Senior Cyber Intelligence Analyst

About The Position

Requirements

• Minimum of 12 years with BS/BA; Minimum of 10 years with MS/MA; Minimum of 7 years with Ph.D. Will consider HS+16 years of experience.
• All-source analyst shall maintain, at the entry level (1-3 years of experience), an OT and critical infrastructure knowledge base and common intelligence picture within the AIDP, ensuring its content is current, accurate, and accessible to authorized users.
• Familiarity with physical and logical communication methods and protocols used in ICS, PLC, SCADA, DCS, RTU, and HMI systems
• Familiarity with current cybersecurity techniques specific to control systems
• Familiarity with emerging trends and technologies in the convergence of OT and IT networks
• Familiarity with ICS operations
• Familiarity with various threat methodologies used on OT systems
• Familiarity with OT cybersecurity best practices, threat landscape, and mitigation strategies in SCADA, PLC, Human Machine Interface (HMI), Distributed Control Systems (DCS), and other industrial automation systems.
• Active DOD TS/SCI clearance with the ability to obtain Polygraph and MEAD
• U.S Citizenship required
• Must be able to travel and/or provide surge support

Nice To Haves

• Certifications/training/experience: ISA/IEC 62443, SANS GIAC Critical Infrastructure Protection (GCIP), or GIAC Response and Industrial Defense (GRID) Certification, or ICS612 training, or at least 5 years of specific OT/ICS cybersecurity experience
• Familiarity/working knowledge of Army Intelligence Data Platform (AIDP), Object-Based Production (OBP), and military intelligence databases

Responsibilities

• Conduct thorough assessments to identify potential threats and vulnerabilities within OT systems
• Prioritize identified risks and develops mitigation strategies
• Conducts research and evaluates technical and all-source intelligence with specific emphasis on network operations and cyber warfare tactics, techniques, and procedures focused on the threat to networked weapons platforms and US and DoD information networks. Focus area is SCADA, PLC, HMI, DCS, and other industrial automation systems
• Analyzes network events to determine the impact on current operations and conduct all-source research to determine advisory capability and intent.
• Prepares assessments and cyber threat profiles of current events based on the sophisticated collection, research, and analysis of classified and open-source information.
• Correlates threat data from various sources.
• Develops and maintains analytical procedures to meet changing requirements and ensure maximum operations.
• Collects data using a combination of standard intelligence methods and business processes.
• Produces high-quality papers, presentations, recommendations, and findings for senior US government intelligence and network operations officials.