Careers and Benefits

SES is searching for dynamic candidates for our projects in Colorado Springs, CO; Bellevue, NE and San Antonio, TX. We pay sign-on bonuses and relocation (when applicable). Positions require US Citizenship and a Secret or TS/SCI Clearance. Our goals are to maintain technical expertise providing state-of-the art solutions that consistently exceed customer expectations. If you or anyone you know might be qualified and interested, please contact us regarding our referral fees. We look forward to hearing from you.

CPT Operator (Host/Network)

% Travel:     25%
Duration:     Full-Time Employee
Minimum Clearance:     TS/SCI Poly
Project or Contract Name:     DCRIOS
Location (address):     San Antonio, TX



SES is seeking cyber operators with hands-on Intrusion Detection System (IDS) and forensic analyst experience. In support of National Cyber Protection Team (CPT) operations, candidates will serve as Cyber Operators filling either a Cyber Security Network Analyst position or Cyber Security Host Analyst position. The operator will conduct network navigation, tactical forensic analysis, collection of valuable operational data, and when directed, execute operations in support of defensive initiatives. Operators will provide support for persistent monitoring of all designated networks, enclaves, and systems. Candidate may be required to interpret, analyze, and report findings in accordance with computer network directives, including initiating, responding, and reporting discovered events. Candidates may be required to manage and execute first-level responses and address reported or detected incidents. Candidate will participate in project review meetings and provide technical INFOSEC guidance and updates; document policies, procedures, and lessons learned accordingly. Candidates must possess excellent written and verbal communication skills.

  • Minimum Bachelor’s degree and 2 years’ experience, Associates degree with 4 years’ experience or 6 years’ equivalent experience without a degree; degrees focused on engineering or applied science. Other degrees with strong computer technology curriculum may be considered
  • General knowledge of physical computer components and architectures, including the functions of various components and peripherals, basic programming concepts, assembly codes, TCP/IP, OSI models, underlying networking protocols, security hardware and software.
  • Must meet DoD 8570 IAT Level 3 requirements
  • Active TS/SCI clearance; National Team positions will require successful Counter Intelligence Polygraph Examination (completed after hire)
  • Must complete self-assessment questionnaire, customer pre-screen, skills assessment lab, pass the training and certification program(s) as dictated by the customer, and remain mission ready qualified
  • Candidate should be self-motivated with minimal supervision
  • Proficiency in writing, editing, executing scripts on Windows, Linux, UNIX systems.

Experience with one or more of the following is required:

  • Experience with toolsets such as Wireshark, ELK, Moloch, Metasploit, tcpdump, NMap, Nessus, Snort, Bro, EnCase, Forensic Toolkit, Windows Fundamentals, UNIX fundamentals, exploitation theory, privilege escalation, evidence removal
  • Experience with Cyber Threats Detection and Mitigation, Behavioral Malware Analysis
  • Experience with, Advanced Network Traffic Analysis, Malicious Network Traffic Analysis
  • Have strong UNIX/Linux fundamentals along with familiarity of UNIX/Linux/Windows Command Line Interface (CLI)
  • Demonstrated ability to methodically analyze problems and identify potential solutions
  • Ability to explain, present, demonstrate (when applicable) and document the operational impact of a particular vulnerability or exploit
  • Ability to assist customer with implementing policies and tactics, techniques and procedures for conducting assessments
  • Familiarity with NIST, DISA STIGS and experience in conducting DoD vulnerability and compliance assessments
  • Possess or be willing to obtain within 6-months of start date if not already possessed - Operating System Certification; Microsoft or Linux
  • Experience programming in assembly, compiled, and interpreted languages.
  • Experience with encryption and decryption such as PGP, DES, AES, RSA, and PKI.
  • Knowledge of distributed systems, process control, advanced routing, wireless, telecom and datacom platforms.
  • Experience programming in C, C++, C#, Ruby, Perl, Python, SQL.
  • Certifications such as GXPN, GREM CCNA, CCNP, CCIE, GCFA, GNFA, RHCE, CompTIA, LPT, OSCP, GXPN, GREM CEH, Security+, MCP, and SANS GPEN a plus
  • Experience working with correlation environment tools (i.e., ArcSight)

CPT - Service

% Travel:     25%
Duration:     Full-Time Employee
Minimum Clearance:     TS/SCI
Project or Contract Name:     DCRIOS
Location (address):     San Antonio, TX



The candidate will be Serving on Cyber Protection Team (CPT) in either a Cyber Security Network Analyst position or Cyber Security Host Analyst position. The operator will conduct cyber threat hunting, network navigation, tactical forensic analysis, collection of valuable operational data, and when directed, execute operations in support of defensive initiatives. Operators will provide support for persistent monitoring of all designated networks, enclaves, and systems. Candidate may be required to interpret, analyze, and report findings in accordance with computer network directives, including initiating, responding, and reporting discovered events. Candidates may be required to manage and execute first-level responses and address reported or detected incidents.

