Attack Sensing & Warning (AS&W) Technical Lead

• Serve as the AS&W Subject Matter Expert (SME) during live incident response, providing near-real-time quality control and oversight
• Ensure accurate documentation, campaign notes, and operational updates are maintained by Regional Operations Centers and analysts
• Provide mentorship and professional development guidance to Defensive Cyber Operations (DCO) Watch and DETECT team members
• Coordinate communications, policies, and processes across regional operations center analysts and incident responders
• Lead continuous review and improvement of operational processes and procedural documentation governing ROC operations
• Collaborate with training development teams to design, execute, and maintain role-based baseline and progressive training plans
• Ensure quality control of DCO Watch products, including threat hunts, detection evaluations, and purple team reports
• Identify, assess, and mitigate operational and programmatic risks
• Lead cross-functional technical teams and manage task prioritization across service areas
• Participate in meetings and conferences with internal and external stakeholders to ensure delivery of high-quality products within established schedules
• Coordinate with customer organizations to improve operational processes, outcomes, and overall customer experience
• Ensure organizational processes align with customer policies and external directives
• Conduct periodic onsite evaluations of personnel and team performance at regional operations center facilities
• Support short-notice global travel requirements as mission needs dictate
• Delegate high-level training priorities to the Service Area Training Lead to execute enterprise training initiatives
• Serve as the primary point of contact for coordinating and deconflicting surge support and operational interactions between DETECT and DCO Watch teams
• Act as a Trusted Agent for all Red Team operations

• Extensive knowledge of Attack Sensing & Warning operations, incident response, and defensive cyber workflows
• Experience with quality control processes, ticket management, and analyst performance evaluation
• Proficiency reviewing, refining, and enforcing operational documentation and procedures
• Expert-level knowledge of Chairman of the Joint Chiefs of Staff Manual (CJCSM) 6510.01B
• Strong critical thinking, analytical reasoning, and problem-solving abilities
• Demonstrated ability to maintain composure and make effective decisions under stress

• Strong leadership, decision-making, and operational oversight capabilities
• Ability to operate effectively in fast-paced, high-pressure cybersecurity environments
• Excellent verbal and written communication skills
• Proven ability to lead cross-functional and geographically distributed teams

• Bachelor’s degree in a relevant discipline with a minimum of five (5) years of experience, or
• At least eight (8) years of experience working in a cybersecurity operations environment
• Minimum of four (4) years of experience in a leadership role
• Must meet Department of Defense (DoD) 8570 Information Assurance Technical (IAT) Level III and other applicable certification requirements

• Position may require up to twenty percent (20%) travel based on mission requirements
• May require extended hours beyond normal duty schedules to support operational needs

PI49976be428bb-25401-39281854