ZipRecruiter

Log In

1

Defensive Cyber Operations Jobs (NOW HIRING)

Core4ce

IL ยท On-site

Support defensive cyber operations initiatives across on-premises and cloud environments * Help develop and improve operational processes, procedures, SOPs, metrics, dashboards, and reporting

Goldbelt, Inc.

Cyber Planner

Colorado Springs, CO ยท On-site

$120K - $140K/yr

Nisga'a CIOPS delivers cleared professionals to support civilian and DoD customers worldwide across intelligence support, cyber/defensive cyber operations, IT O&M, infrastructure modernization ...

Nisga'a Ciops

Cyber Planner

Colorado Springs, CO ยท On-site

$120K - $140K/yr

Nisga'a CIOPS delivers cleared professionals to support civilian and DoD customers worldwide across intelligence support, cyber/defensive cyber operations, IT O&M, infrastructure modernization ...

ECS

Defensive Cyber Assessment Analyst - Senior

Fairfax, VA ยท On-site

$99K - $128K/yr

This position supports Task 3 - Cybersecurity Operations Support - by assisting with security ... The Defensive Cyber Assessment Analyst - Senior operates within a technical environment that ...

Nisga'a Ciops

Cyber Planner

Colorado Springs, CO ยท On-site

$120K - $140K/yr

Nisga'a CIOPS delivers cleared professionals to support civilian and DoD customers worldwide across intelligence support, cyber/defensive cyber operations, IT O&M, infrastructure modernization ...

next page

Showing results 1-20

All JobsDefensive Cyber Operations Jobs

Defensive Cyber Operations information

See salary details

$38.5K

$58.2K

$87K

How much do defensive cyber operations jobs pay per year?

As of Jun 12, 2026, the average yearly pay for defensive cyber operations in the United States is $58,171.00, according to ZipRecruiter salary data. Most workers in this role earn between $48,000.00 and $64,500.00 per year, depending on experience, location, and employer.

Can you make $500,000 a year in cyber security?

Defensive Cyber Operations roles typically do not reach $500,000 annually, but senior positions such as Chief Information Security Officer or cybersecurity executives can earn that level or higher with extensive experience, certifications, and leadership responsibilities. Achieving such salaries often requires advanced skills, a strong track record, and working in high-demand industries or organizations with large security budgets.

What are defensive cyber operations?

Defensive cyber operations involve protecting computer networks and systems from cyber threats by implementing security measures such as firewalls, intrusion detection systems, and vulnerability management. Professionals in this field monitor networks, analyze security incidents, and respond to cyber attacks to maintain the integrity and confidentiality of digital assets.

What are the key skills and qualifications needed to thrive in Defensive Cyber Operations, and why are they important?

To thrive in Defensive Cyber Operations, you need a solid grounding in network security, threat analysis, and incident response, often backed by a degree in cybersecurity or related fields. Familiarity with security information and event management (SIEM) tools, intrusion detection/prevention systems, and certifications like CompTIA Security+ or CISSP are typically required. Strong problem-solving skills, attention to detail, and effective communication help professionals excel when mitigating threats and collaborating with teams. These skills and qualifications are crucial for proactively defending organizational assets and ensuring robust cyber resilience.

What is the difference between Defensive Cyber Operations vs Cybersecurity Analyst?

AspectDefensive Cyber OperationsCybersecurity Analyst
CertificationsCompTIA Security+, CISSP, CEHCompTIA Security+, CISSP, CEH
Work EnvironmentMilitary, government, or specialized security teamsCorporate, government, or consulting firms
Primary FocusProactive defense, threat hunting, incident responseMonitoring, analyzing, and responding to security threats
Industry UsagePrimarily in government and military sectorsWidely in private and public sectors

Defensive Cyber Operations and Cybersecurity Analysts share similar certifications and work environments, but Defensive Cyber Operations focus more on proactive defense and threat hunting within specialized teams, often in government or military settings. Cybersecurity Analysts typically monitor and respond to threats across various industries, emphasizing analysis and incident response.

Is CISO a high paying job?

A Chief Information Security Officer (CISO) is typically a high-level executive role with a high salary, often exceeding six figures, due to its strategic importance and leadership responsibilities in cybersecurity. Compensation varies based on company size, industry, and experience, but CISOs generally earn among the top salaries in cybersecurity careers. Strong leadership, risk management skills, and relevant certifications like CISSP or CISM are common requirements for this role.

What are some typical challenges faced by professionals in Defensive Cyber Operations, and how can new team members prepare for them?

Professionals in Defensive Cyber Operations often encounter challenges such as rapidly evolving threats, high-pressure incident response situations, and the need to coordinate across multiple departments. New team members can prepare by staying current with the latest threat intelligence, practicing effective communication skills, and familiarizing themselves with the organization's security tools and protocols. Building strong relationships with IT, legal, and management teams also helps ensure smooth collaboration during security events.
More about Defensive Cyber Operations jobs
What cities are hiring for Defensive Cyber Operations jobs? Cities with the most Defensive Cyber Operations job openings:
What job categories do people searching Defensive Cyber Operations jobs look for? The top searched job categories for Defensive Cyber Operations jobs are:
Defensive Cyber Operations jobs near you
Infographic showing various Defensive Cyber Operations job openings in the United States as of June 2026, with employment types broken down into 89% Full Time, 1% Part Time, 1% Contract, 8% Nights, and 1% Summer. Highlights an 92% Physical, 3% Hybrid, and 5% Remote job distribution, with an average salary of $58,171 per year, or $28 per hour.
Cyberspace Operations Team Lead

