Cyber Hunt Analyst (Hybrid) - 27591

Capabilities

• Conduct threat hunt operations on assigned JCRS-D (Big Data Platforms).
• Present threat hunt findings through live - interactive remote conference sessions.
• Perform data analytics across disparate data sets.
• Assist customer(s) with their threat hunting operations on location as required.
• Perform quality assurance checks on data that is resident on JCRS-D.
• Evaluate and analyze new data feeds to determine relevance and usability of data.
• Support JCRS-D analytic requests (data search, visualizations, dashboards..etc).
• Provide real time customer support during normal working hours (JCRS-D support chat room).
• Maintain situational awareness of emerging cyber threats for possible action and notification to an impacted customer(s).
• Support JCRS-D demonstration requests to showcase various capabilities of the platform.
• Support JCRS-D training events either in person or virtually.
• Provide advice on data enrichment and functions to enhance customer experience. 
• Other duties as assigned. 

Required Qualifications

• TS/SCI with agency appropriate poly
• Security Clearance - A current TS/SCI level U.S. Government clearance with Polygraph is required. U.S. Citizenship required. 
• 5+ years experience in cyber security operations related fields with Bachelors in Information Technology, Cyber Security or related field; 3 years relevant experience with Masters in realted field; or High School Diploma or equivalent and 9 years relevant experience.
• Must have or ability to obtain within 90 days of hire - Data+, Security+, CySA+, GCIH, GNFA, GCFA or other industry recognized Cybersecurity Certification.
• Ability to work a hybrid schedule on customer site in Fort Meade, MD on average 3 days a week. Flexibility is essential to adapt to schedule changes as needed.
 

Required Technical Skills

• Experience with the DoD customers, ideally supporting US Cyber Command, USMC, DISA or DCDC
• Proficient in various query languages (SQL, KQL (Kusto))
• Proficient in Python and bonus for strong experience using Jupyter notebooks
• Experience with dashboarding/visualizations (Power-BI, Superset)
• Familiarity with cloud providers and environments (Azure, AWS, Google Cloud Platform)
• Desire to grow professional and personally
• Ability to complete technical tasks without supervision
• Ability to foster and support a collaborative working environment
• Excellent public speaking, presentation, and customer service skills.
• Positive and energetic attitude
• Critical thinking and natural curiosity for all things cybersecurity
• Cyber Hunt methodologies and techniques
• SIEMs - (e.g., Splunk, Q-Radar, ELK)
• SOARs (e.g., Sentinel, CORTEX, X-SOAR)
• Developing and deploying threat detection signatures
• Detecting host and network-based intrusions
• Collecting data from a variety of cyber defense resources. (e.g., CVE, OSINT)
• Recognizing and categorizing types of vulnerabilities and associated attacks
• Reading and interpreting signatures (e.g., SNORT, SIGMA, Yara, YAML)
• Cyber defense and vulnerability assessment tools and their capabilities
• Network traffic analysis methods (e.g.,TCP-DUMP, Wireshark, Bro/Zeek)
• Familiar with cyber attack stages (e.g., reconnaissance, scanning, enumeration, gaining access, escalation of privileges, maintaining access, network exploitation, covering tracks), and incident response and handling methodologies. (e.g., MITRE ATT&CK, LM Killchain)
• Intrusion Detection System (IDS)/Intrusion Prevention System (IPS) tools and applications
 

Desired Technical Skills

• DoD SOC experience is a plus
 

The Benefits Package

• Wyetech believes in generously supporting employees as they prepare for retirement. The company automatically contributes 20% of each employee's gross compensation to a Simplified Employee Pension (SEP) IRA, with no requirement for employee matching. All contributions are fully vested from day one, ensuring immediate ownership of retirement funds. 
 
Additional benefits include:
• Wyetech provides a generous PTO plan of up to 200 hours annually, aligned with applicable state leave regulations. Employees have the flexibility to adjust their PTO allocation at the start of each calendar year, ensuring it meets their evolving needs.
 
Full-time employees have the option to participate in a variety of voluntary benefit plans including:
• A Choice of Medical Plan Options, some with Health Savings Account (HSA)
• Vision and Dental
• Life and AD&D Benefits
• Short and Long-Term Disability
• Hospital Indemnity, Accident, and Critical Illness Insurances
• Optional Identity Theft and Legal Protection Services

Company Environment & Perks

• Employee Referral Bonus Eligibility up to $10,000 
• Mobility Among Wyetech-supported Contracts 
• Various contract and work locations throughout Maryland, Virginia, Colorado, Texas, Utah, Alaska, Hawaii and OCONUS
• Various team-building events throughout the year such as: monthly lunches, summer company picnic, and an annual holiday party. 
• Employees receive two complementary branded clothing orders annually.