Cybersecurity Operations Lead

Job ID 2613483<br><br><strong>Location </strong>Arlington, VA, US<br><br><strong>Date Posted </strong>2026-06-09<br><br><strong>Category </strong>Cyber<br><br><strong>Subcategory </strong>Cybersecurity Ops<br><br><strong>Schedule </strong>Full-Time<br><br><strong>Shift </strong>Day Job<br><br><strong>Travel </strong>Yes - 10% of the time<br><br><strong>Minimum Clearance Required </strong>TS.SCI_wPoly<br><br><strong>Clearance Level Must Be Able to Obtain </strong>None<br><br><strong>Potential for Remote Work </strong>ORA_ON_SITE<br><br><strong>Description<br><br></strong>SAIC is seeking qualified applicants to support a cutting-edge data, analytics, and AI platform. The Cyber Operations Lead is a critical role in the day to day understanding, workflows, and triage of tasking assignments to 10+ cyber teams who are also working with other task areas that handle customer relationships, service portfolio and catalog management, software engineering & development, data/AI engineering, IT systems operations, and use case intake and analytics for DoW enterprise-scale mission objectives <strong>expected in Spring/Summer 2026.<br><br></strong><em><strong>Positions are contingent pending contract award.</strong></em> <br><br>The work will be performed in Alexandria, Northern Virginia. Some work may be performed remotely, subject to Government approval. <br><br><strong>Job Responsibilities<br><br></strong><ul><li>Maintain enterprise-wide operational awareness of cyber tasking across 10+ teams by actively monitoring and managing ServiceNow queues, ensuring ticket accuracy, status integrity, and SLA adherence. </li><li>Serve as the central triage and prioritization authority for incoming cyber work, aligning assignments with mission priorities, team capacity, and operational urgency. </li><li>Provide direct operational reporting to the CISO and government customer, delivering timely status updates, risk identification, and actionable insights on cyber tasking and performance. </li><li>Lead daily operational synchronization efforts, including tracking deliverables, identifying bottlenecks, and escalating issues impacting mission execution. </li><li>Act as a primary coordination point between cyber teams, program leadership, and a 450+ staff environment, ensuring consistent communication and alignment across stakeholders. </li><li>Influence and optimize ServiceNow workflows and ticketing practices to align with evolving cyber operational processes and executive priorities. </li><li>Oversee knowledge management practices, including development and maintenance of SOPs, process documentation, and operational playbooks. </li><li>Track and analyze operational metrics (e.g., ticket throughput, aging, SLA compliance), providing data-driven recommendations to improve efficiency and service delivery. <br><br></li></ul><strong>Qualifications<br><br></strong><ul><li>Bachelors & 14+ years of related experience, Masters & 12+ years of experience, or PhD or JD & 9+ years of experience </li><li>Active TS/SCI CI Poly Clearance is required.<br><br></li></ul><strong>Desired Knowledge, Skills, Abilities, And Competencies<br><br></strong><ul><li>Advanced proficiency as a ServiceNow power user, including queue management, reporting, dashboarding, and workflow utilization (limited administrative access preferred). </li><li>Strong understanding of cyber operations functions such as incident response, vulnerability management, and enterprise security operations. </li><li>Demonstrated ability to operate at an SME/lead level with direct exposure to executive leadership (e.g., CISO), including clear and concise reporting of operational status and risks. </li><li>Proven ability to maintain situational awareness and coordinate across multiple teams in a high-tempo, mission-driven environment. </li><li>Familiarity with DoD cybersecurity environments, including exposure to RMF, impact levels (IL2–IL6), and data protection practices. </li><li>Relevant DoD 8140 (or 8570 equivalent) certification required; ITIL Foundation or higher preferred.</li></ul>