Experience Inc. Jobs

Job Information

Phia Cyber Security Operations Center(CSOC) Watch Officer in Arlington, Virginia


OVERVIEW: phia LLC is seeking a highly skilled cyber security operations analyst to join our team of qualified, diverse individuals.This position will be located in Arlington, Virginia supporting the National Coordinating Center for Communications (NCCIC) 24x7 Watch Floor.

The Cyber Security Operations Center (CSOC) Watch Officer performs a critical role in capturing, documenting and correlating cyber incidents, events and requests for information for the DHS National Cybersecurity & Communications Integration Center (NCCIC).


  • Support the development of staff schedules and staffing forecasts for approval.

  • Ensure shift members follow the appropriate incident escalation and reporting procedures.

  • Provides support promptly and efficiently through front-line telephone and email communications.

  • Utilize modeling/simulation tools in conjunction with subject matter expertise in commercial telecommunications networks.

  • Develop analyses and produce reports and recommendations for mitigating threats and ensuring availability despite threats to or disruptions of the infrastructure.

  • Assess the impacts of threats (including adversarial country threats) to the essential communications infrastructures and provide detailed technical recommendations and full-scoped evaluations and testing of potential solutions to mitigate threats.

  • Ingest, triage, prioritize, assign, track, document, and manage incidents and results.

  • Provide technical support in response to computer security incidents.

  • Correlate, map, and fuse any and all incident information for the development and distribution of cyber alerts and notices, or other products as required.

  • Document technical details of current or potential intruder threats consistent with NIST 800-61: Computer Security Incident Handling Guide.

  • Must be flexible and able to work within a 24X7X365 support environment.

  • Manage information, requests, that may be considered out of the scope of the incident management service and route appropriately.

  • Coordinate, communicate, share information, and work closely with DHS components

  • Assist with developing and maintaining Standard Operating Procedures.

  • May attend meetings and discussions, interface with industry or outside agencies for the purpose of taking notes and doing assessments.



  • A Bachelor’s Degree and a minimum of 3-5 years related technical experience required for the level 2 role.

  • Active Top Secret Security Clearance with the ability to obtain a TS/SCI is required.

  • Ability to obtain and maintain a favorably adjudicated DHS background investigation (EOD).

  • Experience implementing technical specifications, system requirements and other related application design information.

  • Strong background in a telecommunications discipline, knowledge of cybersecurity and IT security and intermediate knowledge of working with Geospatial Visualization Systems preferably Esri ARCGIS products.

  • Experienced in 24/7/365 working environments with extensive coordination/collaboration with federal/state/local agencies using an all-hazard methodology approach.

  • Possess strong interpersonal skills and ability to multitask within different platforms to maintain situational awareness of current events or tasks pertinent to the customer and stakeholders.

  • Must possess broad expertise in research, analysis, and writing skills and be able to perform triage on questions, issues, or events involving the nation's critical communications infrastructure.

  • Basic understanding of the National Response Framework, Emergency Support Function -2 and Cybersecurity & Communications Initiatives.

  • Proficient in performing quick analysis on communications infrastructure using the Esri application along with product development using Microsoft Office suite (Excel, Word, PowerPoint).

  • The person filling this role may attend meetings and discussions, interface with industry or outside agencies for the purpose of taking notes and doing assessments.


  • A Bachelor’s Degree and a minimum of 5-9 years related technical experience required for the level 3 role

  • Available for extended duty, on-call and/or deployment to alternate locations within the region or continental U.S., as needed. Possession and demonstrated application of relevant certifications:

    o Core: MCSE, CCNA, CCNP, ISC, CAP

    o Related: CISSP, CISM, ISC, ISSMP

    o CompTIA, SANs GIAC, PMP

WORK SCHEDULE: 2nd Shift (1400 - 2400 Mon-Fri)

WORK LOCATION: Arlington, Virginia



SECURITY REQUIREMENTS: Active Top Secret/SSBI; eligible for SCI and DHS EOD




phia LLC ("phia") is a Northern Virginia based, 8a certified small business established in 2011 with focus in Cyber Intelligence, Cyber Security/Defense, Intrusion Analysis & Incident Response, Cyber Architecture & Capability Analysis, Cyber Policy & Strategy, Information Assurance/Security, Compliance, Certification & Accreditation, Communications Security, Traditional Security, and Facilities Security. phia also provides cyber operations support functions such as: Program and Process Management, Engineering, Development, and Systems Administration that allows for Cyber Operations to efficiently integrate our customer’s missions and objectives. phia supports various agencies and offices within the Department of Defense (DoD), Federal government, and private/commercial entities.

phia offers excellent benefits for full time W2 candidates to enhance the work-life balance, these include the following:

  • Medical Insurance

  • Dental Insurance

  • Vision Insurance

  • Life Insurance

  • Short Term & Long-Term Disability

  • 401k Retirement Savings Plan with Company Match

  • Paid Holidays

  • Paid Time Off (PTO)

  • Tuition and Professional Development Assistance

  • Flex Spending Accounts (FSA)

  • Parking Reimbursement

  • Monthly Payroll