Sorry, this listing is no longer accepting applications. Don’t worry, we have more awesome opportunities and internships for you.

CYBER-INTELLIGENCE ANALYST (I&W)

C

Cinteot

CYBER-INTELLIGENCE ANALYST (I&W)

Arlington, VA
Full Time
Paid
Similar Jobs
  • Responsibilities
    RESPONSIBILITIES

    Qualified candidate will become part of Cinteot's Department of State (DoS) Diplomatic Security Cyber Mission (DSCM) program providing leading cyber and technology security experience to enable innovative, effective and secure business processes. Cinteot's DSCM program encompasses technical, engineering, data analytics, cyber security, management, operational, logistical and administrative support to aid and advise DoS Cyber & Technology Security (CTS) Directorate. This includes protecting a global cyber infrastructure comprising networks, systems, information, and mobile devices all while identifying and responding to cyber risks and threats. Those supporting Cinteot's DSCM program strive to leverage their expert knowledge and propose creative solutions to real-world cybersecurity challenges.

    The Threat Analyst role is part of the Indications and Warnings team and will be located in Rosslyn, VA.

    Position Description:

    • Leverage open-source, proprietary/vendor, and classified reporting to closely track advanced persistent threat actor activity.
    • Perform pattern, trend, and behavior analysis, as well as other specialized analysis techniques to identify malicious cyber threat activity targeting DOS information, systems and personnel.
    • Maintain records to catalog and track malicious cyber threat activity targeting DOS information, systems and personnel.
    • Identify Indicators of Compromise (IOCs) present on an Enterprise network through the use of a SIEM and other security tools and logs.
    • Liaise with members of the Intelligence Community (IC); and
    • Acts as the fusion analysis cell within Cyber Threat Analysis Division (CTAD).
    • Provide presentations to a variety of technical and non-technical audiences pertaining to cyber threats.
    • Role will require up to 10% travel to foreign and domestic locations.
    QUALIFICATIONS

    Basic Qualifications – To be considered for this position, you must minimally meet the knowledge, skills, and abilities listed below:

    • A Bachelor's degree and 9 years of experience is required. In lieu of a Bachelor's degree, 4 years of additional experience may be substituted
    • Active Top Secret security clearance with SCI eligibility is required
    • Experience specifically with the Splunk SIEM
    • Experience leveraging the MITRE ATT&CK matrix or other threat models (e.g. Lockheed Martin Kill Chain, Diamond Model)
    • Knowledge or experience tracking advanced persistent threats (APTs)
    • Knowledge or experience pivoting from IOCs to identify related infrastructure
    • Written communication skills, communicating technical topics in an analytic fashion
    • For verbal communication, additionally experience briefing individual as well as large groups ranging from the working to executive level
    • Ability to work independently as well as with a team of other analysts
    • Active U.S. Passport and the ability to travel up to two weeks at a time, both foreign and domestically.
    • Possess ONE of the following certifications:
      • CASP+ CE
      • CCNP Security
      • CEH
      • CFR
      • CHFI
      • CISA
      • CISSP (or Associate)
      • Cloud+
      • CND
      • CySA+
      • GCED
      • GCIH
      • GICSP
      • SSCP