Defensive Cyber Operations Watch Officer

Resource Management Concepts, Inc. (RMC) provides professional management and technology services to government and commercial clients. Our mission is to deliver innovative solutions that protect and strengthen the people, infrastructure, and environment of the United States.

Position Overview
RMC is seeking a DCO Watch Officer to support cybersecurity operations within a 24/7/365 environment. This role leads and mentors Tier 1 analysts, ensuring continuous monitoring and defense of subscriber networks against unauthorized access, malicious activity, and other cyber threats. The DCO Watch Officer promotes operational excellence through effective task management, performance monitoring, incident coordination, and adherence to established frameworks and policies.

Key Responsibilities

• Lead and oversee incident response (IR) and investigations, ensuring accurate documentation and quality control.
• Coordinate with reporting agencies and subscriber sites for timely and accurate incident reporting.
• Analyze validated security incidents and determine severity and impact in accordance with CJCSM 6510.01B.
• Perform log correlation and analysis using enterprise tools to identify trends or anomalies.
• Conduct network and host-based digital forensics across Windows and other operating systems.
• Support development and deployment of Intrusion Detection/Prevention System (IDS/IPS) signatures.
• Maintain up-to-date knowledge of cybersecurity concepts, tools, and protocols.
• Review tickets and analysis results to ensure quality and consistency.
• Document and communicate shift updates through turnover briefs and roll-up reports.
• Develop and maintain Standard Operating Procedures (SOPs) in compliance with CJCSM 6510.01B and related directives.
• Mentor Tier 1 analysts to enhance triage and response capabilities.
• Support operations across three Regional Operations Centers (ROC) on a four ten-hour shift schedule.

Requirements

• Active DoD Secret clearance with eligibility for Top Secret / SCI.
• Bachelor’s degree in a related discipline and at least 3 years of experience, or 6 years of experience within a cybersecurity operations or SOC environment.
• Ability to work overtime and travel up to 10% as needed.
• Meets DoD 8570 Information Assurance Technical (IAT) Level II certification requirements.
• Meets operational cybersecurity standards, including Computer Network Defense (CND) requirements.

Preferred Qualifications

• Experience using log aggregation and analysis tools such as Splunk, Elastic, or Microsoft Sentinel.
• Familiarity with IDS/IPS, host-based security, and OS logging tools.
• Hands-on experience with digital forensics on Windows and/or Linux systems.
• Proven background in threat hunting or incident response.
• Working knowledge of CJCSM 6510.01B standards.
• Strong analytical skills and a structured approach to problem-solving.
• Excellent communication and technical writing skills.

Benefits

At RMC, we're committed to your career growth! RMC differentiates itself from other firms through its investment in our employees. We invest our resources to train, certify, educate, and build our employees.

RMC can offer you a great place to work with a small company feel and give you the experience, tuition assistance, and certifications that will take your career to the next level. This also includes a competitive paid vacation package with 11 paid federal holidays. Additionally, we also offer high-quality, low-deductible healthcare plans, pet insurance, and a competitive 401K package.

Salary at RMC is determined by various factors, including but not limited to location, a candidate's specific combination of education, knowledge, skills, competencies, and experience, as well as contract-specific requirements.