Cyber Ops Countermeasures Engineer with Security Clearance


Tyto Athene, LLC

Tyto Government Solutions, Inc. has an opening for a Cyber Operations Countermeasures Engineer located at Fort Meade, Maryland to support the GSM-O II contract in providing leadership for the Defensive Cyber Operations (DCO) activities for the Defense Information Systems Agency’s (DISA) global Information Technology enterprise. Responsibilities: Direct and track enterprise countermeasure actions and assess the effectiveness of countermeasures on an ongoing basis.
Analyze high volumes of logs, network data (e.g., Netflow, PCAP), and other attack artifacts in support of incident investigations.
Understand the life cycle of network threats, attacks, attack vectors and methods of exploitation with an understanding of intrusion set tactics, techniques and procedures (TTPs).
Collaborate with team members and Subject Matter Experts (SMEs) to create and validate countermeasures in accordance with (IAW) the DoDIN boundary defense posture.
Maintain situational awareness of cyber activity by reviewing DoD, Intelligence Community and open source reporting for new vulnerabilities, malware or other threats that have the potential to impact the DoDIN.
Support mission-critical Continuity of Operations (COOP). Required:
Active Top Secret/SCI clearance.
Bachelor’s degree from an accredited college in a related discipline and 8+ years of professional experience; additional related years of experience is accepted in lieu of a degree.
DoD-8570 IAT Level II baseline certification (Security+ CE or equivalent) to start and able to obtain CSSP-Analyst certification within 180 days of start date.
Proficient understanding of Cyber Network Defense (CND) regarding requirements for protect, detect, respond, and sustain within a Computer Incident Response organization.
Advanced understanding of TCP/IP, common networking ports and protocols, traffic flow, system administration, OSI model, defense-in-depth and common security elements.
Experience in intelligence driven defense and/or Cyber Kill Chain methodology
This position is 100% onsite. Preferred:
Experience with DISA and DoD Networks.
Experience with malware analysis concepts and methods.
Advanced Certifications such as SANS GIAC/GCIA/GCIH, CISSP or CASP. About Tyto Athene
Tyto is an IT services and solutions company that provides mission-focused digital transformation to enhance the client experience and enable them to achieve desired outcomes. Tyto’s services and solutions embody its domain expertise in four major Technology domains: Network Modernization, Hybrid Cloud, Cyber Security, and Enterprise IT. Tyto offers a broad range of service delivery models including design/install projects, Managed Services, and ‘As-a-Service’. With over fifty years of experience, Tyto supports Defense, Intelligence, Space, National Security, Civilian, Health and Public Safety clients across the United States and around the globe.

To apply for this job please visit