Senior Security Analyst - Cyber Threat Intelligence

Employer
USAJobs
Location
Washington, D.C
Posted
Aug 23, 2019
Closes
Aug 31, 2019
Hours
Full Time
Duties

Summary

Do you have a passion for all things cyber and security? Enjoy the challenge of identifying and mitigating threats and vulnerabilities, as they relate to Information Technology? The Office of the Chief Administrative Officer is seeking mission-driven candidates to join our team's mission to provide excellent administrative, technical, and operational solutions so the Members of Congress can perform their Constitutional duties. Bring your talents to the Hill!

Learn more about this agency

Responsibilities

Your Team

The CAO's Office of House Information Resources provides a wide range of technology services and support for the House. HIR employs several hundred people with a variety of skills including coding, design, telecommunications, emergency response, and online security. The responsibilities of the engineers, designers, coders, and project managers are vast, encompassing the security of the data on the House network, designing and supporting hundreds of House websites, and designing enterprise applications focused on efficiency and security, approving secure cloud applications, and managing contractors and vendors who provide information systems to the House. To protect the House, the Cybersecurity team employs expert technicians to repel attacks and search for and patch vulnerabilities. The Cybersecurity team also works to inform and educate Members and staff on best practices to ensure their systems and data remain protected.

Our Cyber team seeks a seasoned threat analyst to provide leadership in the development and effective Cyber Threat Intelligence (CTI) information in support of the Cybersecurity Program for the U.S. House of Representatives. The primary purpose of this position is to help collect, analyze, and disseminate cyber intelligence impacting the House. The cyber threat analyst will conduct all-source analysis, and adversary targeting to identify, monitor, assess, and counter the threat posed by foreign cyber actors against US information systems. This analyst will detail and analyze significant current events, threat actors, campaigns, tactics, techniques, and procedures (TTPs), and malware with the purpose of synthesizing information, identifying patterns, determining cause and effect, and understanding impact to current risk posture. This role will analyze intelligence with an emphasis on the production of operational intelligence products to drive the House's security posture, inform information security and technology practitioners and managers, assess exposure, identify controls or mitigations, and better inform leadership's awareness of ongoing cyber threat activity. The analyst would be responsible for working in both classified and unclassified environments.

Work shall be conducted either at the House Office Buildings located in the Metropolitan Washington, DC area during or our VA office in the Manassas area at standard daytime business hours and may require shift work, after hour, weekend or on-call support as this is a 24/7 required operation within the House of Representatives.

While no two days are the same, in this role you will be trusted with:

• Collecting, assessing and analyzing intelligence reports from multiple sources and disciplines
• Synthesizing and placing intelligence information into context; drawing insights about the possible implications
• Understanding the overall threat landscape; knowledge of different operational threat environments (e.g., first generation [script kiddies], second generation [non-nation state sponsored], and third generation [nation state sponsored])
• Monitoring and leveraging the deep web to gather intelligence about threat methods and actors to enhance the House's intelligence products
• Collaborating with other intelligence analysts and partners within the Legislative and Executive Branch and to ensure cyber intelligence is being effectively produced and utilized.
• Reviewing threats and providing analysis on how they relate to House environments
• Monitoring open source, social media, and other channels to report findings through various alerts
• Producing internal cyber intelligence reports to characterize threats based on observed cyber activity through incident analysis and campaign tracking
• Communicating tactical and strategic threat information to business leaders to assist them in making cyber risk decisions and to mitigate threats
• Producing cyber intelligence reports communicating technical issues to a broad audience including information security staff, non-technical business representatives and senior management
• Performing pro-active hunting for intelligence related to malicious activity that can impact the House's network and digital assets
• Delivering intelligence briefings to stakeholders as necessary
• Providing cyber intelligence training through expert understanding of tactics, techniques, and procedures of cyber threat actors
• Developing and executing plans for intelligence requirements, analytic products and supporting workflows
• Prioritizing collection, analysis and production tasking for junior analysts
• Leading the development of analytic products, collection plans or detection capabilities
• Routinely supporting cross-team initiatives to help implement cyber-security improvements
• Providing subject matter expertise to internal and external stakeholders on an as-needed basis

Travel Required

Occasional travel - Domestic travel may be required.

Supervisory status
No

Promotion Potential
12

Requirements

Conditions of Employment



Continued employment is contingent upon satisfactorily completing a criminal history records check (or other applicable security clearance) and a pre-employment drug-test (pre-identified position only).

Qualifications

Who You Are

You're the complete package: An analyst with a proven track record of collecting, processing, analyzing and disseminating cyber intelligence.

To be considered for the role, you must come equipped with:

• A bachelor's degree in Intelligence, Computer Science or a related field with 5 years of demonstrated experience in cyber-security and intelligence analysis. Master's degree in a related field preferred. 8 years of demonstrated experience and knowledge in cyber-security and intelligence analysis will be considered in lieu of a degree.
• One or more of the following preferred (CISSP, GIAC, EnCE, CCE, CEH, CISA, CISM)
• A minimum of SECRET is required but the candidate must be able to obtain and maintain a TOP SECRET/ SECURITY COMPARTMENTED INFORMATION (TS/CSI) Clearance.
• Working knowledge of cyber threat intelligence, actors, malware, tactics, techniques, and procedures (TTPs), malware, various security methodologies, and processes OR working knowledge of intelligence analysis and tradecraft
• Excellent verbal and written communication skills including the ability to clearly articulate technical and strategic level cyber matters to a variety of audiences
• Ability to multitask, prioritize, and manage time effectively
• Excellent interpersonal skills and professional demeanor
• Excellent customer service skills
• Ability to travel as needed
• The ideal candidate would also have 1+ years' experience as an IA, cybersecurity specialist, or related position in a federal or SLTT government or law enforcement agency. The incumbent would have working knowledge of cyber operational security, log analysis, NetFlow analysis, incident response, malware analysis, computer forensics, and/or cybercrime.

Education

Additional information

How You Will Be Evaluated

You will be evaluated for this job based on how well you meet the qualifications above.

Highly qualified candidates will be evaluated based on a structured interview.

Background checks and security clearance

Security clearance
Other

Drug test required
No

Required Documents

Resume submission.

If you are relying on your education to meet qualification requirements:

Education must be accredited by an accrediting institution recognized by the U.S. Department of Education in order for it to be credited towards qualifications. Therefore, provide only the attendance and/or degrees from schools accredited by accrediting institutions recognized by the U.S. Department of Education .

Failure to provide all of the required information as stated in this vacancy announcement may result in an ineligible rating or may affect the overall rating.

Similar jobs