ZipRecruiter

Log In

1

Cybersecurity Operations Jobs in Virginia (NOW HIRING)

ECS

Cybersecurity Support Lead - Senior

Fairfax, VA · On-site

$99K - $128K/yr

Supporting Task 3 - Cybersecurity Operations Support, this senior role leads penetration testing and adversarial assessments of networks, systems, applications, and enclaves across the ARNG ...

CSV-Taurean

Cybersecurity Lead

Quantico, VA · On-site

$117K - $158K/yr

Leads cybersecurity operations, ensuring compliance, accreditation, and Zero Trust integration. Responsibilities: * Direct RMF/ATO package development and sustainment. * Oversee ACAS scanning and ...

CSV-TAUREAN

Cybersecurity Lead

Quantico, VA · On-site

$117K - $158K/yr

Leads cybersecurity operations, ensuring compliance, accreditation, and Zero Trust integration. Responsibilities: * Direct RMF/ATO package development and sustainment. * Oversee ACAS scanning and ...

MANTECH

Senior Cyber Security Analyst

Springfield, VA · On-site

$104K - $134K/yr

Providing leadership and advanced Cyber Security Operations Center (CSOC) support, managing cyber and network sensor activities * Performing security event and incident correlation using information ...

MANTECH

Senior Cyber Security Analyst

Springfield, VA · On-site

$104K - $134K/yr

Providing leadership and advanced Cyber Security Operations Center (CSOC) support, managing cyber and network sensor activities * Performing security event and incident correlation using information ...

asrcfh

Cybersecurity Lead Manager

Alexandria, VA · On-site

$118K - $160K/yr

CYBERSECURITY LEAD MANAGER (SIEM & ENTERPRISE OPERATIONS FOCUS) ASRC Federal is seeking a highly qualified Cybersecurity Lead Manager (SIEM & Enterprise Operations Focus) to support the Department of ...

ECS

Cyber Security Analyst/Engineer

Quantico, VA · On-site

This combined role is responsible for both cyber security operations and systems hardening across the enterprise IT environment and AWS GovCloud infrastructure - including F5 BIG-IP and Palo Alto ...

New

asrcfh

Cybersecurity Lead Manager

Alexandria, VA · On-site

$118K - $160K/yr

CYBERSECURITY LEAD MANAGER (SIEM & ENTERPRISE OPERATIONS FOCUS) ASRC Federal is seeking a highly qualified Cybersecurity Lead Manager (SIEM & Enterprise Operations Focus) to support the Department of ...

ECS

Cybersecurity Analyst (CDAP) Lead - Senior

Fairfax, VA · On-site

$99K - $128K/yr

This position supports Task 3 - Cybersecurity Operations Support - and leads Cybersecurity Data Analytics Platform (CDAP) analytic operations that strengthen Defensive Cyberspace Operations ...

next page

Showing results 1-20

All JobsCybersecurity Operations JobsCybersecurity Operations Jobs in Virginia

Cybersecurity Operations information

See Virginia salary details

$17

$43

$60

How much do cybersecurity operations jobs pay per hour?

As of Jun 12, 2026, the average hourly pay for cybersecurity operations in Virginia is $43.77, according to ZipRecruiter salary data. Most workers in this role earn between $34.33 and $54.09 per hour, depending on experience, location, and employer.

What do cybersecurity operations do?

Cybersecurity operations involve monitoring, detecting, and responding to security threats and incidents to protect an organization’s information systems. Professionals in this field use tools like intrusion detection systems, firewalls, and security information and event management (SIEM) platforms to maintain the security posture and ensure compliance. They often work in shifts and require certifications such as CISSP or Security+ to perform their duties effectively.

How much do cyber operations make?

Cybersecurity operations professionals typically earn between $70,000 and $130,000 annually, depending on experience, certifications, and location. Entry-level roles may start around $60,000, while experienced specialists with certifications like CISSP or CEH can earn higher salaries, especially in high-demand environments with advanced skills in threat detection and incident response.

What are the key skills and qualifications needed to thrive in Cybersecurity Operations, and why are they important?

To excel in Cybersecurity Operations, you need a solid understanding of network security, threat analysis, and incident response, typically supported by a degree in information security or related fields. Familiarity with security information and event management (SIEM) tools, intrusion detection systems, and certifications like CISSP or CompTIA Security+ is highly valued. Strong analytical thinking, attention to detail, and effective communication are crucial soft skills for identifying threats and collaborating with IT teams. These competencies are vital to proactively protect organizational assets, quickly mitigate cyber threats, and ensure regulatory compliance.

What jobs can you get with a cyber operations degree?

A cyber operations degree prepares individuals for roles such as Cybersecurity Analyst, Security Operations Center (SOC) Analyst, Cybersecurity Engineer, and Incident Responder. These positions involve monitoring networks, analyzing security threats, implementing defenses, and responding to cyber incidents, often requiring knowledge of security tools, protocols, and certifications like CompTIA Security+ or CISSP.

Can you make $500,000 a year in cyber security?

Cybersecurity professionals in senior roles such as security directors, chief information security officers (CISOs), or specialized consultants can earn $500,000 or more annually, especially with extensive experience, advanced certifications like CISSP or CISM, and working in high-demand industries or organizations. Entry- and mid-level positions typically have lower salaries, but compensation increases significantly with expertise, leadership responsibilities, and geographic location.

What are some common challenges faced by professionals in Cybersecurity Operations, and how can they be addressed?

Professionals in Cybersecurity Operations often face challenges such as rapidly evolving cyber threats, managing incident response under pressure, and balancing proactive monitoring with reactive defense. Staying current with new attack techniques and tools is essential, which requires continuous learning and adaptation. Collaborating closely with IT, management, and other security teams helps ensure comprehensive coverage and swift action during incidents. Regular training, effective communication, and automating repetitive tasks can help address these challenges and improve operational effectiveness.

