Cyber Threat Intelligence Analyst

Employer
AboutWeb
Location
Washington D.C.
Posted
Jun 05, 2018
Closes
Jun 28, 2018
Function
Analyst, Intelligence
Hours
Full Time
AboutWeb is seeking an experienced, motivated Computer Threat Intelligence Analyst to support our VA customer. The Threat Intelligence Analyst will be responsible for providing threat intelligence collection and monitoring, analysis, and reporting. The position is located on-site at the customer's facility. U.S. Citizenship is required for this role.

SOC experience is required. Experience with Python is a plus.
Responsibilities The successful candidate must be well-versed in security operations, cyber security tools, intrusion detection, and secured networks. The candidate will provide operational support on expert level analysis in regards to Advanced Persistent Threats (APTs), Indicators of Compromise (IOC), Intelligence Gathering and sharing this information with other formalized partners. Duties and responsibilities may include, but are not limited to:
  • Provide proactive event monitoring/event management/configuration of the following security tools for targeted threats and malicious activity including but not limited to:Splunk, Palo Alto Networks, McAfee EPO, Cisco Ironport, Netscout, Sourcefire Defense Center and Bigfix
  • Determine if an event meets the criteria for additional cyber hunt investigation and/or constitutes a security incident subject to investigation and notify team lead or designate within 15 minutes
  • Review audit logs and identify any unusual or suspect behavior
  • Provide targeted attack detection and analysis, including the development of custom signatures and log queries and analytics for the identification of targeted attacks
  • Develop and execute custom scripts to identify host-based indicators of compromise
  • Provide advanced technical capabilities to senior leadership, including Big Data Analytics, and Predictive Intelligence
  • Provide proactive APT hunting, incident response support, and advanced analytic capabilities
  • Profile and track APT actors that pose a threat to the organization in coordination with threat intelligence support teams
  • Support the incident response process by providing advanced analysis services when requested to include recommending containment and remediation processes, independent analysis of security events, and reporting of identified incidents to Incident Handling (IH)
Qualifications
  • Bachelor's degree or higher in Information Technology or other engineering or technical discipline and at least 6 years IT experience plus minimum four years advanced Cyber Threat Information experience.
  • Four (4) years of relevant experience may be substituted with professional certification (e.g., CISSP, GREM or GCIH)
  • Must have Certified Cyber Intelligence Investigator (CCII) certification
  • Certification (or ability to obtain certification) in at least one of the following areas:
    • Certified Counterintelligence Threat Analyst (CCTA)
    • Certified Cyber Intelligence Professional (CCIP)
    • Certifed Cyber Investigations Expert (CCIE)
  • Experience with advanced cyber security tools, network topologies, intrusion detection, PKI, and secured networks
  • In-depth understanding of NIST SP 800-61, US CERT and Office of Management and Budget (OMB) standards
  • Experience interpreting and implementing cyber security regulations
  • Excellent verbal communication skills
  • Outstanding written skills for preparing reports and briefings
  • Excellent analytical and problem solving skills
  • Ability to obtain a DoD Secret security clearance
  • U.S. Citizenship is required as is successfully passing a thorough Government background screening process requiring the completion of detailed forms and fingerprinting
** Government Contracting Experience Preferred **

#AW

Apply for Cyber Threat Intelligence Analyst

Already uploaded your resume? Sign in to apply instantly

Apply

Upload from your computer

Or import from cloud storage

Your Resume must be a .doc, .pdf, .docx, .rtf, and no bigger than 1Mb


4000 characters left

Marketing Communication

We'd love to send you information about Jobs and Services from Washington Post Jobs by email.

All emails will contain a link in the footer to enable you to unsubscribe at any time.


When you apply for a job we will send your application to the named recruiter, who may contact you. By applying for a job listed on Washington Post Jobs you agree to our terms and conditions and privacy policy. You should never be required to provide bank account details. If you are, please email us.