Cyber Threat Analyst
- Military veterans preferred
2021-06-05 SAIC (www.saic.com)
Chantilly Virginia 20151 United States
SAIC is seeking a Cyber Threat Analyst to analyze cyber threat intelligence, model potential threat vectors, and assess potential program risks through the entire project and program life cycle for an exciting and innovative complex space and ground effort. The successful candidate will work both independently and in a team based environment to document and present findings, both orally and written, as well as conduct analysis of alternatives for appropriate mitigation selection.
This position requires a current TS clearance with ability to upgrade and is located in Chantilly, VA.
Duties and Responsibilities:
Perform Cyber Threat Assessment and Remediation Analysis
Researches, analyzes, and documents cyber security intelligence bulletins, alerts, and briefings for stakeholders
Conduct in-depth research and analysis to assess communications infrastructure that may support voice, data, video, radio, electronic security, and industrial control systems/networks
Researches topics and collaborates with stakeholders to understand threat vectors
Identify threat tactics and methodologies as well as intelligence gaps and shortfalls
Analyzes business problems and helps prescribe communication solutions.
Monitor and report changes in threat dispositions, activities, tactics, capabilities, objectives, etc.
Ability to work quickly, and a willingness to complete ad hoc, time sensitive assignments.
Produce timely, fused, all-source cyber operations intelligence and/or indications and warnings intelligence products (e.g., threat assessments, briefings, intelligence studies, country studies)
Demonstrated oral and written communications skills, ability to document technical analysis and articulate outcomes to non-technical audiences.
Coordinate the Engineering, Integration, and Administration functions required to successfully mitigate cyber threats
TYPICAL EDUCATION AND EXPERIENCE: Bachelors and nine (9) years or more experience; Masters and seven (7) years or more experience ; PhD or JD and four (4) years or more experience.
REQUIRED EDUCATION AND EXPERIENCE:
Bachelors of Science in a STEM field of study (i.e., engineering, computer science, etc.)
Experience with open source intelligence research and methodologies
In-depth knowledge Cybersecurity and of the newest and emerging cyber threats
In-depth knowledge of adversarial cyber exploitation tactics, techniques, and procedures (TTP)
Knowledge of computer, network (e.g., switches, routers, firewalls), transport components and peripherals, web applications, databases, storage arrays, and cloud infrastructure
Experience performing attack analysis or Red Team penetration testing against operational computer networks including experience in Windows Security, Network Security, Linux/Unix Security, Database security, or Mainframe Security
Advanced user of: Splunk, Varonis, SECOPS RSA Archer, Microsoft Advanced Threat Protection (ATP), Microsoft Exchange Online Protection, Netwitness, PaloAlto, Redseal, Trend Micro anti-virus solutions, Webinspect, Wireshark, Tenable and ForeScout, (MSS) tools (e.g. LookingGlass, FireEye and InfoBlox)
Experience evaluating enterprise networks for Information Assurance/security vulnerabilities