Security Clearance

Position: Cybersecurity Service Provider (CSSP) Engineering Team Lead with Security Clearance
Job Description The Cybersecurity Service Provider (CSSP) Engineering Team Lead is the senior technical and program leader responsible for planning, directing, and coordinating all cybersecurity engineering, security infrastructure operations, monitoring, and compliance activities across classified and unclassified enclaves. This position manages and oversees CSSP Infrastructure Engineering ensuring alignment with DoD, Defense Cyber Defense Command (DCDC), U.S. Cyber Command, DISA, and Zero Trust cybersecurity requirements.

The Team Lead organizes and manages complex multi-site support operations, oversees engineering personnel, ensures compliance with high-impact cybersecurity policies, and maintains continuous protection of Government networks and information systems. This role requires senior-level technical expertise and the ability to independently lead mission-critical programs. Key Tasks & Responsibilities
* Program & Technical Leadership

* Provide day-to-day management of CSSP Engineering and Security Infrastructure teams across multiple locations and enclaves.

* Lead high-visibility cybersecurity engineering initiatives and mission-critical support operations.

* Act as technical SME and decision-maker for cybersecurity technologies, policies, and enterprise security architecture.

* Conduct structured quality reviews and ensure all engineering work meets Government standards.

* Apply comprehensive technical expertise across major tasks and security engineering activities.

* Oversee and guide cybersecurity program performance, recommending improvements and major technical changes.

* Supervise engineering teams and oversee junior staff performance.

* Independently perform functional duties across high-impact assignments.

* Security Infrastructure Engineering

* Engineer, implement, and maintain cybersecurity infrastructure, including:

* IDS/IPS, firewalls, perimeter defenses

* Endpoint Security System (ESS)

* Assured Compliance Assessment Solution (ACAS)

* SIEM technologies (e.g., Arc Sight)

* Network monitoring and forensic toolsets

* Zero Trust-aligned technologies

* Security Operations & Monitoring

* Provide 24/7/365 monitoring, security analysis, event correlation, incident response, and penetration testing.

* Monitor tools to detect and mitigate internal/external threats including malware, web attacks, unauthorized access, and data exfiltration.

* Maintain real-time situational awareness across all assigned enclaves.

* Incident Response

* Serve as central point of contact for Computer Emergency Response.

* Perform incident investigation, reporting (internal/external), coordination, and resolution.

* Ensure compliance with DoD Computer Emergency Response Team (DoD-CERT) directives.

* Vulnerability & Patch Management

* Operate and manage enterprise vulnerability scanning solutions (e.g., ACAS).

* Perform monthly scans, IAVA management, remediation actions, and reporting.

* Maintain secure configuration baselines using DISA STIGs and NSA guidelines.

* Execute SRRs/security scans and validate compliance.

* Security Engineering Lifecycle Support

* Review and approve all new equipment and system deployments across enclaves.

* Configure hardware/software for DoD-approved ports, protocols, and services (PPS).

* Perform security audits for servers, endpoints, network devices, and infrastructure components.

* Maintain continuous compliance with DoD Evaluation Scoring Metrics and JFHQ-DODIN guidance.

* Cybersecurity Program Implementation

* Establish and maintain a cybersecurity program that aligns with:

* DoDI 8500.01 (Cybersecurity)

* DoDI 8510.01 (RMF)

* DoDD 8140.01 (Cyberspace Workforce Management)

* DoD 8570.1-M

* CJCSM 6510.01

* DoD Zero Trust requirements

* STIGs and IAVA directives

* Plans, Policies, and Documentation

* Develop and maintain documentation including:

* Plan of Action and Milestones (POA&M)

* Acceptance of Risk (AOR)

* Security Override Letters (SOL)

* Configuration Management documentation

* Network and system architecture designs

* Cybersecurity policies and procedures

* Compliance inspection reports

* Enterprise Compliance & Reporting

* Ensure confidentiality, integrity, and availability of all Government systems and data.

* Report vulnerabilities and non-compliance findings to the Government with corrective action plans and timelines.

* Implement a change control process preventing unauthorized system or network modifications.

* Functional Area

s Supported

* The CSSP Engineering Team Lead oversees and supports the following primary functional areas:

* Security Infrastructure Engineering Services

* Security Event Monitoring & Analysis

* Cyber Incident Response

* Audit Support & Compliance Guidance

* Security Analysis & Reporting

* Cybersecurity Policy Review

* Program Operations & Planning

* Information Assurance Vulnerability Management

* Mission Cloud & On-Premises Security Implementation

* Emerging Technology Assessments & Process Improvements

* Desired Skills

* Expert-level understanding of DoD and DISA cybersecurity architecture, tools, and…