THANKS FOR YOUR INTEREST!

When you join the Cambridge team, you are part of a skilled and talented global community that is united by a set of core values: commitment, integrity, and perseverance. Join our team and help us confront today’s most threatening and complex obstacles!

TO APPLY

Please click on the links associated with the position of interest.

You'll be prompted to answer general screening questions and voluntary, confidential demographic data that Cambridge International Systesms uses to submit compliance surveys to the federal government. Shortly thereafter, you will recive a confirmation of receipt email and an email with a link to complete your employment application.

Someone from our recruiting team will pre-screen your qualifications based on the position's requirements. If there is a match, you may be contacted by a recruiter to schedule an introductory phone call. Our vetting process typically includes an initial screening with the recruiter, an in-person, Teams or phone interview with the hiring manager or on a panel, and background screening (including employment and degree/certification verification).

If you submit a general application, your qualifications will be assessed for current and/or future opportunities.

We thank you for exploring career opportunities with Cambridge International Systems; we wish you success in your job search!

Please note: Cambridge International Systems does not accept unsolicited resumes. Unsolicited resumes or applications submitted by a third party will not be reviewed. Job applicants only. No staffing agencies, recruiters, or headhunters, please.

WORK-LIFE BALANCE
We understand you have commitments outside of the office. We provide a flexible paid time off package and 11 paid holidays per year.

RETIREMENT SUPPORT
We provide competitive 401(K) options including contribution matching that is 100% vested.

TRAINING AND EDUCATION ASSISTANCE
We offer reimbursement for continuing education and training.

PROFESSIONAL DEVELOPMENT

We support your professional growth and development through conference attendance, mentor programs, and internal training.

BONUSES
We recognize the importance of involving you in the hiring process, so we offer a generous employee referral bonus program. We also show our appreciation for your hard work through performance-based bonuses and on the spot bonuses that recognize outstanding achievements.

HEALTH INSURANCE
We offer full-time employees competitive medical, dental, vision, life, and disability insurance plans.

OTHER PERKS
We value the health and wellness of our employees by providing a comprehensive wellness program, community involvement and outreach opportunities, employee assistance program (EAP) and Tickets at Work accounts!

At Cambridge, we recognize innovation and agility grow through diverse collaboration. Our team is comprised of unique individuals, and it is our policy to provide equal opportunity in recruiting, hiring, training, and promoting individuals in all job categories without regard to race, color, religion, sex (including pregnancy, gender identity, and sexual orientation), parental status, national origin, age, disability, genetic information (including family medical history), political affiliation, military service, or any other protected class or category as may be defined by federal, state, or local laws or regulations. It is our firm intent to support equal employment opportunity and affirmative action in keeping with applicable federal, state, and local laws and regulations.

If you are a qualified individual with a disability or a disabled veteran requiring assistance with the application process, please visit https://cbridgeinc.com/accessibility/ for information on how to request assistance.

For more information on equal opportunity protections, please view the U.S. Department of Labor’s Office of Federal Contract Compliance Programs EEO is the Law poster and the EEO is the Law Supplement on our Careers page.

Exploitation Analyst – TS Clearance | Norfolk, VA

Norfolk, VA

Full Time

Mid Level

Exploitation Analyst – TS/SCI Clearance | Norfolk, VA

Cambridge International Systems, Inc.

Join a dynamic global team united by shared values: commitment, integrity, and perseverance. At Cambridge, you’ll work alongside top talent worldwide, tackling some of today’s most complex and critical challenges in defense and security.

We are currently seeking an Exploitation Analyst to support operations in Norfolk, VA. This is a full-time position requiring an active DoD TS clearance.

This position is contingent upon contract award with an expected award date of January 2026.

What You’ll Do

HQ Tasks:

Serve as the Exploitation Analyst supporting cyber survivability policy and process oversight to warfare divisions, and becoming proficient in, and following thec yber T&E concept of operations, SOPs, policies, and guidance.

Support sustainment and updating of the to conduct and instruct Cyber Survivability Test Planning course.

Attend the required meetings in support of OT&E.

Inform 01D Future Operations Officer of any challenges and issues in a timely manner for resolution

Maintain and participate in the development of 01D SOPs and the Cyber test planning documents to include participation in and support of the CCB process.

Pre-Test Planning

Support the Future Operations Officer to determine overall test strategy and level of cyber OT&E for acquisition programs.

Support the Future Operations Officer in reviewing Test and Evaluation Master Plan (TEMP) (or other types of OT&E resourcing documents), Integrated Evaluation Framework (IEF), test plan or other test planning related documents to ensure adequate test strategies are established within the policies and guidelines to include adjudication of related comments from stakeholders.

