Haystack
← Back to Jobs
Technology

Lead Cybersecurity Engineer (SME) USSOCOM - Zero Trust

KentroTampa, FL🇺🇸United StatesPosted 17 Jul 2026

Why This Role Stands Out

Advance your cybersecurity career by leading the implementation of cutting-edge Zero Trust initiatives for USSOCOM, leveraging your expertise in UEBA and SOAR to significantly enhance threat detection and response capabilities. This impactful role is ideal for a technically adept engineer eager to architect enterprise security solutions and collaborate with a dedicated team to drive mission success. Apply today to contribute to critical national security efforts and foster your professional growth.

Quick Overview

Work Type
On Site
Level
Mid Senior

Job Description

Overview

Thank you for considering IT Concepts dba Kentro, where innovation drives opportunity and collaboration leads to success. Our dynamic community of experts is fully committed to advancing our customers' missions, fostering professional growth, and making a positive impact on our communities. By joining our supportive community, you will find that Kentro is dedicated to your personal and professional development. Together, we can drive meaningful change, spark innovation, and achieve extraordinary milestones.

Kentro is seeking a highly technical Lead Cybersecurity Engineer to lead the design, implementation, integration, and sustainment of User and Entity Behavior Analytics (UEBA) and Security Orchestration, Automation, and Response (SOAR) capabilities supporting the USSOCOM Enterprise Data, Applications, and Training (EDAT) Zero Trust initiative. This role serves as the technical lead responsible for integrating and operationalizing the Department of Defense (DoD) Zero Trust Visibility & Analytics and Automation & Orchestration pillars while providing advanced Tier III and Tier IV engineering support for mission-critical cybersecurity systems across the USSOCOM enterprise.

As the Lead Cybersecurity Engineer, you will architect and engineer enterprise security solutions that enhance threat detection, automated response, continuous monitoring, and cyber resiliency. You will collaborate with Zero Trust architects, SOC engineers, identity engineers, data security engineers, cloud engineers, and government stakeholders to integrate security telemetry from identity, endpoint, network, cloud, and data protection platforms into a unified security operations capability.

Location: Onsite in Tampa, FL

Responsibilities

  • Working with the customer and other support contracts to ensure timely and reliable integration of Zero trust efforts.
  • Working collaboratively with other ISSOs and key stakeholders to the RMF process.
  • Creating and managing RMF artifacts and the entire ATO lifecycle.
  • Coordinating with Cybersecurity SMEs to identify requirements and process improvements.
  • Assisting cybersecurity assessors as required.
  • Interpreting DISA STIG requirements.
  • Acts as a member of a team, supporting teammates and collaborating with a "do what it takes" attitude to ensure product and team success.
  • Hands on approach to performing your own assessments with enclave and network infrastructure devices.
  • Ensuring product quality and timeliness of work, providing advice and guidance, resolving problems to meet objectives, and providing periodic performance reports.
  • Provide input on best practices and procedures.
  • Developing new and refining existing processes to enhance quality and productivity.

Qualifications

  • Education: Master's degree or 6+ additional years of cybersecurity experience in lieu of a degree and PMP certification.
  • Experience: 12+ years of experience in an enterprise and/or cybersecurity-focused environment.
  • Technical Skills:
  • Experience with Splunk administration and engineering.
  • Experience with Splunk Enterprise Security (ES) operations and configurations.
  • Experience with Splunk telemetry integration, workflow engineering, and tuning
  • Experience with Microsoft enterprise environment administration and engineering.
  • Experience with Microsoft Enterprise Security (ES) operations and configurations.
  • Experience with Microsoft UEBA/SOAR telemetry integration, workflow engineering, and tuning
  • Proficiency with Unix and Windows environments.
  • Certifications: DoD 8570 IAT Level III/ DoW 8140 (511) Advanced certification (e.g., CISSP) required.

Clearance Requirement:

  • Active TS/SCI

Skills

Splunk
Zero Trust

Similar jobs