CDAP Team Lead

Peraton•Herndon, VA

28d•$112,000 - $179,000

About The Position

We are seeking a highly skilled and innovative CDAP Team Lead to join our team in the greater DMV area, supporting the Army National Guard. Key Responsibilities Lead CDAP analytics operations: design methodologies, prioritize assessments, and oversee analytic workflows across telemetry sources. Develop and validate normalized data models, tuning logic, high‑value analytic signatures, and detection use cases. Produce technical assessments, CDAP findings, and executive‑level mission summaries to inform SOC, CIRT, detection engineering, and leadership. Coordinate integration of analytic outputs with SOC, CIRT, RCC‑ARNG, NETCOM, ARCYBER, and mission stakeholders to prioritize mitigations and enhance monitoring coverage. Oversee QA/repeatability of analyses; ensure methods meet DoD/Army guidance and produce defensible, reproducible results. Drive modernization: evaluate analytic tools, improve ingestion/pipelines, and refine assessment procedures. Mentor analysts, establish analytic standards, and maintain documentation, playbooks, and validation artifacts. Present findings and recommendations to senior leadership and support readiness/reporting requirements. #ENOCS Peraton is a next-generation national security company that drives missions of consequence spanning the globe and extending to the farthest reaches of the galaxy. As the world’s leading mission capability integrator and transformative enterprise IT provider, we deliver trusted, highly differentiated solutions and technologies to protect our nation and allies. Peraton operates at the critical nexus between traditional and nontraditional threats across all domains: land, sea, space, air, and cyberspace. The company serves as a valued partner to essential government agencies and supports every branch of the U.S. armed forces. Each day, our employees do the can’t be done by solving the most daunting challenges facing our customers. Visit peraton.com to learn how we’re keeping people around the world safe and secure.

Requirements

Minimum of 8 years with BS/BA; Minimum of 6 years with MS/MA; Minimum of 3 years with PhD
Clearance: TS/SCI (active)
Education / Training / Certification: Candidate must meet ONE: Master’s or Ph.D. in Computer Science, Cybersecurity, Data Science, Information Systems, Information Technology, or Software Engineering; OR Relevant DoD/Military advanced analytic/cyber training (examples: 4C‑255N/4C‑255S/4C‑255A, A‑531‑0009, Vulnerability Assessment Analyst (Advanced) Playlist); OR Relevant professional certifications or equivalent experience (examples: CFR, CISA, CISM, CySA+, GPEN, GSNA).
Experience: Progressive cyber analytic or threat‑analysis experience with at least 3 years leading analytic teams or programs in enterprise/DoD environments.
Technical skills: Advanced telemetry analytics, threat hunting, statistical/ML methods, large‑scale data processing, SIEM/SOAR, network/jump host telemetry, scripting (Python/R), and experience mapping to MITRE ATT&CK.
Knowledge: CDAP/CDOC processes, RMF/RMF evidence needs, DoD/Army analytic standards, and ability to produce decision‑grade intelligence/technical assessments.

Nice To Haves

Prior CDAP, SOC, CIRT, or ARCYBER/NETCOM analytic experience
Experience with big‑data platforms, analytics toolchains (ELK, Splunk, Kafka, Spark), adversary emulation, and purple‑team activities
Proven record of delivering executive briefs and technical assessments that drove detection or architecture changes

Responsibilities

Lead CDAP analytics operations: design methodologies, prioritize assessments, and oversee analytic workflows across telemetry sources.
Develop and validate normalized data models, tuning logic, high‑value analytic signatures, and detection use cases.
Produce technical assessments, CDAP findings, and executive‑level mission summaries to inform SOC, CIRT, detection engineering, and leadership.
Coordinate integration of analytic outputs with SOC, CIRT, RCC‑ARNG, NETCOM, ARCYBER, and mission stakeholders to prioritize mitigations and enhance monitoring coverage.
Oversee QA/repeatability of analyses; ensure methods meet DoD/Army guidance and produce defensible, reproducible results.
Drive modernization: evaluate analytic tools, improve ingestion/pipelines, and refine assessment procedures.
Mentor analysts, establish analytic standards, and maintain documentation, playbooks, and validation artifacts.
Present findings and recommendations to senior leadership and support readiness/reporting requirements.

Stand Out From the Crowd

Upload your resume and get instant feedback on how well it matches this job.

Upload and Match Resume