Cyber Threat Analyst Level 2

About The Position

Requirements

• Seven (7) years of experience with security operations, network forensics, insider threat.
• Bachelor’s degree in computer science, information systems, international relations, or other related field.
• Experience with XKS creating general queries, fingerprinting, and identifying atypical events.
• Experience with Elastic/Splunk/ or other Security Information and Event Management (SIEM) experience creating visualizations and dashboards.
• Understanding of TCP/IP communication protocols and packet flows based on IP traffic; analysis of Packet Capture (PCAP) traffic in Wireshark.
• Familiarity writing signatures in Zeek and/or Snort.
• Must have a bachelor’s degree in computer science, information systems, network forensics or other data analysis roles.
• Three (3+) years’ experience working in the areas of intelligence, information security, network forensics, insider threat or security operations.
• U.S. Citizenship.

Responsibilities

• Conduct research to maintain an in-depth understanding of emerging cyber threats.
• Contribute to detection strategies.
• Support a team of threat analysts with the goal to eradicate vulnerabilities to critical U.S. systems.
• Research OSINT and current world event trends; correlate and translate vulnerabilities across supply chain, defense industrial base and other critical system areas of interest.
• Translate knowledge, findings and recommendations to the classified environment.
• Analyze, correlate, and synthesize threat data from diverse sources.
• Work with a team of analysts and developers to articulate enhancements to capabilities and tools.
• Document findings, create detailed reports, and present results to technical and non-technical stakeholders.