What are the responsibilities and job description for the Detections Engineering, Threat Evaluation, and Countermeasures (DETECT) Technical Lead position at 3 Reasons Consulting?
Position Title: Detections Engineering, Threat Evaluation, and Countermeasures (DETECT) Technical Lead
Location: Charleston, South Carolina
Minimum Security Clearance: Secret, with ability to obtain Top Secret / Sensitive Compartmented Information (TS/SCI)
eCRAFT: SISS3
Education: Bachelor’s degree preferred
Years of Experience: Seven (7) or more years of relevant experience
Position Description
The Detections Engineering, Threat Evaluation, and Countermeasures (DETECT) Technical Lead is responsible for leading threat analysis, detection development, and countermeasure efforts in support of enterprise defensive cyber operations. This role provides advanced technical and analytical expertise to identify, assess, and respond to emerging cyber threats while delivering actionable intelligence to security operations and leadership.
The DETECT Technical Lead serves as a senior technical authority, providing tactical context surrounding adversary tactics, techniques, and procedures (TTPs), and supporting network security monitoring and incident response teams. This position requires the ability to lead complex analytical missions, guide detection engineering efforts, and translate highly technical findings into meaningful products for both technical and non-technical audiences.
Duties and Responsibilities
Location: Charleston, South Carolina
Minimum Security Clearance: Secret, with ability to obtain Top Secret / Sensitive Compartmented Information (TS/SCI)
eCRAFT: SISS3
Education: Bachelor’s degree preferred
Years of Experience: Seven (7) or more years of relevant experience
Position Description
The Detections Engineering, Threat Evaluation, and Countermeasures (DETECT) Technical Lead is responsible for leading threat analysis, detection development, and countermeasure efforts in support of enterprise defensive cyber operations. This role provides advanced technical and analytical expertise to identify, assess, and respond to emerging cyber threats while delivering actionable intelligence to security operations and leadership.
The DETECT Technical Lead serves as a senior technical authority, providing tactical context surrounding adversary tactics, techniques, and procedures (TTPs), and supporting network security monitoring and incident response teams. This position requires the ability to lead complex analytical missions, guide detection engineering efforts, and translate highly technical findings into meaningful products for both technical and non-technical audiences.
Duties and Responsibilities
- Lead threat intelligence collection, analysis, production, and dissemination of finished intelligence products
- Provide technical leadership for identifying cyber threats, trends, and emerging adversary behaviors
- Analyze open-source intelligence and other data sources to assess cyber risks and threat activity
- Maintain expert knowledge of adversary intrusion sets, tactics, techniques, and procedures (TTPs)
- Support network security monitoring and incident response teams with tactical threat context
- Communicate intrusion and compromise activity to appropriate agencies and stakeholders
- Coordinate cyber threat tracking with government and partner organizations
- Proactively monitor internal and external environments for malicious activity, vulnerabilities, and attack indicators
- Develop cyber risk and threat assessments with actionable recommendations
- Lead and mentor analysts supporting detection engineering and threat evaluation missions
- Compile, maintain, and refine standard operating procedures (SOPs) and analytical documentation
- Ensure documentation and operational practices remain compliant with CJCSM 6510.01B and applicable directives
- Participate in program reviews, product evaluations, and onsite certification activities
- Present complex threat intelligence findings clearly to senior technical leadership and agency partners
Required Skills
- Demonstrated ability to leverage intelligence on attacker methodology, tools, and infrastructure to improve defensive posture
- Experience collecting, analyzing, and interpreting qualitative and quantitative cyber data
- Ability to identify patterns in complex threat actor behavior and communicate evolving threats
- Experience working with detection creation methodologies across multiple platforms
- Functional understanding of threat analysis frameworks such as the Diamond Model, Cyber Kill Chain, and MITRE ATT&CK
- Knowledge of security infrastructure including firewalls, IDS/IPS, proxy servers, email security, anonymization technologies, and SIEM platforms
- Strong written and verbal communication skills, including briefing senior technical leadership
Desired Skills
- Experience using analytic and threat intelligence tools such as Augury, Splunk, TAC, Palantir, Shodan, Analyst Notebook, or similar platforms
- Experience collaborating and coordinating with intelligence community partners on cyber-related topics
- Ability to edit and tailor highly technical analysis products for non-technical audiences
- Strong analytical reasoning and problem-solving skills
- Demonstrated leadership experience guiding analysts in dynamic threat environments
Experience, Education and Certification Requirements
- Seven (7) or more years of experience in cyber threat analysis, detection engineering, incident response, offensive or defensive cyber operations, or related fields
- Bachelor’s degree in Cybersecurity, Computer Science, Information Technology, or a related discipline preferred
- Equivalent professional experience may be substituted for formal education
- Experience supporting enterprise cyber defense, intelligence analysis, or security operations missions
Additional Information
- Overtime may be required to support incident response surge operations
- Position may require up to ten percent (10%) travel based on mission needs
Benefits at 3 Reasons Consulting
At 3 Reasons Consulting, we are committed to supporting the well-being of our team with a comprehensive benefits package that includes both company-paid and shared-cost options. Our benefits are designed to enhance your health, financial security, and work-life balance to help you thrive personally and professionally as a valued member of our team.
Company-Paid Benefits
At 3 Reasons Consulting, we are committed to supporting the well-being of our team with a comprehensive benefits package that includes both company-paid and shared-cost options. Our benefits are designed to enhance your health, financial security, and work-life balance to help you thrive personally and professionally as a valued member of our team.
Company-Paid Benefits
- Short/Long Term Disability
- Basic Life Insurance
- Direct Payroll Deposit
- Leave Accrual
- Holidays
- 401(k) Match
Employee / Company Shared Benefits
- Additional (Voluntary) Life Insurance
- 401(k)
- Medical Coverage
- Dental Coverage
- Vision Care Plan
- Flexible Spending Account Plan
3 Reasons Consulting is an Equal Opportunity Employer. We are committed to providing a workplace free from discrimination or harassment and hold all 3 Reasons employees accountable to protect this mission. We do not discriminate on the basis of race, color, gender, religion, national origin, sexual orientation, age, marital status, veteran status, military status, disability status, or any other characteristic protected by federal, state, or local law. All applicants will receive consideration for employment without regard to protected bases.