Support program specific T&E Integrated Product Team (IPT), cyber table tops and other internal or external events as assigned and non-program specific T&E IPTs, technical exchange meetings, and other briefs and meetings as required.

Test Planning

Develop cyber survivability test plans following the Cyber OT&E procedures and templates and with minimal administrative errors.

Coordinate with the warfare divisions and red team operators to ensure defined test objectives are comprehensive and executable, data collection requirements are adequately defined, cyber test capabilities are identified, resourced, and integrated prior to the test plan being signed.

Attend test planning visits in support of cyber OT&E planning.

Lead preparation of test execution, including

Participate in site pre-test coordination visits. Provide an in brief to the test site.

Conduct Pre-Execution Brief to 01D leadership.

Prepare library of data needed for test and arrange for its arrival at the test site.

Ensure all deconfliction requirements are met prior to test execution in accordance with JFHQ DoDIN and Navy Cyber Defense Operations Command guidance

Lead execution of cyber OT&E related test events as assigned, supporting cooperative vulnerability penetration assessments and adversarial assessments in accordance with DoD guidance and the yber OT&E policies, guidance and procedures.

Coordinate with the OTD, site personnel, program office SMEs, and supporting red teams.

Ensure test are conducted safely and the policies are adhered to.

Follow JFHQ-DODIN deconfliction procedures

Verify collected data for accuracy and completeness.

Conduct daily hotwashes during test and submit a daily summary report to the OTD and 01D leadership.

Ensure all test objectives are completed

Post-Test

Support the Future Operations Officer during the post-test process to ensure traceability between test objectives, collected data, and post-test deliverables.

Coordinate with the OTD to set up post-test meetings.

Participate in post-test processes including data upload, scoring board, 01D Review Board, CEWG, SERB, and E-SERB.

Lead generation of final report products to ensure the information is technically accurate following the Cyber OT&E procedures and templates and with minimal administrative errors. This includes, drafting of the Data Analysis Summary and Results Enclosure, and reviewing Blue/Gold Sheets drafted by Red Team Operators.

What You’ll Bring

Required Qualifications:

Education & Experience:

Bachelor’s degree in computer science, cybersecurity, or related technical degree OR minimum 5 years’ experience in DoD defensive or offensive cyberspace operations planning or exploitation analysis

Technical Expertise:

Proficiency in decomposing complex computer systems/networking configurations in support of system exploitation analysis

Proficiency in Microsoft Office Applications (MS Visio, Project, Excel, PowerPoint etc.)

Ability to perform detail-oriented work quality assurance/quality control prior to delivery to the government.

Excellent written and oral communications skills to support briefing senior leadership (O6/GS-15 or higher)

Certifications:

Must have a current and active DoD TS security clearance with the ability to obtain a SCI clearance.

Proficient with modern IT tools and infrastructure technologies

Preferred (Nice to Have):

Knowledge of basic physical computer components and architectures, including the functions of various components and peripherals (e.g., CPUs, Ns, data storage).

Ability to create comprehensive exploitation strategies that identify exploitable technical or operational vulnerabilities.

Ability to collaborate effectively with others.

Ability to communicate complex information, concepts, or ideas in a confident and well-organized manner through verbal, written, and/or visual means.

Knowledge of internet network addressing (IP addresses, classless inter-domain routing, TCP/UDP port numbering).

Ability to identify/describe target vulnerability.

Knowledge of a wide range of basic communications media concepts and terminology (e.g., computer and telephone networks, satellite, cable, wireless).

Knowledge of attack methods and techniques (DDoS, brute force, spoofing, etc.).

Knowledge of basic malicious activity concepts (e.g., foot printing, scanning and enumeration).

Knowledge of common networking devices and their configurations.

Knowledge of concepts for operating systems (e.g., Linux, Unix).

Knowledge of data communications terminology (e.g., networking protocols, Ethernet, IP, encryption, optical devices, removable media).

Knowledge of how hubs, switches, routers work together in the design of a network.

Knowledge of how internet applications work (Simple Mail Transfer Protocol (SMTP) email, web-based email, chat clients, voice over IP).

Knowledge of Internet and routing protocols.

Knowledge of network security (e.g., encryption, firewalls, authentication, honey pots, perimeter protection).

Knowledge of the basic structure, architecture, and design of modern communication networks.

Skill in recognizing technical information that may be used for leads to enable remote operations (data includes users, passwords, email addresses, IP ranges of the target, frequency in DNI behavior, mail servers, domain servers, SMTP header information).

Knowledge of front-end collection systems, including traffic collection, filtering, and selection.

