STEM OPT Cybersecurity Lead Jobs
Cybersecurity Lead roles qualify for STEM OPT because they fall under computer and information sciences CIP codes that meet the 24-month extension criteria. Your employer must be enrolled in E-Verify, and your degree must align with the role's technical requirements. This page lists Cybersecurity Lead positions open to STEM OPT candidates.
Find STEM OPT Cybersecurity Lead JobsOverview
Showing 5 of 9+ Cybersecurity Lead jobs
See all Cybersecurity Lead Jobs
Sign up for free to unlock all listings, filter by visa type, and get alerts for new Cybersecurity Lead roles.
Get Access To All JobsDaily Duties / Responsibilities: This is a hands-on technical role reporting to the Office of Cybersecurity SOC lead. The analyst will support SCDHHS leadership, business units, partners, and vendors in day-to-day cybersecurity operations.
Security Program Experience: Strongly desired experience includes:
- CMS ARC-AMPE, HIPAA, NIST or other FISMA RMF frameworks
- Performing repeatable security processes supporting compliant enterprise architectures
- Supporting security considerations for multi-tenant cloud environments and vendor integrations
Technical Experience: Candidates should have hands-on experience with:
1. Secure network design principles
2. Windows, macOS, and Linux operating systems
3. Switching and Routing
4. Enterprise Firewalls
5. Network auditing
6. IDS/IPS platforms
7. Network security monitoring
8. SIEM platforms such as QRadar, Splunk (Preferred)
9. Vulnerability scanning tools (Nessus, Qualys, etc.)
10. Cloud Infrastructure Security (Preferred)
Essential Responsibilities:
1. Assist in maturing network security and compliance solutions
2. Investigate and respond to daily network alerts
3. Perform network security assessments for proposed firewall and infrastructure changes
4. Conduct technical analysis for network security planning and engineering
5. Review and assessment of connectivity, website block and firewall rule requests to ensure they do not present an elevated risk to the agency
6. Analyze on-premise and cloud networks for potential threats
7. Develop, review, and analyze network traffic reports that violate the agency’s approved standards governing Ports, Protocols and Services.
8. Monitor emerging threat vectors and recommend countermeasures
9. Collaborate with other areas of the agency to implement security controls
10. Support cloud and on-premise network changes and enhancement projects
11. Ensure compliance with ARC-AMPE, HIPAA and SCDIS-200
12. Assist with KPI creation and trend report monitoring
13. Participate in firewall configuration reviews and ruleset recertification
14. Provide guidance on best practices to technical team
15. Perform additional SOC duties as assigned
Required Skills (rank in order of Importance):
1. Approximately 3-5 years of hands-on experience in network design, implementation, or support
2. Hands-on experience in IT security or system administration
3. Working knowledge of secure network design, security architecture, compliance tools, data protection, and access models
4. Ability to analyze logs, alerts, and network telemetry.
5. Proficiency with Microsoft Office tools
Preferred Skills (rank in order of Importance):
1. Experience working in regulatory environments
2. Experience supporting health IT or state government.
3. Familiarity with FISMA, NIST, CMS ARC-AMPE, and HIPAA security and privacy standards
4. Cloud network security controls (Azure or AWS).
Required Education/Certifications:
1. BS degree in Computer Science, information systems, Cybersecurity, or related field; or equivalent experience
2. A network security centric certification such as PCNSE or CCNA
Preferred Education/Certifications:
1. CISSP or Security+
Daily Duties / Responsibilities: This is a hands-on technical role reporting to the Office of Cybersecurity SOC lead. The analyst will support SCDHHS leadership, business units, partners, and vendors in day-to-day cybersecurity operations.
Security Program Experience: Strongly desired experience includes:
- CMS ARC-AMPE, HIPAA, NIST or other FISMA RMF frameworks
- Performing repeatable security processes supporting compliant enterprise architectures
- Supporting security considerations for multi-tenant cloud environments and vendor integrations
Technical Experience: Candidates should have hands-on experience with:
1. Secure network design principles
2. Windows, macOS, and Linux operating systems
3. Switching and Routing
4. Enterprise Firewalls
5. Network auditing
6. IDS/IPS platforms
7. Network security monitoring
8. SIEM platforms such as QRadar, Splunk (Preferred)
9. Vulnerability scanning tools (Nessus, Qualys, etc.)
10. Cloud Infrastructure Security (Preferred)
Essential Responsibilities:
1. Assist in maturing network security and compliance solutions
2. Investigate and respond to daily network alerts
3. Perform network security assessments for proposed firewall and infrastructure changes
4. Conduct technical analysis for network security planning and engineering
5. Review and assessment of connectivity, website block and firewall rule requests to ensure they do not present an elevated risk to the agency
6. Analyze on-premise and cloud networks for potential threats
7. Develop, review, and analyze network traffic reports that violate the agency’s approved standards governing Ports, Protocols and Services.
