Parsons Oman
Job Description
Parsons is seeking a talented DCO Analyst – SME with a background in building, maintaining processes and training approaches for MARFORCYBER’s operational APT detection tool. You will play a critical role in designing, implementing, and optimizing user adoption and education, ensuring high user proficiency and gradual system adoption metrics for multiple USMC customers.
Applicants must be able to attend occasional customer meetings in MD.
What You’ll Be Doing
Design role‑based training curriculum for cyber analysts, threat hunters, and incident responders using APT detection tools managed by PdM MCCO on behalf of MFCC
Develop hands‑on lab exercises using realistic APT scenarios and adversary emulation
Create quick reference guides, playbooks, and standard operating procedures
Establish and support train‑the‑trainer programs for distributed training across commands
Provide embedded support during initial operational capability (IOC) periods
Conduct over‑the‑shoulder mentoring during live threat hunting operations
Lead complex investigation walkthroughs demonstrating advanced analytical techniques
Facilitate after‑action reviews that identify training reinforcement needs
Support operational testing and validation of new detection capabilities
Develop use cases and detection logic for high‑priority threat scenarios
Optimize query performance and search efficiency for operational tempo
Train analysts on statistical methods, anomaly detection, and pattern recognition
Bridge communication between data engineers and operational analysts
What Required Skills You’ll Bring
6+ years of DCO experience in a DoD environment
5+ years hands‑on experience with APT detection, threat hunting, or intrusion analysis
3+ years developing and delivering technical training for cyber operations personnel
Demonstrated experience with SIEM, EDR, NDR, and threat intelligence platforms
Background in operational cyber defense (e.g., SOC, DCGS‑A/N, JFHQ‑DODIN, etc.)
Deep understanding of APT tactics, techniques, and procedures (e.g., MITRE ATT&CK framework)
Proficiency with data analytics platforms, such as Splunk, ELK Stack, Chronicle, Sentinel, or similar
Experience with threat intelligence integration and operationalization
Knowledge of packet analysis, log correlation, and behavioral analytics
Familiarity with scripting/query languages, such as SPL, KQL, SQL, Python
Excellent problem‑solving skills, to include analytical and troubleshooting abilities, with a strong attention to detail
Travel 20% of the time to meet with customers and perform on‑site support activities
Active TS/SCI with Poly is required
What Desired Skills You’ll Bring
Experience with DoD requirements development processes
Background supporting USCYBERCOM, Service Cyber Components, or NSA/CSS
Prior military cyber operations experience (e.g., 17X, 1B4, CTN, 17C, etc.)
Experience with learning management systems and training effectiveness measurement
Knowledge of adult learning principles and instructional design
Familiarity with Agile/SAFe methodologies for capability delivery
Security Clearance Requirement An active Top Secret SCI w/Polygraph security clearance is required for this position.
Salary Range: $86,700.00 – $151,700.00
We offer best‑in‑class benefits such as medical, dental, vision, paid time off, 401(k), life insurance, flexible work schedules, and holidays to fit your busy lifestyle.
Parsons is an equal opportunity employer, and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability, veteran status or any other protected status.
Parsons is aware of fraudulent recruitment practices. To learn more about recruitment fraud and how to report it, please refer to https://www.parsons.com/fraudulent-recruitment/.
#J-18808-Ljbffr
Applicants must be able to attend occasional customer meetings in MD.
What You’ll Be Doing
Design role‑based training curriculum for cyber analysts, threat hunters, and incident responders using APT detection tools managed by PdM MCCO on behalf of MFCC
Develop hands‑on lab exercises using realistic APT scenarios and adversary emulation
Create quick reference guides, playbooks, and standard operating procedures
Establish and support train‑the‑trainer programs for distributed training across commands
Provide embedded support during initial operational capability (IOC) periods
Conduct over‑the‑shoulder mentoring during live threat hunting operations
Lead complex investigation walkthroughs demonstrating advanced analytical techniques
Facilitate after‑action reviews that identify training reinforcement needs
Support operational testing and validation of new detection capabilities
Develop use cases and detection logic for high‑priority threat scenarios
Optimize query performance and search efficiency for operational tempo
Train analysts on statistical methods, anomaly detection, and pattern recognition
Bridge communication between data engineers and operational analysts
What Required Skills You’ll Bring
6+ years of DCO experience in a DoD environment
5+ years hands‑on experience with APT detection, threat hunting, or intrusion analysis
3+ years developing and delivering technical training for cyber operations personnel
Demonstrated experience with SIEM, EDR, NDR, and threat intelligence platforms
Background in operational cyber defense (e.g., SOC, DCGS‑A/N, JFHQ‑DODIN, etc.)
Deep understanding of APT tactics, techniques, and procedures (e.g., MITRE ATT&CK framework)
Proficiency with data analytics platforms, such as Splunk, ELK Stack, Chronicle, Sentinel, or similar
Experience with threat intelligence integration and operationalization
Knowledge of packet analysis, log correlation, and behavioral analytics
Familiarity with scripting/query languages, such as SPL, KQL, SQL, Python
Excellent problem‑solving skills, to include analytical and troubleshooting abilities, with a strong attention to detail
Travel 20% of the time to meet with customers and perform on‑site support activities
Active TS/SCI with Poly is required
What Desired Skills You’ll Bring
Experience with DoD requirements development processes
Background supporting USCYBERCOM, Service Cyber Components, or NSA/CSS
Prior military cyber operations experience (e.g., 17X, 1B4, CTN, 17C, etc.)
Experience with learning management systems and training effectiveness measurement
Knowledge of adult learning principles and instructional design
Familiarity with Agile/SAFe methodologies for capability delivery
Security Clearance Requirement An active Top Secret SCI w/Polygraph security clearance is required for this position.
Salary Range: $86,700.00 – $151,700.00
We offer best‑in‑class benefits such as medical, dental, vision, paid time off, 401(k), life insurance, flexible work schedules, and holidays to fit your busy lifestyle.
Parsons is an equal opportunity employer, and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability, veteran status or any other protected status.
Parsons is aware of fraudulent recruitment practices. To learn more about recruitment fraud and how to report it, please refer to https://www.parsons.com/fraudulent-recruitment/.
#J-18808-Ljbffr