← Back to jobs
BA

Advanced Cyber Defense Practice Lead

Bah
The Hague, South Holland Lead / Staff Full-time
Advanced Cyber Defense Practice Lead

The Opportunity:

Guide modern SOC, Cyber Fusion Center, and detection and response transformation initiatives for large multinational enterprises across select international regions. Shape and deliver Booz Allen’s advanced cyber defense capabilities, working closely with CISOs, cyber defense leaders, and security operations teams. Design next‑generation operating models, modernize SOC and Fusion Center capabilities, and strengthen detection engineering and use‑case lifecycle management. Drive adoption of AI‑enabled and agentic SOC concepts in practical, mission‑focused ways. Lead the building or transforming of SOC, CSIRT, or cyber defense functions in complex enterprise environments. Lead client delivery, solution design, proposal shaping, and high‑impact technical engagement. Manage and grow a multidisciplinary team while supporting business development, thought leadership, and overall operational excellence.

You Have:

  • 12+ years of experience leading modern SOC, Cyber Fusion Center, CSIRT, cyber defense, or detection and response programs in large, complex enterprise environments
  • 5+ years of experience designing and implementing SOC or Cyber Fusion Center operating models, including governance, workflows, escalation paths, coverage models, and performance metrics
  • Experience in detection engineering and use‑case lifecycle management, including triage, tuning, enrichment, prioritization, and measurement across enterprise telemetry
  • Experience with advanced cyber defense tools and enablers such as security telemetry pipelines, AI‑enabled SOC workflows, automation, machine learning, and behavioral or anomaly analytics
  • Experience advising senior stakeholders, including CISOs and cyber defense leaders, on strategy, maturity, gaps, target‑state design, and actionable improvement roadmaps
  • Experience with SIEM, SOAR, XDR, EDR, NDR, IAM, cloud security platforms, and enterprise security technologies
  • Experience developing proposals, technical solution narratives, roadmaps, business cases, and client‑ready presentations
  • Experience coaching and leading multidisciplinary technical teams, and operating effectively in a high‑growth, entrepreneurial environment
  • Ability to lead client delivery, including solution architecture, technical execution, engagement leadership, and quality oversight
  • Bachelor's degree

Nice If You Have:

  • Experience translating enterprise cyber defense into client delivery, including executive facilitation, structured problem solving, stakeholder alignment, and polished written and verbal communication, and applying MITRE ATT&CK, cyber kill chain concepts, threat intelligence, threat hunting, purple teaming, adversary emulation, deception, exposure management, or related threat-informed methodologies to improve detection and response
  • Experience with cyber defense maturity assessments, operating model transformation, Cyber Fusion Center design, CSIRT development, security operations modernization, or managed detection and response transformation
  • Experience with cloud security operations, SaaS security, identity-centric detection and response, OT/ICS cyber defense, or large-scale hybrid enterprise security environments
  • Experience across both production security data pipelines and AI/ML-enabled detection or prioritization, including where advanced analytics are useful and where rules, signatures, automation, or human judgment remain necessary
  • Experience creating thought leadership, presenting at industry events, leading technical workshops, or supporting market-facing cyber defense campaigns that build credibility with CISO and cyber defense communities
  • Ability to travel up to 25% of the time based on client and business needs, and adapt global methodologies to regional market needs, regulatory expectations, language requirements, and client operating environments
  • Ability to engage senior stakeholders while maintaining credibility with technical SOC and cyber defense teams
  • Possession of strong executive communication skills
  • Master’s degree
  • CISSP, CISM, GIAC, GCIH, GCIA, GMON, GCTI, SANS, CREST, OSCP, Splunk, Cloud Security, or similar Certifications

Identity Statement

As part of the hiring process, we will ask you to complete an identity verification process that leverages advanced biometrics and artificial intelligence to ensure authenticity and protect against identity fraud. You are expected to be on camera during interviews and assessments. We reserve the right to take your picture to verify your identity and prevent fraud.

Candidate AI Usage Policy

AI is a part of our daily work at Booz Allen, and we are committed to the responsible and ethical use of AI tools. However, we want to ensure a fair candidate process based on your own skills and knowledge. As part of this commitment, the use of artificial intelligence (AI) or other tools to assist with responses during interviews (whether in-person or virtual) is prohibited unless permission is explicitly provided.

Commitment to Non-Discrimination

All qualified applicants will receive consideration for employment without regard to disability, status as a protected veteran or any other status protected by applicable federal, state, local, or international law.

More jobs at Bah

See all Bah jobs →

Similar roles

Free Access

Subscribe to view full job details

Get unlimited access to job listings, apply links, and weekly curated picks. Plus, learn how Latentra's career placement program can land your next role — we only charge after you're hired.

No spam. Unsubscribe anytime. Learn about our program

Chat with us