Cyber Threat Specialist, Senior
About The Position
As a cybersecurity professional, you know that understanding adversary tactics, techniques, and procedures is vital to producing the intel that enables the success of clients. At Booz Allen, you can apply your skills and broad knowledge to inform strategies and mitigate the most pressing vulnerabilities. Here, you aren’t just deciphering reports. You’re telling the story to inform our nation’s most far-reaching cybersecurity decisions. As a Cyber Threat Specialist on our team, you’ll help customers solve problems using the latest software. Using risk assessments and threat monitoring, you’ll work alongside multiple stakeholders to evaluate risk and make meaningful recommendations. You’ll monitor security environments and identify security gaps through the eyes of an adversary. In this role, you’ll impact customer missions by monitoring the network environment for new and evolving threats. Booz Allen is committed to creating an environment where you can expand your cyber career through mentoring, the opportunity to leverage new resources, and the ability to gain in-demand certifications to sharpen your skill set. With opportunities supporting both the private and public sectors across multiple geographies, your career is only limited by your own appetite for exploration. Work with us to secure the systems and networks of our nation’s critical infrastructure.
Requirements
- 3+ years of experience as a Security Operations Center (SOC) analyst
- Experience with Remedy, Splunk, or MDE
- Knowledge of MITRE ATT&CK Framework
- Knowledge of a SIEM query language such as SPL or KQL
- TS/SCI clearance
- HS diploma or GED and 6+ years of experience in cybersecurity, including as part of a SOC, or Bachelor’s degree in Cybersecurity and 3+ years of experience in cybersecurity, including as part of a SOC
- DoD 8570 IAT Level II Certification such as Security+ Certification
- DoD 8570 CSSP Certification such as CySA+, CEH, or GCIH Certification
Nice To Haves
- Knowledge of the Pyramid of Pain
- Splunk Core Certified User Certification
- Microsoft Certified: Security Operations Analyst Associate Certification
- CompTIA Advanced Security Practitioner (CASP) Certification
Responsibilities
- Map MITRE ATT&CK framework to event types to proactivity identify threat vector activity.
- Assess security systems for vulnerabilities and malicious activities and identify potential controls to mitigate them.
- Help determine the vulnerabilities, risks, and impacts on government systems and networks.
- Stay current with the cybersecurity threat landscape.
- Investigate any breaches and other security incidents.
- Document incidents and generate reports for team members and key staff.
- Work with other security team members to augment their role and advise on issues.
- Monitor security systems for suspicious network or application behavior.
- Document security incidents and implement response actions.
- Use various tools such as Remedy, Splunk, and MDE to perform duties.
Benefits
- health
- life
- disability
- financial
- retirement benefits
- paid leave
- professional development
- tuition assistance
- work-life programs
- dependent care
- recognition awards program
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
Education Level
High school or GED