REQUIRED SKILLS:

  • Experience with toolsets such as Wireshark, the Elastic Stack, Arkime, Zeek, Metasploit, tcpdump, NMap, Nessus, Snort, EnCase, Forensic Toolkit, Windows Fundamentals, UNIX fundamentals, exploitation theory, privilege escalation, evidence removal
  • Have strong UNIX/Linux fundamentals along with familiarity of UNIX/Linux/Windows Command Line Interface (CLI), Bash and PowerShell
  • Proficient in writing, editing, executing scripts on Windows, Linux, UNIX systems
  • Experience with encrypted and unencrypted remote access technologies, such as RDP, SSH, VPN, Telnet, and FTP
  • General knowledge of cyber security frameworks, such as the Cyber Kill Chain, MITRE ATT&CK, and the NIST 800 series
  • General knowledge of physical computer components and architectures, including the functions of computer domains, directory services, various components and peripherals, basic programming concepts, assembly codes, TCP/IP, OSI models, underlying networking protocols (e.g., DNS, ARP, etc.), security hardware and software
  • Candidate must be self-motivated and able to perform with minimal supervision

PREFERRED REQUIREMENTS/ QUALIFICATIONS:

  • Knowledge of cyber forensic collection, preservation, and chain of custody
  • Experience with Endpoint Detection and Response (EDR) toolsets, such as Elastic Endpoint Security, CrowdStrike Falcon, and Trellix EDR
  • Experience with encryption, decryption, and hashing technologies such as DES, AES, RSA, PKI, SHA, and MD5
  • Knowledge of Red Team Tactics, Techniques, and Procedures (TTP)
  • Knowledge of distributed systems, process control, advanced routing, wireless, cloud, telecom and datacom platforms.
  • Experience programming in C, C++, C#, Ruby, Perl, Python, SQL

REQUIRED CERTIFICATIONS:

  • DoD 8140.01 (previously 8570.01-M) IAT Level III certification (current)
  • Possess, or be willing to obtain within 6-months of start date, an additional certification related to your specific role (Host or Network):Host – Operating system certification (i.e., Linux+, Windows Server, etc.), Network – Network related certification (i.e., Network+, CCNA, etc.)

ADDITIONAL REQUIREMENTS:

  • Travel may be required up to 25%
  • Must successfully complete, and maintain, mission qualification requirements
  • Two (2) or more years’ experience in cyber security required
  • Local candidates only

Tech Writer

% Travel:     N/A
Duration:     Full-Time Employee
Minimum Clearance:     TS/SCI
Project or Contract Name:     DCRIOS
Location (address):     San Antonio, TX



The Technical Writer will support the Cybersecurity Assessment (CSA) team and the Cyber Protection Teams (CPT) in formatting/editing technical documentation. The candidate must be a self-starter able to follow a revision process, analyze technical input from various subject matter experts, format and revise content to include correct grammar/punctuation, to produce a final product.

QUALIFICATIONS:

  • Minimum 3-5 years of technical writing/editing experience
  • Proficient with Microsoft Office Word/Excel
  • Ability to manage their schedule and workload to meet deadlines.
  • Ability to work as part of a team and communicate clearly with the other members.

PREFERRED QUALIFICATIONS:

  • Experience using SharePoint.
  • Experience using document routing systems, such as GEARS.
  • Familiar with the grammar/punctuation guidelines in the Tongue & Quill

Our benefits include:


  • Full, Comprehensive Health Insurance (United Healthcare)
  • Company provided Life Insurance
  • Short-term Disability Insurance
  • Long-term Disability Insurance
  • Dental Insurance
  • Vision Insurance
  • AFLAC - Supplemented Insurance (Hospital stay, Cancer, etc.)
  • Employee Assistance Program (EAP) for employees and their families

Paid Time Off Includes:


  • Accumulated Vacation (Available on Day 1)
  • New Year's Day
  • Martin Luther King Jr. Day
  • Memorial Day
  • Juneteenth
  • Independence Day
  • Labor Day
  • Thanksgiving
  • Christmas

If assigned to a DoD contract, the following are also paid holidays:

  • Presidents Day
  • Columbus Day
  • Veterans Day

We believe in completely investing in our team members through:


  • Enabling professional growth with an individual self-development plan
  • Paid tuition from Accredited College/University
  • Paid professional and job related certifications
  • Paid professional and job related training
  • Paid membership to professional organizations

401K Plan:


  • Self-funded, Plan Transfer available immediately
  • Fully Vested in 12 Months
  • Company matching - tied to Company Success