Perform analysis for SUT infrastructure exploitation activities.

Collaborate with other internal and external partner organizations on target access and operational issues.

Conduct analysis of physical and logical digital technologies (e.g., wireless, supervisory control and data acquisition, telecom) to identify likely avenues of access.

Lead or enable exploitation operations in support of organization objectives and target requirements.

Maintain awareness of advancements in hardware and software technologies (e.g., attend training or conferences, reading) and their likely implications.

Ability to accurately and completely source all data used in intelligence, assessment and/or planning products.

Ability to develop or recommend analytic approaches or solutions to problems and situations for which information is incomplete or for which no precedent exists.

Ability to evaluate, analyze, and synthesize large quantities of data (which may be fragmented and contradictory) into high quality, fused targeting/intelligence products.

Knowledge of both internal and external customers and partner organizations, including information needs, objectives, structure, capabilities, etc.

Knowledge of client organizations, including information needs, objectives, structure, capabilities, etc.

Knowledge of common reporting databases and tools.

Knowledge of all relevant reporting and dissemination procedures.

Knowledge of strategies and tools for target research.

Knowledge of organizational and partner policies, tools, capabilities, and procedures.

Knowledge of organizational and partner authorities, responsibilities, and contributions to achieving objectives.

Skill in creating plans in support of remote operations.

Skill in generating test plans in support of mission requirements.

Skill in analyzing network device configurations.

Skill in assessing system under test security posture.

Skill in documenting the execution and results in conducting a cyber OT&E event.

Ability to incorporate the Red Team infrastructure and capabilities into OT&E test objective development.

Knowledge of the basic structure, architecture, design, and vulnerabilities of communications systems.

Knowledge of virtualized and cloud-based systems.

Travel & Passport

Some overnight stays possible.

Work Environment

Compliance with vaccination and medical requirements for TDY/OCONUS roles as per Vaccine Recommendations by AOR | Health.mil.

Office setting:

Primarily an office-based role in Norfolk, VA

Standard desk/computer work with flexibility for walking and movement on site

Must be able to work in an office environment, sitting at a desk, looking at a computer for most of the workday.

Work is physically comfortable; the employee has discretion about sitting, walking, standing, etc.

May be required to travel short distances to offices/conference rooms and buildings on site.

Background & Security

Employment is contingent upon successful background investigation

Drug screening may be required for federal contract compliance

Benefits & Perks

We believe in investing in our team—both professionally and personally:

Medical, dental, vision, life, accident, and critical illness insurance

401(k) immediate vesting and match

Paid time off and company holidays

Generous tuition & training support

Relocation assistance

Sign-on and performance-based bonuses

Employee referral program

Access to Tickets at Work, EAP, wellness initiatives, and more

Join Us

If you're driven by mission, technology, and teamwork—we want to hear from you. Cambridge is growing, and this position is just one of many opportunities on our global team. Know someone perfect for the role? Referrals are welcome—both employees and non-employees may qualify for a bonus.

Apply today and help shape the future of secure cloud computing for national security.

About Cambridge International Systems

At Cambridge, innovation grows through diversity. We are proud to be an equal opportunity employer, committed to creating an inclusive and supportive work environment for all. Learn more at www.cbridgeinc.com.

Apply for this position

Required*

Apply with

First Name*

Last Name*

Email Address*

Phone*

Address

Resume*

We've received your resume. Click here to update it.

Attach resume or Paste resume

Attach resume as .pdf, .doc, .docx, .odt, .txt, or .rtf (limit 5MB) or Paste resume

Paste your resume here or Attach resume file

Due to the nature of this position, U.S. Citizenship is required. Are you a U.S. Citizen?*

Will you now, or in the future, require sponsorship to work in the United States? If selected for the position, you will be required to show proof of eligibility to work in the United States.*

How did you hear about this position?*

List name of Employee Referral, if applicable

If applicable, what is your current clearance level?*

Have you ever had a security clearance eligibility/access authorization denied, suspended, or revoked?*

Are you willing to relocate?*

What is your desired salary?*

Do you have family members working for Cambridge?*

Do you have any personal relationships, such as friendships or family connections with vendors, contractors, or competitors of Cambridge?*

Do you or your family members have any financial interests in companies that could be considered a competitor of Cambridge?*

Do you currently have a second job for which you are planning to keep?*

Have you worked for the US government conducting financial, procurement, and/or contracts-related activities during the last 10 years?*

Do you have any consulting arrangements with any potential competitors of Cambridge?*

Are you involved or serve on the board of directors or advisory board for any vendor, supplier, or competitor of Cambridge?*

Do you own or have partial interest in any intellectual properties, patents, licenses, or copyrights that could be relevant to your work at Cambridge?*

Have you ever worked on a contract affiliated with Cambridge International Systems?*

The following questions are entirely optional.

