Cyber Threat Intelligence (CTI) Analyst

About The Position

Requirements

• Ability to produce finished intelligence products for technical and non-technical audiences
• Ability to identify patterns in complex threat actor behavior and assess evolving cyber threats
• Proficiency using online research tools, forums, social media, and traditional intelligence sources
• Knowledge of Transmission Control Protocol / Internet Protocol (TCP/IP) networking concepts
• Self-motivated with a strong interest in cybersecurity and threat intelligence
• Experience briefing leadership and interagency partners on cyber threat topics
• Experience with analytic and threat intelligence platforms such as Augury, Splunk, Elastic, Threat Analysis Center (TAC), Palantir, Shodan, Analyst’s Notebook, or similar tools
• Experience collaborating with Intelligence Community partners on cyber-related issues
• Minimum Security Clearance: Top Secret, with ability to obtain Top Secret / Sensitive Compartmented Information (TS/SCI)
• eCRAFT: CSE2
• Five (5) years of experience

Nice To Haves

• Strong analytical and research skills focused on cyber threat intelligence
• Ability to analyze complex technical data and translate findings into actionable intelligence
• Excellent written and verbal communication skills, including the ability to brief senior leadership
• Ability to work independently and collaboratively in a team-oriented environment
• Strong organizational skills and attention to detail
• Familiarity with intelligence analysis methodologies and cyber threat intelligence frameworks

Responsibilities

• Perform daily review of cyber threat warnings, bulletins, alerts, and incident reporting documentation
• Conduct research on emerging cyber threats and provide correlation and trend analysis of cyber incident activity
• Maintain awareness of adversary activities, including intrusion set tactics, techniques, and procedures (TTPs)
• Communicate threat activity and significant events to appropriate agencies regarding intrusions and compromises affecting networks, applications, and operating systems
• Develop cyber threat assessments based on analysis and coordinate threat tracking with other organizations and government partners
• Compile detailed investigation, intelligence, and analytical reports
• Develop, update, and maintain internal Standard Operating Procedures (SOPs)
• Ensure documentation, tools, and analytical processes remain compliant with Chairman of the Joint Chiefs of Staff Manual (CJCSM) 6510.01B and other applicable directives
• Participate in program reviews, product evaluations, and onsite certification assessments
• Support incident response surge operations as required
• Update intrusion detection system and intrusion prevention system (IDS/IPS) signatures and review associated alerts as authorized
• Review audit records and auditable events on centralized log management systems

Benefits

• Short/Long Term Disability
• Basic Life Insurance
• Direct Payroll Deposit
• Leave Accrual
• Holidays
• 401(k) Match
• Additional (Voluntary) Life Insurance
• 401(k)
• Medical Coverage
• Dental Coverage
• Vision Care Plan
• Flexible Spending Account Plan