The Cyber Security Tools Analyst will support Raytheon's DOMino contract, a single-award IDIQ worth over $1 billion. This contract delivers full lifecycle development and sustainment for the Department of Homeland Security’s (DHS) National Cybersecurity Protection System (NCPS). The NCPS assists more than 100 federal civilian government agencies with the protection of their networks against advanced cyber threats. Under this contract, Raytheon will support the government in the design, development, operations and maintenance services for the NCPS. Raytheon will build the mission critical cybersecurity solutions that will enable the timely dissemination of threat warnings and improve information sharing across DHS's stakeholder community.
The successful candidate supports the development and implementation of cyber engineering strategies, tools and techniques to enhance a system’s cyber-resiliency against existing and emerging cyber-threats. The successful candidate will be required to perform hands-on technical analysis of test data and use critical thinking and a broad understanding of different technologies to identify areas susceptible to cyber-attack, based upon provided cyber-threat intelligence. Upon identifying susceptibilities, assist in developing recommended improvements to engineering requirements and specifications. The candidate will support development of presentations and reports to document findings, and will require good communication and interpersonal skills to convey findings in a tactful manner and at the technical proficiency of the audience.
Responsibilities also include:
•Capable of providing cybersecurity engineering support on systems, system elements, interfacing systems, components, security tools, devices and/or processes for developmental and operational cyber tools
•Possess in-depth technical and theoretical knowledge of cyber defensive operations and technologies
•Possess in depth technical knowledge of Splunk to include development
•Capable of working independently or as a team member to solve cybersecurity engineering problems
•Develop and analyze available COTs cyber protection tools that will improve security posture and provide recommendations that support the remediation and protection of systems
•Perform requirements traceability to assessment findings
•Perform cyber criticality, mission impact, and risk analysis of recommended tools
•Translate analytical findings into security “use cases” that can be implemented within available surveillance capabilities
•Provide detailed and accurate technical reporting of analysis results in the form of PowerPoint presentations and/or Word documents, as well as oral briefings on complex technical subjects attuned to senior management, technical, or non-technical audiences
•Top Secret clearance with SSBI in last five years (TS/SCI desired)
•Must hold one or more of the following certifications in good, current standing: CISA, GCIH, GCED, CISSP, or CASP
•Practical knowledge of high-level scripting/programming language (e.g. Python, Perl, PowerShell, etc.) to extract, de-obfuscate, or otherwise manipulate malware-related data
•Proficient with forensic analysis tools and techniques to identify malware technical indicators of compromise and perform triage
•Practical knowledge of Splunk policies, filters and rules to improve event analysis and data correlation
•Knowledge of Windows and Unix/Linux Operating Systems
•Ability to perform analysis of network traffic and protocols
•Background or experience in digital forensics is a plus
•Must possess excellent oral and written communication skills and critical thinking abilities
•Capable of working independently and within teams to solve complex problems
•Able to work across multiple organizations, cultures, and service providers to synthesize actionable information
Required Education (including Major):
•Bachelor's degree in Information Technology, Computer Science, Computer Information Systems, or related degree and a minimum of 8 years relevant experience
•A Master's degree in a related discipline may substitute for two (2) years of experience.
•Professional experience may be substituted for no degree
This position requires a U.S. Person who is eligible to obtain any required Export Authorization.
Raytheon is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, creed, sex, sexual orientation, gender identity, national origin, disability, or protected Veteran status.