Our DoW CSSP operates 24x7x365 to defend the network. This role requires shift work, which means you will likely work nights, weekends, and federal holidays. You must be fully prepared and willing to commit to this schedule.
Schedule: 2200 – 0600, Tuesday - Saturday. May be requested to work evenings and weekends to meet program and contract needs.
Location: Onsite Ft Belvoir, VA
Schedule: 2200 – 0600, Tuesday - Saturday. May be requested to work evenings and weekends to meet program and contract needs.
Location: Onsite Ft Belvoir, VA
Clearance requirement: Active DoD Top Secret- must be SCI eligible
Type of Environment: Office
Amount of travel: 10%
The Cyber Security Specialist plays a critical role in protecting DTRA's enterprise network by providing 24/7 cybersecurity monitoring, threat detection, and incident response support. Working alongside Cybersecurity Service Provider (CSSP) analysts, engineers, and agency stakeholders, you will help identify emerging threats, assess risk, investigate security events, and support the defense of mission-critical systems.
This position is ideal for candidates who enjoy threat hunting, cybersecurity operations, incident response, and working in a fast-paced environment focused on protecting national security interests.
Key Responsibilities
- Collect and analyze network and/or host artifacts from a variety of sources to include logs, system images and packet captures to characterize activity, determine root cause, operational impact, and to enable rapid remediation and/or mitigation of cyber threats within the Enterprise Network through the investigation process.
- Perform initial cyber incident triage; to include determining initial scope, urgency, and potential impact; identifying the specific vulnerability; escalating incidents to Tier II analysts.
- Must be familiar with the DoDI 8530.01 (Cybersecurity Activities Support to DoD Information Network Operations).
- Manage and document cyber defense incidents from initial detection through escalation.
- In support of the DTRA J6C Cybersecurity Department, the Cyber Security Analyst will provide the required resources and expertise to support 24x7x365 cybersecurity monitoring and response across DTRA’s distributed network operations environment.
- Working with the DTRA J6C, contractor CSSP analysts and engineers shall collaborate with various teams throughout the agency to process intelligence, determine threat, develop mitigations, monitor for attacks, and assess risk while providing cyber based Situational Awareness to agency leadership and stakeholders.
- The Cyber Security Specialist will monitor computer network defense services in a manner that effectively safeguards the confidentiality, integrity, and availability of DTRA-supported network environments and Information Technology infrastructure.
- The Cyber Security Specialist will provide the required resources and expertise to ensure compliance with DoD CSSP Evaluators Securing Metrics (ESM). In addition, the Cyber Security Specialist will provide support within the existing CSSP structure which includes four simultaneously running processes tooled to assist and defend the system subscriber. The Cybersecurity Analyst is responsible for network threat monitoring across a variety of tools.
- The analyst must also be proficient in conducting research on threats and adversaries across various open source and government database platforms. The ability to work effectively within a team is essential, as the analyst will be required to share and discuss information discovered during the research and monitoring process.
Qualifications
- Must have Active DoD Top Secret clearance
- IAT Level II certification and CSSP Analyst certification (Security+ CE or better, CEH or better)
- Computing Environment certification desired (Windows Server 2022, Red Hat security, Splunk Power User etc.)
- Experience with open-source research, analyzing network traffic, analyzing windows logs, experience with network and host-based security systems, experience with SIEMs, basic knowledge of network topography, intermediate understanding of network protocols, and through understanding of the OSI model.
- Experience with Splunk and Trellix ESS (McAfee HBSS)
- Minimum 1 year of cyber security analyst experience or 3 years of IT experience
Why Join Us?
This role offers the opportunity to directly support a mission-focused cybersecurity program protecting critical government systems. You'll work alongside experienced cybersecurity professionals, leverage advanced security tools, and play a key role in defending against evolving cyber threats.
DESIRED QUALIFICATIONS
- SANS GCIH or similar certification
- Tanium Interact Module experience
- Wireshark experience
- Open source research experience
- PowerShell and Bash use
- 1 year experience working at a CSSP
- Familiarity with CJCSM 6510.01B
SPAHR is an equal opportunity employer, and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status.
Who We Are
Spahr is an SBA certified women owned and service disabled owned small business offering information technology and management consulting services to DoD and federal customers. Our dedicated and diverse employees provide high quality services to our customers. Our current core focus is software development, data analytics and software engineering. We also provide specialized management consulting services
Our CEO serves on the Board of Directors for the National Veteran Small Business Coalition. The NVSBC provides training, networking, advocacy for veteran and service disabled veteran owned small businesses in the federal and DoD market. This allows veteran entrepreneurs to start, operate, sustain and grow their business and ensure they are procurement ready.
Spahr participates in the SBA Mentor Protégé Program to promote and accelerate the maturation and evolution of its proven performance by strategically leveraging the resources, expertise, and experience of the mentor, TekSynap.
Above all else, we at Spahr value our employees. To join our team is to join our extended family. Every employee is a mission multiplier who brings something unique to the table, and we love learning from each other. We hear from our employees that they enjoy working for leaders who not just lead but are caring and compassionate. We hope you consider joining our growing team!
Above all else, we at Spahr value our employees. To join our team is to join our extended family. Every employee is a mission multiplier who brings something unique to the table, and we love learning from each other. We hear from our employees that they enjoy working for leaders who not just lead but are caring and compassionate. We hope you consider joining our growing team!
(if you already have a resume on Indeed)

