Cybersecurity Analyst Intern

About The Position

Requirements

• Demonstrated academic knowledge of cybersecurity principles, with prior internship or project experience preferred.
• Actively pursuing a degree in a relevant field (e.g., Cybersecurity, Computer Science, Computer Engineering, Information Technology) from an accredited college/university.
• Proactive and eager to learn, with the ability to work independently, seek information, and communicate effectively (written and verbally).
• Solid understanding of TCP/IP protocols, common networking ports (e.g., 80, 443, 21, 22), and the OSI model.
• Ability to explain the principles of defense-in-depth and its application in securing a network.
• Basic knowledge of system administration concepts (Windows or Linux).
• Understanding of the Cyber Kill Chain methodology and/or the MITRE ATT&CK framework.
• Basic knowledge of malware analysis concepts and techniques (e.g., static and dynamic analysis), with experience using tools like VirusTotal or basic sandboxing environments.
• Ability to analyze security alerts, identify potential false positives, and prioritize investigations based on the severity and impact of the alert.
• Ability to obtain a Secret clearance to start (selected candidates will be sponsored for required clearance).
• Must be a US Citizen to qualify.
• Work must be performed on Ford Island, Hawaii.
• Must have reliable transportation to and from Ford Island, Hawaii.

Nice To Haves

• Security+ and/or CySA+ certifications.
• Academic knowledge of CND domains (Protect, Detect, Respond, and Sustain).
• Understanding of Computer Incident Response organization or Security Operations Center.
• Familiarity with an enterprise SIEM platform like Splunk or Elastic.
• Unix/Linux command line experience.
• Scripting and programming experience (e.g., Python, Bash).

Responsibilities

• Perform cyber threat intelligence analysis to identify potential threats and vulnerabilities.
• Review DoD and open-source intelligence feeds for emerging threats and vulnerabilities.
• Identify Indicators of Compromise (IOCs) from threat intelligence reports and integrate them into sensors and SIEMs to improve detection capabilities.
• Correlate actionable security events from various sources (SIEM, IDS/IPS, etc.) to identify suspicious activity.
• Perform network traffic analysis using raw packet data, net flow, IDS, IPS, and custom sensor output to detect malicious activity on communications networks.
• Participate in the coordination of resources during incident response efforts, assisting in containment, eradication, and recovery activities.
• Triage security alerts from various sources (e.g., SIEM, IDS/IPS) to identify potential malicious activity on customer networks.
• Conduct preliminary analysis of potential security incidents, such as investigating suspicious network connections, analyzing malware samples, or reviewing system logs for anomalous activity.
• Assist in reporting security incidents to customers and United States Cyber Command (USCYBERCOM) in a timely and accurate manner.

Benefits

• Pay Range $46,800.00 - $84,600.00