Cybersecurity Threat and Exploitation Analyst

About The Position

Requirements

• 5+ years of experience supporting a DoD or government organization with information systems security, cybersecurity, networks, or communications systems
• 3+ years of experience supporting cybersecurity red or blue teams, and executing red or blue team events
• 3+ years of experience working in a security operations center or cyber operations environment, and with vulnerability assessments and risk management of networks, systems, and communications protocols
• Knowledge of the Risk Management Framework (RMF), including Assessment and Authorization (A&A) activities, direct development of RMF artifacts, and deliverables across all Steps, and cybersecurity compliance testing using industry standard tools, including Assured Compliance Assessment Solution (ACAS) and DoD Security Technical Implementation Guides (STIG)
• Knowledge of Python and PowerShell to create scripts, queries, and analytics
• Ability to use threat intelligence data to inform planning and exercises, and use threat intelligence data to inform exercise planning and recommend security enhancements and hardening, through active engagement of incident response activities, including analysis of artifacts, writing incident reports, and triaging of security events
• Ability to write succinct briefings, presentations, and reports to convey analysis, devise and execute client deliverables, work independently, identify problems and devise analysis and solutions, communicate results, and lead the accomplishments of client tasks from inception to completion
• TS/SCI clearance with a polygraph
• HS diploma or GED
• DoD 8140 Certification

Nice To Haves

• Experience with operational readiness, mission engineering, and integration
• Experience with RedSeal
• Experience with endpoint security
• Experience with threat detection, cyber kill chains, vulnerability exploitation and management, TTPs, and endpoint detection and response
• Experience with network engineering functions, including Windows, Linux, and virtual operating systems, security tools, platforms, and technologies, including network and web application firewalls, web proxy, intrusion prevention systems, vulnerability scanners, and penetration tools
• Knowledge of DevSecOps, GitHub, Docker, containerization, and CI/CD pipelines
• Ability to learn new technologies and implement updated rigorous security controls, and articulate industry best practice cybersecurity and threat-based cybersecurity frameworks and trends
• Bachelor's degree
• CEH, OSCP, GCTH, GCTI, or GCIH Certification

Responsibilities

• Conduct testing and analysis to identify threat vectors
• Engineer attack methodologies
• Develop and deploy exploits
• Apply emerging technologies
• Uncover system and network vulnerabilities
• Design tools and tactics that support real-world missions
• Support defensive cyber operations across multiple platforms, networks, and systems
• Identify and mitigate risk
• Support the security and resilience of critical infrastructure and mission sets

Benefits

• health
• life
• disability
• financial
• retirement benefits
• paid leave
• professional development
• tuition assistance
• work-life programs
• dependent care
• recognition awards program