To comply with government Equal Employment Opportunity and/or Affirmative Action reporting regulations, we are requesting (but NOT requiring) that you enter this personal data. This information will not be used in connection with any employment decisions, and will be used solely as permitted by state and federal law. Your voluntary cooperation would be appreciated. Learn more.

Gender

Race/Ethnicity

Invitation for Job Applicants to Self-Identify as a U.S. Veteran

A “disabled veteran” is one of the following:
- a veteran of the U.S. military, ground, naval or air service who is entitled to compensation (or who but for the receipt of military retired pay would be entitled to compensation) under laws administered by the Secretary of Veterans Affairs; or
- a person who was discharged or released from active duty because of a service-connected disability.
A “recently separated veteran” means any veteran during the three-year period beginning on the date of such veteran's discharge or release from active duty in the U.S. military, ground, naval, or air service.
An “active duty wartime or campaign badge veteran” means a veteran who served on active duty in the U.S. military, ground, naval or air service during a war, or in a campaign or expedition for which a campaign badge has been authorized under the laws administered by the Department of Defense.
An “Armed forces service medal veteran” means a veteran who, while serving on active duty in the U.S. military, ground, naval or air service, participated in a United States military operation for which an Armed Forces service medal was awarded pursuant to Executive Order 12985.

Veteran status

I IDENTIFY AS ONE OR MORE OF THE CLASSIFICATIONS OF PROTECTED VETERAN LISTED ABOVE
I AM NOT A PROTECTED VETERAN
I DON’T WISH TO ANSWER

Voluntary Self-Identification of Disability

Voluntary Self-Identification of Disability Form CC-305
OMB Control Number 1250-0005
Expires 04/30/2026

Why are you being asked to complete this form?

We are a federal contractor or subcontractor. The law requires us to provide equal employment opportunity to qualified people with disabilities. We have a goal of having at least 7% of our workers as people with disabilities. The law says we must measure our progress towards this goal. To do this, we must ask applicants and employees if they have a disability or have ever had one. People can become disabled, so we need to ask this question at least every five years.

Completing this form is voluntary, and we hope that you will choose to do so. Your answer is confidential. No one who makes hiring decisions will see it. Your decision to complete the form and your answer will not harm you in any way. If you want to learn more about the law or this form, visit the U.S. Department of Labor’s Office of Federal Contract Compliance Programs (OFCCP) website at www.dol.gov/ofccp.

How do you know if you have a disability?

A disability is a condition that substantially limits one or more of your “major life activities.” If you have or have ever had such a condition, you are a person with a disability. Disabilities include, but are not limited to:

Alcohol or other substance use disorder (not currently using drugs illegally)
Autoimmune disorder, for example, lupus, fibromyalgia, rheumatoid arthritis, HIV/AIDS
Blind or low vision
Cancer (past or present)
Cardiovascular or heart disease
Celiac disease
Cerebral palsy
Deaf or serious difficulty hearing
Diabetes
Disfigurement, for example, disfigurement caused by burns, wounds, accidents, or congenital disorders
Epilepsy or other seizure disorder
Gastrointestinal disorders, for example, Crohn's Disease, irritable bowel syndrome
Intellectual or developmental disability
Mental health conditions, for example, depression, bipolar disorder, anxiety disorder, schizophrenia, PTSD
Missing limbs or partially missing limbs
Mobility impairment, benefiting from the use of a wheelchair, scooter, walker, leg brace(s) and/or other supports
Nervous system condition, for example, migraine headaches, Parkinson’s disease, multiple sclerosis (MS)
Neurodivergence, for example, attention-deficit/hyperactivity disorder (ADHD), autism spectrum disorder, dyslexia, dyspraxia, other learning disabilities
Partial or complete paralysis (any cause)
Pulmonary or respiratory conditions, for example, tuberculosis, asthma, emphysema
Short stature (dwarfism)
Traumatic brain injury

Please check one of the boxes below:

YES, I HAVE A DISABILITY, OR HAVE HAD ONE IN THE PAST NO, I DO NOT HAVE A DISABILITY AND HAVE NOT HAD ONE IN THE PAST I DO NOT WANT TO ANSWER

PUBLIC BURDEN STATEMENT: According to the Paperwork Reduction Act of 1995 no persons are required to respond to a collection of information unless such collection displays a valid OMB control number. This survey should take about 5 minutes to complete.

You must enter your name and date
Name	Date

Human Check*

Submit Application