Detection & Case Management Lead

Job description

Responsibilities We are seeking a highly skilled and innovative Detection and Case Management Lead to join our team in the greater DMV area, supporting the Army National Guard. Key Responsibilities: - Define and govern detection architecture standards and lifecycle for correlation rules, signatures, behavioral analytics, and analytics pipelines aligned to MITRE ATT&CK and prioritized risks. - Translate threat intelligence, CDAP/CHAP/vulnerability findings into prioritized, testable detection use cases and automated alerting frameworks. - Oversee detection validation using telemetry analysis, adversary emulation, red‑team exercises, and lab testbeds; tune to reduce false positives and alert fatigue. - Lead end‑to‑end case management design: triage, enrichment, documentation, escalation, remediation tracking, and closure processes with SLAs and audit controls. - Establish runbooks, QA controls, and standard operating procedures for detection tuning and investigative documentation. - Partner with data engineering to improve telemetry ingestion, normalization, enrichment, retention, and evidence integrity for investigations. - Implement dashboards and reporting for detection efficacy,...