Senior Cybersecurity Strategist

We’re ALTEN Technology USA, an engineering company that provides solutions for engineering, technology, and product development projects. For decades, we’ve been helping our clients develop products that are changing the world, whether that’s by shaping the future of space exploration, saving lives with medical devices that set a new standard of care, or creating the fully autonomous electric taxi of tomorrow. Our team of more than 600 people works across industries including aerospace, medical devices and life sciences, unmanned systems and robotics, automotive OEM and tier 1 suppliers, commercial vehicle, electric vehicles, rail, and more. Our offices across the US have different industry focuses and engage with our clients in different ways, ranging from working on-site at client facilities to performing product development at our delivery centers.
 
ALTEN Group, our parent company, has been a leader in engineering and information technology for more than 30 years. ALTEN Group operates in 30 countries across Europe, North America, Asia, Africa and the Middle East and employs more than 36,000 people, 88% of whom are engineers. The company covers the whole development cycle and offers a choice of service levels, from technology consulting to complete project outsourcing.
 
When you join ALTEN Technology USA, you join a group of people passionate about collaborating to solve some of the world’s most technical engineering challenges. Our success is tied to taking care of our employees by building relationships and providing opportunities for mentorship and career growth. We offer comprehensive benefits for all full-time employees, including medical, dental, and vision insurance; a 401(k) plan with employer matching; paid time off (PTO); paid parental leave; and mentorship to help you take your career to the next level. You don’t have to take our word for it that we are a great place to work—we were named on the 2023 Top Workplaces list thanks to feedback from our proud employees.

We are seeking a seasoned cybersecurity expert to lead the strategic development and technical advancement of our Cybersecurity Operations Center (CSOC). The ideal candidate will bring a rare combination of deep technical proficiency, visionary leadership, and strategic acumen. You thrive in high-pressure environments, possess advanced threat detection and response expertise, and are passionate about mentoring others while staying ahead of the evolving threat landscape. If you're a trusted security leader who excels at turning intelligence into action and shaping resilient SOC operations, this role is for you.

Responsibilities:

Strategic Threat Defense & CSOC Leadership

• • Collaborate with CSOC leadership to define long-term strategy and security roadmap.

  • Continuously assess and refine detection and response capabilities to align with business risk and threat evolution.

  • Lead SOC maturity initiatives focused on automation, advanced analytics, and threat-driven operations.

  • Develop and track KPIs to evaluate CSOC effectiveness, readiness, and resiliency.

  • Advise executives, IT security teams, and business stakeholders on cyber risk posture and incident response strategies.

Advanced Incident Response & Threat Hunting

• • Act as the top-tier escalation point for advanced cyber threats (e.g., APTs, ransomware, insider threats).

  • Conduct proactive threat hunting using behavioral analytics and adversary emulation techniques.

  • Lead deep-dive forensic investigations into network breaches, malware events, and cloud-based attacks.

  • Engineer custom detections in SIEM, EDR, and network security tools to increase visibility into sophisticated threats.

  • Correlate data from threat intel feeds, logs, and telemetry to uncover persistent or targeted attacks.

Cyber Threat Intelligence & Research

• • Monitor global threat landscapes, emerging APT tactics, vulnerabilities, and exploit trends.

  • Lead threat modeling and adversary tracking, mapping TTPs to MITRE ATT&CK, Cyber Kill Chain, and TIBER-EU frameworks.

  • Collaborate with intelligence partners to integrate actionable threat intelligence into CSOC processes.

  • Research new malware, exploits, and attack vectors to ensure defenses evolve ahead of adversary innovation.

Security Engineering & SOC Enhancement

• • Partner with security engineers and architects to harden enterprise infrastructure and improve detection efficacy.

  • Lead SOAR development and automation playbook creation to streamline incident response workflows.

  • Recommend and implement modern technologies including UEBA, deception tools, and AI-based detection.

  • Support red team/blue team exercises, purple teaming engagements, and organizational cyber stress testing.

Leadership, Mentorship & Training

• • Mentor and guide SOC analysts across all levels (L1–L3), cultivating advanced cybersecurity skills.

  • Design and lead tabletop exercises and incident response simulations to enhance preparedness.

  • Represent CSOC in executive security briefings, industry conferences, and strategic advisory forums.

  • Support the development and enforcement of cybersecurity policies and regulatory compliance initiatives.

Qualifications:

• Bachelor’s or Master’s degree in Cybersecurity, Computer Science, or a related discipline.

• 10+ years of progressive experience in cybersecurity, with specialization in SOC operations, IR, and threat intel.

• Ability to work fully onsite in Greensboro, North Carolina from 2:00pm-10:30pm Monday-Friday.

• Proven track record leading investigations into nation-state and organized cybercrime operations.

• Incident Response & Forensics: Expertise in memory analysis, endpoint telemetry, network forensics, and digital investigations.

• Security Tools: Extensive experience with SIEMs, EDR platforms, IDS/IPS, and threat intelligence systems.

• Detection Engineering: Skilled in crafting YARA, Sigma, and custom detection rules for advanced threats.

• Threat Intelligence: Deep knowledge of cyber threat ecosystems, adversary TTPs, and intelligence frameworks like MITRE ATT&CK.

• Malware & Adversary Analysis: Ability to reverse engineer malware and extract tactical and strategic IOCs.

• Security Automation: Proficiency in scripting (Python, PowerShell, Bash) to automate detection and response processes.

• Cloud & Network Security: Expertise in cloud environments (AWS, Azure, GCP), zero-trust models, and modern network defense.

Bonus Qualifications:

• One or more of the following: CISSP, GCIH, GCFA, GCFE, GNFA, OSCP, CCTHP, CTIA, or CISM.

• Hands-on threat hunting and intelligence-driven defense leadership.

• Advanced malware analysis and reverse engineering in enterprise or government settings.

• Development and deployment of SOAR workflows and playbooks.

• Deep expertise in cloud security architecture and identity-based threat detection.

• Experience defining and executing cyber defense strategies and roadmaps for global organizations.

• Ability to distill complex technical findings into executive-level security insights and risk decisions.

Salary Range: $100,000-$150,000

The actual salary offered is dependent on various factors including, but not limited to, location, the candidate’s combination of job-related knowledge, qualifications, skills, education, training, and experience. 

ALTEN Technology is an Equal Opportunity Employer. Our Policy is to extend opportunities to qualified applicants and employees on an equal basis regardless of an individual’s age, race, color, sex, religion, national origin, disability, sexual orientation, gender identity/expression or veteran status.

Please beware of job seeker scams and see this important notice on our careers page for more information about our recruiting process.