- Oversee day-to-day operations of the cyber investigations team, ensuring investigations are completed accurately, efficiently, and in accordance with outlined requirements and rubrics
- Serve as the senior technical authority on complex and escalated cases, making final determinations on real-world harm potential and offensive uplift
- Monitor and maintain quality metrics across the team, identifying gaps and implementing improvements to investigative processes and detection pipelines
- Interface directly with client stakeholders to communicate findings, surface emerging trends, and align on evolving policy and operational priorities
- Mentor and develop senior and junior investigators, providing guidance on technically demanding and ambiguous cases
- Lead threat actor analysis, synthesizing findings across cases to inform broader detection and mitigation strategies
- Query internal data sources via DQL and programmatically, and cross-reference open-source information (OSINT) to support investigations and validate team output
- Respond to critical escalations and on-call leads, including those not caught by existing safety systems
PythonSQLCybersecurity+1 more