CYBER ALL SOURCE THREAT INTELLIGENCE ANALYST

About The Position

Requirements

• Bachelors Degree. 6 Years+ of experience and certifications/training may be accepted in lieu of Degree
• Experience in intelligence analysis. identifying and evaluating emerging and persistent threats, trends, TTPs, attribution, or threat hunting.
• Experience with analyzing multiple disparate data sources (passive dns, threat feeds, vulnerabilities, attack surface, etc) to enrich and aid in threat tracking/analysis.
• Experience with analyzing NetFlow and analyzing network traffic to identify malicious activity.
• Experience with threat intelligence tools and databases at open source and classified levels.
• Experience with open source research (social media, blogs, IRC, deep/dark web, message boards).
• Knowledge of network and/or operating systems security (Intrusion Detection/Prevention Systems, Firewalls).
• Active Secret Security Clearance. Must be capable/eligible of obtaining a Top Secret clearance.

Nice To Haves

• Experience in weapon system decomposition, program design review, and analysis.
• Experience with analyzing vulnerabilities to determine realistic impact/risk to customer's network.
• Experience with adversary emulation, cyber protection team, red team, and vulnerability exploitation.
• Experience in cyber digital forensics and incident response investigations.
• Conducting vulnerability scans and recognizing vulnerabilities in security systems.
• Knowledge of global supply chain dynamics and emerging risks.
• Proficiency in using supply chain management software and risk management tools.
• Strong analytical skills, with experience in data analysis, risk modeling, and scenario planning

Responsibilities

• Perform cyber threat intelligence collection at open source and classified levels, using multiple analytical tools, in order to provide client's a understanding of the threats and risks the networks and systems face.
• Perform network traffic analysis to identify anomalies and potential threats.
• Research emerging threats.
• Provide evaluations on the current threats to vendors and components (hardware and software), and make recommendations for mitigations.
• Support incident response by providing threat actor TTP's, known indicators of compromise, and analysis to aid in the incident response process.
• Provide briefings to customer's senior officials on various topics including but not limited to: emerging threats, APT's, research findings, supply chain risk analysis, open source and classified data, and recommendations for improving security posture.
• Proficiency in using open source tools and web scraping techniques for information.
• Knowledge of cyber threats, vulnerabilities, indications and warnings, and the acquisition lifecycle.
• Identify threats and potential risks in the supply chain, including those related to suppliers, logistics, geopolitical issues, regulatory changes, and environmental factors.
• Conduct thorough risk assessments to evaluate the likelihood and potential impact of identified risks on clients supply chains.
• Develop risk profiles for suppliers, vendors, assembly locations, and other critical supply chain components.