8. Monitor emerging threat vectors and recommend countermeasures
9. Collaborate with other areas of the agency to implement security controls
10. Support cloud and on-premise network changes and enhancement projects
11. Ensure compliance with ARC-AMPE, HIPAA and SCDIS-200
12. Assist with KPI creation and trend report monitoring
13. Participate in firewall configuration reviews and ruleset recertification
14. Provide guidance on best practices to technical team
15. Perform additional SOC duties as assigned
Required Skills (rank in order of Importance):
1. Approximately 3-5 years of hands-on experience in network design, implementation, or support
2. Hands-on experience in IT security or system administration
3. Working knowledge of secure network design, security architecture, compliance tools, data protection, and access models
4. Ability to analyze logs, alerts, and network telemetry.
5. Proficiency with Microsoft Office tools
Preferred Skills (rank in order of Importance):
1. Experience working in regulatory environments
2. Experience supporting health IT or state government.
3. Familiarity with FISMA, NIST, CMS ARC-AMPE, and HIPAA security and privacy standards
4. Cloud network security controls (Azure or AWS).
Required Education/Certifications:
1. BS degree in Computer Science, information systems, Cybersecurity, or related field; or equivalent experience
2. A network security centric certification such as PCNSE or CCNA
Preferred Education/Certifications:
1. CISSP or Security+
See all STEM OPT Cybersecurity Lead Jobs
Sign up for free to unlock all listings, filter by visa type, and get alerts for new STEM OPT Cybersecurity Lead Jobs.
Get Access To All JobsTips for Finding STEM OPT Authorization in Cybersecurity Lead
Verify your CIP code matches cybersecurity
Check your degree's Classification of Instructional Programs code against the STEM OPT designated degree list. Computer science, information assurance, and cybersecurity CIP codes all qualify, but a general business or IT management degree may not support your extension application.
Confirm E-Verify enrollment before applying
Before accepting any offer, check the employer's E-Verify participation status through the E-Verify employer search tool. Cybersecurity teams at federal contractors are almost always enrolled, but smaller managed security service providers sometimes are not.
Target employers with active security clearance pipelines
Cybersecurity Lead roles often require or prefer clearance eligibility. Prioritize employers who sponsor clearance investigations, since those firms already have compliance infrastructure in place and are far more likely to handle STEM OPT paperwork without friction.
Use Migrate Mate to filter verified STEM OPT employers
Search Migrate Mate to identify Cybersecurity Lead openings at employers with confirmed E-Verify enrollment and a track record of hiring OPT students. This cuts out the manual research step of vetting each company's compliance status on your own.
Negotiate your I-983 training plan before your start date
Your employer must complete Form I-983 detailing the learning objectives, supervision structure, and how the Cybersecurity Lead role relates to your STEM degree. Get this document drafted and signed before day one so your DSO can update your I-20 without delays.
Time your H-1B registration around your OPT end date
If your STEM OPT expires before October 1 and USCIS selects your H-1B visa petition, cap-gap protection extends your work authorization automatically. File your I-765 renewal at least 90 days before your EAD expires to avoid a gap in employment eligibility.
Frequently Asked Questions
Does a Cybersecurity Lead role qualify for the STEM OPT extension?
Yes, if your employer's job description requires applying STEM knowledge directly to cybersecurity functions and your degree falls under a qualifying CIP code such as computer science or information assurance. Your DSO will confirm eligibility when you request the STEM OPT I-20 update. Roles that are primarily managerial with no technical STEM application may face closer scrutiny during that review.
What does the I-983 training plan require for a Cybersecurity Lead position?
The I-983 must document specific learning objectives tied to your STEM degree, identify a direct supervisor with relevant credentials, and explain how the Cybersecurity Lead duties connect to your field of study. For senior roles, the plan should reflect technical responsibilities like threat analysis, security architecture review, or incident response rather than purely administrative oversight. Your employer signs the form, and you submit it to your DSO before your STEM OPT start date.
How do I confirm my employer is enrolled in E-Verify?
Use the E-Verify employer search tool to look up your prospective employer by company name or employer ID. Enrollment status is publicly searchable. For large organizations, verify that the specific hiring entity, not just the parent company, is enrolled, since subsidiaries sometimes have separate E-Verify accounts. An employer that isn't enrolled cannot legally employ you on STEM OPT, regardless of role level.
Where can I find Cybersecurity Lead jobs open to STEM OPT candidates?
Migrate Mate lists Cybersecurity Lead openings filtered for employers who hire STEM OPT students and are enrolled in E-Verify. Searching there lets you focus your applications on companies already familiar with OPT compliance requirements, which reduces the time spent educating recruiters about your work authorization status during the hiring process.
What happens to my STEM OPT if my H-1B is selected but my EAD expires before October 1?
Cap-gap protection under USCIS regulations automatically extends your OPT work authorization from your EAD expiration date through September 30, as long as your H-1B petition was filed before your OPT ended and you remain employed by the same petitioning employer. You don't need a new EAD during this window, but carry your original EAD, your I-20 with the cap-gap notation, and your I-797 receipt notice as proof of continued authorization.