Technical Task Lead

Responsibilities

The Vulnerability Disclosure Program (VDP) Technical Team Lead will oversee the technical execution of Defense Cyber Crime Center (DC3)/VDP Directorate support services, ensuring quality control, operational excellence, and the effective management of the contract team. This role emphasizes leadership, team development, and efficient delivery of cybersecurity solutions. Reporting directly to the VDP contractor mission task lead, the Technical Team Lead is responsible for guiding a hybrid team of cybersecurity professionals to meet mission objectives in both classified and unclassified environments.

Key Responsibilities:

• Team Leadership and Management:
• Lead, supervise, and mentor a diverse team of vulnerability analysts, fostering a collaborative and high-performing work environment.
• Manage hybrid teams, balancing in-person and remote team dynamics while ensuring alignment with program goals.
• Oversee training programs and maintain a Job Qualification Requirement (JQR) framework to ensure team readiness and operational excellence.
• Coordinate with internal and external stakeholders, maintaining clear and professional communication channels.
• Vulnerability Management:
• Oversee the review and validation of vulnerability reports submitted to the Department of Defense (DoD) VDP by independent researchers.
• Ensure vulnerability analysts verify the validity, scope, reproducibility, and severity of reported vulnerabilities, and assign accurate risk scores.
• Track the lifecycle of vulnerabilities from submission to remediation, validating mitigation actions and ensuring timely resolution.
• Operational Oversight:
• Prepare and monitor Service Level Agreement (SLA) metrics to ensure timely and efficient processing of vulnerability reports.
• Utilize tools such as the HackerOne Triage console to prioritize, track, and manage submissions, including identifying duplicate reports.
• Apply web penetration testing methodologies and tools to validate vulnerabilities and assess their potential impact.
• Stakeholder Communication and Coordination:
• Act as the primary liaison between security researchers, DoD system owners, JFHQ-DODIN, and Government leadership.
• Facilitate timely and professional responses to external stakeholders while aligning team efforts with mission objectives.
• Format and deliver validated reports to DoD-approved standards for further coordination by the Vulnerability Management Analyst team.

Qualifications

Qualifications:

• Leadership Experience:
  • At least 6 years of relevant experience, including supervisory or lead roles.
  • Experience leading and managing teams in professional IT or cybersecurity environments, both classified and unclassified.
  • Proven ability to manage diverse groups of personnel, prioritize team objectives, and drive performance in complex environments.
  • Experience working with JFHQ-DODIN is highly desirable.
• Technical Expertise:
  • Strong knowledge of information security principles, technologies, and practices.
  • Expertise in TCP/IP, IDS/IPS rules, and investigating security events, threats, and vulnerabilities.
  • Familiarity with the OWASP Top Ten vulnerabilities, remediation techniques, and tools like BurpSuite, Nmap, and Kali Linux.
  • Proficiency with vulnerability tracking systems and frameworks (e.g., CVEs, NVD, CVSS).
  • Experience with cloud infrastructures (AWS, Microsoft Azure) and programming/scripting languages (Python, JavaScript, BASH, Java).
• Compliance and Standards:
  • Solid understanding of STIG requirements, Risk Management Framework (RMF), and U.S. government cybersecurity compliance frameworks.
  • Proven experience applying government compliance standards to enhance security postures.
• Soft Skills:
  • Exceptional leadership, communication, and customer service skills.
  • Strong organizational and problem-solving abilities, with a focus on managing multiple priorities in a dynamic threat landscape.
• Education:
  • Minimum Bachelor's degree
• Clearance:
  • Active Secret security clearance required.

Preferred Certifications:

• PMP or similar project management certification.
• Intermediate certifications such as GICSP, Cloud+, GCED, PenTest+, Security+, GSEC
• Advanced certifications such as CISSO, CPTE, CySA+, CFR, FITSP-A, GCSA, GPEN, CCE, CISA, CISM, GCIH, GSNA, OSCP.

Peraton Overview

Peraton is a next-generation national security company that drives missions of consequence spanning the globe and extending to the farthest reaches of the galaxy. As the world’s leading mission capability integrator and transformative enterprise IT provider, we deliver trusted, highly differentiated solutions and technologies to protect our nation and allies. Peraton operates at the critical nexus between traditional and nontraditional threats across all domains: land, sea, space, air, and cyberspace. The company serves as a valued partner to essential government agencies and supports every branch of the U.S. armed forces. Each day, our employees do the can’t be done by solving the most daunting challenges facing our customers. Visit peraton.com to learn how we’re keeping people around the world safe and secure.

Target Salary Range

$104,000 - $166,000. This represents the typical salary range for this position based on experience and other factors.