Cyber Threat Intelligence Lead

Employer
ActioNet
Location
Vienna, VA
Posted
Dec 01, 2021
Closes
Dec 03, 2021
Ref
235642632
Function
Analyst, Intelligence
Hours
Full Time
This position requires being fully vaccinated against COVID-19 by December 8, 2021 or the start date, if after December 8. ActioNet is looking for a Cyber Threat Intelligence Lead to support monitoring activities, developing cyber threat analysis, identifying mitigation and/or remediation courses of action, sharing actionable cyber threat intelligence used in organizational IT asset protection, and trending strategic cyber threats and situational awareness. This position will support a civilian agency Security Operations Center. Summary: This position will identify valid Indicators of Compromise (IOC's) and implement appropriate monitoring, alerting, or blocking. Assist with development and contributions to cyber threat intelligence products for distribution to Federal Partners over classified and unclassified communication networks. Compile cyber threat data gathered including, but not limited to present and emerging adversarial tactics, techniques, and procedures through independent research and analysis of identified activity combined with current SOC operations. Analyze unclassified and classified sources of information and cyber threat intelligence on foreign and/or domestic cyber threats, including recommended mitigation and/or remediation actions, as well as indicators of compromise (IOC's) that could affect information systems and/or networks. Perform cyber and technical threat analyses of hostile nation state actors, cybercriminals, terrorist organizations, and other malicious actors that could harm information systems and/or networks and report on any suspected or verified findings. Recommend countermeasures to malware and other malicious activity that could exploit information systems and/or networks. Develop IOC detection and response. Why ActioNet? It is simple. We are passionate about the inspirational missions of our customers and we entrust our employees and teams to deliver exceptional performance to enable the safety, security, health, and well-being of our nation. Basic Qualifications: Must have seven (7) years of experience as a Tier III senior cyber security analyst performing intelligence analysis, collection management, and technical analysis A minimum of five (5) years of hands-on experience with experience in the last two (2) years that includes host-based and network based security monitoring using cybersecurity capabilities Experience in developing scripts to support cyber threat detection that outputs results in a variety of formats, such as Powershell and Javascript and REST API, Python, C++, and HTML, XML US citizen DoD TS with SCI eligibility Preferred Qualifications: Related degree GCIA, GCIH What's in It For You? As an ActioNeter, you get to be part of exceptional team and a corporate culture that nurtures mutual success for our customers, employees and our communities. We give you the tools to be successful; all you need to do is bring your best ideas, your energy and a desire to develop your skills, experience and career. Are you ready to make a difference? ActioNet is an equal opportunity employer and value diversity at our company. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status. Job Types: Full-time, Contract Benefits: 401(k) 401(k) matching Dental insurance Health insurance Paid time off Referral program Schedule: 8 hour shift Application Question(s): Per contract requirement, are you an US Citizen? Experience: Tier III Cyber security analyst: 7 years (Required) security monitoring, digital forensics: 5 years (Required) Host/ Nework security monitoringt: 5 years (Required) Security clearance: Top Secret (Preferred) Work Location: One location