Cyberspace Operations Team Lead

Core4ce

IL โ€ข On-site

Full-time

Medical, Dental, Vision, Retirement, PTO

Posted 14 days ago

Job description

Job Description
We are seeking aCyberspace Operations Team Leadto support the United States Transportation Command (USTRANSCOM) under the TRANSCOM Cyberspace Operations Forces and Support (COF II) program. In this role, you will lead a team responsible for cybersecurity operations supporting mission-critical Department of Defense networks, systems, and cloud environments. This position is ideal for a cyber operations leader with strong experience in incident response, threat analysis, detection engineering, and defensive cyber operations within a DoD or federal environment. You will serve as a key interface with government stakeholders, mission partners, and internal technical teams to help protect and defend USTRANSCOM's enterprise.
Responsibilities:
  • Lead day-to-day cybersecurity operations in support of USTRANSCOM's Cybersecurity Service Provider (CSSP) mission
  • Supervise and guide personnel performing:

- Intrusion detection and monitoring
-Incident response and incident management
-Cyber threat analysis
-Cyber forensics
-Analytic and orchestration development
-Detection engineering
  • Serve as the primary contractor lead for cyber operations-related activities and deliverables
  • Coordinate with government stakeholders, CSSP subscribers, and mission partners including CPTs, USCYBERCOM, DISA, and other cyber defense organizations
  • Support defensive cyber operations initiatives across on-premises and cloud environments
  • Help develop and improve operational processes, procedures, SOPs, metrics, dashboards, and reporting
  • Provide technical and strategic input on cyber operations capabilities, services, and mission priorities
  • Support cyber incident investigations, reporting, response actions, and after-action activities
  • Contribute to continuous improvement of cyber operations, analytics, and detection capabilities
  • Provide weekly summaries and operational status updates to leadership
  • Support after-hours and weekend response requirements for incidents and exercises as needed

*This position is designed to be flexible, with responsibilities evolving to meet business needs and enable individual growth.
Required Qualifications:
  • ActiveTop Secret clearanceis required
  • U.S. citizenship is required
  • Bachelor's degree in Cybersecurity, Information Technology, Computer Science, Engineering, Information Systems, or a related field; equivalent experience may be considered
  • 7+ years of information assurance or cybersecurity experience
  • 5+ years of experience in cyber analytic development, incident response, threat analysis, and cybersecurity engineering and/or architecture
  • Experience leading cybersecurity operations teams in a DoD, federal, or similarly complex mission environment
  • Strong knowledge of NIST and DoD cyber policies, standards, and guidance
  • Experience with defensive cyber operations, cyber incident response, and threat analysis
  • Understanding of cybersecurity metrics, auditing, and operational reporting
  • Familiarity with zero trust concepts such as least privilege, access control, micro-segmentation, orchestration, and privileged access management
  • Experience securing virtualized and cloud-based environments
  • Strong communication skills and the ability to work effectively with technical and non-technical stakeholders
  • Must be eligible for and able to maintainSCI access
  • Must meet all contract and customer requirements for access to government systems and facilities
  • Must meet applicableDoD Cyber Workforce Framework (DCWF)qualification requirements

Preferred Qualifications:
  • Experience supporting a DoD Cybersecurity Service Provider (CSSP), Combatant Command, or similar mission
  • Familiarity with SIEM, SOAR, EDR, EPP, NIDS, and other enterprise cyber defense technologies
  • Knowledge of network architecture, firewalls, proxy services, WAFs, ports, protocols, and network segmentation
  • Experience with Microsoft Windows, Red Hat Linux, and Unix security configurations
  • Familiarity with virtualization and cloud security technologies
  • Experience creating technical documentation, SOPs, or operational procedures

Experience with one or more of the following is highly desirable:
  • Splunk, Microsoft Sentinel, Elasticsearch, Tines, Palo Alto XSOAR, CrowdStrike Falcon, Trellix, Tanium, Microsoft Defender, Cisco Secure Network Analytics, Cisco Firepower / FMC, Snort, Zeek, Palo Alto Firewalls, F5 Advanced WAF,AWS WAF, VMware Kubernetes Docker, Podman

Why Work for Us?
Core4ce is a team of innovators, self-starters, and critical thinkers-driven by a shared mission to strengthen national security and advance warfighting outcomes.
We offer:
  • 401(k) with 100% company match on the first 6% deferred, with immediate vesting
  • Comprehensive medical, dental, and vision coverage-employee portion paid 100% by Core4ce
  • Unlimited access to training and certifications, with no pre-set cap on eligible professional development
  • Tuition assistance for job-related degrees and courses
  • Paid parental leave, PTO that grows with tenure, and generous holiday schedules
  • Got a big idea? At Core4ce, The Forge gives every employee the chance to propose bold innovations and help bring them to life with internal backing.

Join us to build a career that matters-supported by a company that invests in you.
All qualified applicants will receive consideration for employment without regard to race, color, religion, sex (including pregnancy), national origin, disability, veteran status, age, genetic information, or other legally protected status.

Apply