What are cybersecurity operations?

Cybersecurity operations refer to the processes and activities involved in protecting an organization's information systems from cyber threats. This includes monitoring networks for suspicious activity, responding to security incidents, managing security tools, and ensuring compliance with security policies. Professionals in this field work to prevent, detect, and respond to cyberattacks, helping to safeguard sensitive data and maintain business continuity. Cybersecurity operations are essential in today's digital landscape where cyber threats are constantly evolving.

What is the difference between Cybersecurity Operations vs Cybersecurity Analyst?

AspectCybersecurity OperationsCybersecurity Analyst
CertificationsCompTIA Security+, CISSP, CEHCompTIA Security+, CISSP, CEH
Work EnvironmentSecurity operations centers, monitoring teamsAnalysis teams, incident response
Employer & Industry UsageOrganizations with dedicated security teamsOrganizations needing security monitoring & analysis

Cybersecurity Operations focuses on managing and monitoring security systems, incident response, and maintaining security infrastructure. In contrast, a Cybersecurity Analyst primarily analyzes security data, identifies threats, and supports incident investigations. Both roles require similar certifications and often work within the same security teams, but their daily tasks and focus areas differ.

Cybersecurity Operations jobs near you
Cybersecurity Support Lead - Senior

Cybersecurity Support Lead - Senior

ECS

Fairfax, VA • On-site

$99K - $128K/yr

Full-time

Posted 16 days ago

Job description

Position Summary
ECS is seeking a Cybersecurity Support Lead - Senior to support the Army National Guard (ARNG) Enterprise Network Operations and Cybersecurity Support (ENOCS) program. Supporting Task 3 - Cybersecurity Operations Support, this senior role leads penetration testing and adversarial assessments of networks, systems, applications, and enclaves across the ARNG enterprise to evaluate security posture and strengthen Defensive Cyberspace Operations - Internal Defensive Measures (DCO-IDM) within the DoDIN-Army-NG area of responsibility. The Cybersecurity Support Lead - Senior develops test plans, rules of engagement, and exploit methodologies; executes advanced manual and automated testing; validates remediation through retesting; and produces technical findings and executive-level risk reporting that informs mitigation and response activities across the broader ENOCS cybersecurity team.
This role directly supports a mission environment delivering DoDIN services and cyber defense for more than 120,000 users and approximately 141,000 endpoints across roughly 2,800 sites in 54 states and territories, including support to Title 10 and Title 32 missions, mobilization readiness, domestic emergency response, and classified SIPRNet operations. The position operates within ENOCS' integrated cyber environment, coordinating with organizations such as the NETCOM Global Cyber Center and DISA DCDC and contributing to enterprise security activities tied to USIEM, EDR, IDS/IPS, RMF, eMASS, and cybersecurity operations spanning classified and unclassified enclaves.
Please Note: This position is contingent upon contract award.
Responsibilities
  • Lead penetration testing and adversarial assessments of ARNG networks, systems, applications, and enclaves to identify exploitable weaknesses and evaluate enterprise security posture.
  • Develop assessment plans, rules of engagement, and exploitation methodologies that align to ARNG and DoD cybersecurity policy, operational requirements, and RMF expectations.
  • Execute advanced manual and automated exploitation activities against enterprise infrastructure and applications, then validate corrective actions through structured retesting.
  • Produce comprehensive technical reports and executive summaries that document findings, attack paths, operational risk, and prioritized mitigation recommendations for leadership review.
  • Advise cybersecurity and mission stakeholders on remediation strategies to improve resilience across classified and unclassified environments supporting DoDIN-A(NG) operations.
  • Coordinate assessment activities with Task 3 cybersecurity operations personnel and relevant Government stakeholders to support DCO-IDM objectives across the ARNG area of responsibility.
  • Support RMF-related cybersecurity activities by providing evidence, findings, and remediation validation inputs that inform eMASS records, security compliance reviews, and POA&M development.
  • Assess security effectiveness of enterprise monitoring and defensive measures in environments that leverage USIEM, EDR, IDS/IPS, and related analytics to improve detection and response.
  • Coordinate, as required, with operational partners including the NETCOM Global Cyber Center and DISA DCDC to ensure assessment activities and findings support broader ARNG cyber defense operations.

Required Qualifications
U.S. Citizenship is required
Security Clearance: Secret Eligible
Required Certifications: DCWF Work Role 631-Information Systems Security Developer - Intermediate proficiency; must hold ONE OR MORE of the following: SecurityX / CASP+, CCSP, Cloud+, CSC, GCLD, GCSA, GSEC
Experience: 7+ years of experience in cybersecurity
Education: Bachelors degree or higher in Computer Science, Cybersecurity, Data Science, Information Systems, Information Technology, or Software Engineering
  • Demonstrated experience leading penetration testing or adversarial assessments of networks, systems, applications, and enclaves.
  • Experience developing rules of engagement, test plans, and exploit methodologies for security assessments in enterprise environments.
  • Ability to perform manual and automated exploitation and conduct retesting to verify remediation effectiveness.
  • Experience producing technical assessment reports and executive-level summaries that clearly communicate findings, risk, and mitigation priorities.
  • Working knowledge of RMF processes and supporting documentation, including security compliance inputs, remediation tracking, and validation of corrective actions.
  • Experience assessing cybersecurity posture in environments that include classified and unclassified networks and enterprise-scale infrastructure.
  • Ability to coordinate effectively with cybersecurity operations, engineering, and leadership stakeholders in support of incident-driven and proactive defense activities.

Apply