Senior Cyber Lead

Tyto Athene is seeking a Senior Cyber Lead to support the Department of Defense Cyber Crime Center (DC3) Cyber Forensics Laboratory (CFL) mission supporting digital forensics, cyber investigations, intrusion analysis, malware analysis, cyber defense operations, and mission-critical DFIR activities.

Responsibilities:

• Lead cyber operations, digital forensics, incident response, intrusion analysis, and malware analysis activities supporting the DC3 Cyber Forensics Laboratory (CFL).
• Provide technical leadership and oversight for Digital Forensics and Incident Response (DFIR) operations supporting DoD law enforcement, counterintelligence, cyber operations, and Defense Industrial Base (DIB) investigations.
• Lead forensic investigations involving host-based analysis, network intrusion investigations, malware analysis, memory analysis, and cyber threat activity.
• Direct advanced cyber investigations and forensic examinations across Windows, Linux/Unix, macOS, mobile, and enterprise environments.
• Manage forensic workflows, evidence handling procedures, and chain-of-custody compliance in accordance with ISO/IEC 17025 accreditation standards and DC3 operational procedures.
• Lead technical analysis of advanced persistent threats (APTs), cyber espionage activity, insider threats, and malicious cyber activity impacting DoD and Federal environments.
• Provide technical oversight of forensic tools, intrusion detection systems, endpoint security solutions, SIEM platforms, and cyber analytics capabilities supporting mission operations.
• Coordinate with Government stakeholders, forensic examiners, cyber analysts, and operational leadership to support active investigations and mission requirements.
• Support development and implementation of operational metrics, dashboards, analytics, and process improvements enhancing mission visibility and operational effectiveness.
• Lead incident response activities including threat containment, forensic acquisition, malware triage, root cause analysis, and operational recovery support.
• Ensure compliance with DoD cybersecurity requirements including RMF, STIG implementation, classified operational handling procedures, and secure evidence management.
• Support tool validation, forensic process standardization, SOP development, and quality assurance activities supporting ANAB ISO/IEC 17025 accreditation.
• Mentor and develop junior cyber analysts, forensic examiners, and technical personnel supporting the DC3 mission.
• Provide executive-level briefings, technical reporting, and operational updates to Government leadership and mission stakeholders.
• Support operational modernization initiatives including automation, analytics, AI/ML-enabled cyber operations, and workflow optimization.
• Occasional travel to Government and operational locations may be required.

Qualifications

Required:

• Bachelor's Degree in Cybersecurity, Computer Science, Information Systems, Digital Forensics, Engineering, or related field.
• 10+ years of progressive experience supporting cybersecurity, DFIR, cyber operations, digital forensics, or cyber investigative missions.
• 3+ years in a senior technical leadership role supporting cyber operations, DFIR, incident response, or classified mission environments.
• Demonstrated experience conducting host-based forensics, intrusion analysis, malware analysis, memory analysis, and cyber investigations.
• Strong understanding of DoD cybersecurity architecture, RMF, STIGs, cyber defense operations, and classified operational environments.
• Experience supporting SIEM, IDS/IPS, endpoint security, cyber analytics, and enterprise cyber defense technologies.
• Experience managing technical cyber teams, forensic operations, or cyber investigative activities.
• Strong analytical, leadership, technical writing, briefing, and communication skills.
• Experience supporting ISO/IEC 17025 accredited environments, digital evidence handling, or forensic quality assurance processes is highly desired.
• Ability to operate effectively in fast-paced, mission-critical operational environments.

Desired:

• Master's Degree in Cybersecurity, Digital Forensics, Computer Science, or related technical discipline.
• Experience supporting DC3, AFCYBER, USCYBERCOM, NSA, CISA, or Intelligence Community cyber missions.
• Experience supporting malware reverse engineering, threat intelligence, cyber threat hunting, or advanced intrusion investigations.
• In-depth experience with cybersecurity and forensic toolsets including Splunk, ELK Stack, FTK, EnCase, X-Ways, Velociraptor, Volatility, or Wireshark.
• Knowledge of Zero Trust Architecture, enterprise cyber modernization, and AI/ML-enabled cyber operations.
• Experience supporting operational analytics, dashboarding, and cyber workflow automation initiatives.
• Certified Ethical Hacker (CEH), GIAC certifications, or advanced DFIR certifications are highly desired.
• ITIL v4 Foundations or operational service management experience is a plus.

Certifications:

• DoD 8570 / 8140 baseline certifications required (CompTIA Security+ CE)
• CISSP, CISM, GCFA, GCIH, GCFE, DFE, or equivalent cybersecurity/forensics certifications strongly preferred.

Clearance:

• Top Secret/SCI Eligible Clearance Required.

About Tyto Athene

Compensation:

• Compensation is unique to each candidate and relative to the skills and experience they bring to the position. This does not guarantee a specific salary as compensation is based upon multiple factors such as education, experience, certifications, and other requirements, and may fall outside of the above-stated range.

Benefits:

• Highlights of our benefits include Health/Dental/Vision, 401(k) match, Paid Time Off, STD/LTD/Life Insurance, Referral Bonuses, professional development reimbursement, and parental leave.

Tyto Athene is a trusted leader in IT services and solutions, delivering mission-focused digital transformation that drives measurable success. Our expertise spans four core technology domains-Network Modernization, Hybrid Cloud, Cybersecurity, and Enterprise IT-empowering our clients with cutting-edge solutions tailored to their evolving needs. With over 50 years of experience, Tyto Athene proudly support Defense, Intelligence, Space, National Security, Civilian, Health, and Public Safety clients across the United States and worldwide.

At Tyto Athene, we believe that success starts with our people. We foster a collaborative, innovative, and mission-driven environment where every team member plays a critical role in shaping the future of technology. Are you ready to join #TeamTyto?

Tyto Athene, LLC is an Equal Opportunity Employer; all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, [sexual orientation, gender identity,] national origin, disability, status as a protected veteran, or any characteristic protected by applicable law.