Operations Watch Officer

**Operations Watch Officer**
**Stuttgart, Germany**
**Minimum of a Secret Clearance Required with ability to obtain TS/SCI**

As a Cyber Security Watch Officer, you will maintain accountability of all analysts on shift. This includes mentoring, assigning tasking, and ensuring all analyst are performing their primary duty of triaging indicators

**Position Requirements and Duties**
- During campaigns, guides the IR/Investigation process ensuring tasks are being completed and properly documented in the Forensic Notes section of the campaign documentation.
- During campaigns, guides the IR/Investigation process ensuring tasks in the Analyst Notes pages are accurate and in the proper format.
- During campaigns, guides the IR/Investigation process ensuring Forensic Notes are properly vetted and the Forensic Timeline of the campaign documentation is filled out.
- During campaigns ensures proper turnover of tasks and findings within the verbal turnover and the shift roll up tab of the campaign documentation.
- Prioritizes cyber events and incidents as necessary.
- Dictates communication with all peer defensive cyber components (JFHQ DoDIN, peer CSSP, etc.) in times of incident.
- Dictates communication with all subscribers in times of incident.
- Provides cyber event/incident response and mitigation actions to subscribers.
- Ticket Verification/Quality Control
- Verify cyber event / incident ticket status and verify most recent actions are up-to-date and current with incident communications/analysis.
- Performs Quality Assurance of tickets created and of the analysis performed therein.
- Consults Watch Officers to ensure adequate manning is assigned to carry out operational objectives.
- Indicator/analysis quality control
- Assists the Training Coordinator in validation of satisfactory analysis.
- Assists the Training Coordinator in mentoring Analysts of non-satisfactory analysis.
- Conducts verbal turnover with outgoing/oncoming shift Operations Watch personnel.
- Maintains written turnover within the CSSP’s incident tracking system’s Duty book.
- Monitor for information distributed by USCYBERCOM/JFHQ DoDIN and subscriber cyber components for changes in the CPCON level.
- Communicates changes in CPCON level to appropriate subscriber personnel
- Monitor for information distributed by USCYBERCOM/JFHQ DoDIN, peer CSSPs and subscriber cyber components for TIPPER/self-reporting.
- Reports devices or critical services in a “down” state during their shift.
- Completes and disseminates Daily Operations Report to CSSP subscribers.
- Maintains an in-depth understanding of security concepts, protocols, processes, architectures, and tools.
- Mentorship of Analysts
- Assists the OPS Watch Training Coordinator as necessary to provide feedback and guidance to completed analysis.
- Assists in the Indicator Tracking page(s) (The Grid), triaging alerts when needed.
- Provides 24x7 support for the CSSP’s Incident Response capability during non-core business hours consistent with CSSP requirements as needed.

**Minimum Qualifications**
- US Citizen
- At least 2 years experience in Cybersecurity Service Provider (CSSP) environment or similar
- DoD or DoN Cybersecurity Workforce (CSWF) Certification or compliance (DoDD 8140 or SECNAV M-5239)

**Desired Qualifications**
- Knowledge of Incident Response Procedures
- Knowledge of Packet Analysis
- Knowledge of IDS/IPS solutions
- Familiarity with various Host-Based Tools
- Experience with Log Aggregation Tools
- Logical thinking and analytical ability
- Verbal and written communication ability

Travel may be required to CONUS and OCONUS sites for incident response and to support other program needs.
**Company Overview**

Adapt Forward is a cybersecurity solutions provider for some of the nation’s most valuable information systems. Leveraging advanced threat assessment technology and experience in building high-level information security infrastructure, we develop adaptive solutions uniquely tailored to our customers’ business objectives to protect sensitive data against sophisticated threats in an increasingly complex security environment.

**Summary of Benefits**
- Comprehensive Physical Wellness Package, including Medical, Dental, Vision Care, plus Flexible Spending Accounts for health
- and dependent-care are included in our standard benefits plan.
- 401k Retirement Plan with Matching Contribution is immediately available and vested.
- Annual Training Budget to be used for conference attendance, school enrollment, certification programs, and associated travel expenses.
- Eleven Federal Holidays, plus three weeks of PTO/vacation/sick leave that accrues at a rate of ten hours per month.
- Employee Assistance Program: Counseling/legal assistance and other employee well-being programs are also offered.

**Equal opportunity employer as to all protected groups, including protected veterans and individuals with disabilities.**

BH74MIwrBw