CYBER THREAT OPERATIONS AND INTELLIGENCE ANALYST

Description

EOA Technologies is seeking a Cyber Threat Operations and Intel Analyst (TOPI) to identify and assess the capabilities and activities of cyber criminals or foreign intelligence entities. Will help initialize and/or support emergency directives and counterintelligence investigations or activities. In this role you will serve as a subject matter expert with deep domain knowledge in specific threat areas of interest across the globe. You will be responsible for analyzing, correlating, and operationalizing threat intelligence to support proactive defensive cyber activities. This role requires strong analytical skills with an IC mission background, technical expertise, and the ability to communicate complex findings to diverse audiences. You will work in close collaboration with a team of cyber analysts to pinpoint the highest levels of cyber threats with the goal to prevent and eradicate threats to critical U.S. systems. 

Requirements

To be considered for this position you must have the following:

• Possess an active TS/SCI with Polygraph security clearance
• Must have a Bachelor’s Degree in computer science, information systems, network forensics or other data analysis roles. 
• Ten (10+) years’ experience working in the areas of intelligence, information security, network forensics, insider threat or security operations.
• Specific understanding of key global areas of interest that pose threats to U.S. critical systems as well as an understanding of Advanced Persistent Threats (APTs), cyber actor motives and actions in depth.
• Experience with reporting and IC analyst knowledge resources.
• Ability to understand data in various formats to extract and enrich information to enhance its value.
• Understanding of TCP/IP communication protocols and packet flows based on IP traffic; analysis of Packet Capture (PCAP) traffic in Wireshark
• Familiarity writing signatures in Zeek and/or Snort
• Experience with Elastic/Splunk or other Security Information and Event Management (SIEM) as well as experience creating visualizations and dashboards.
• Exceptional ability to analyze, correlate, and synthesize threat data from diverse sources.
• Ability to work with development teams and articulate requirements/enhancements to capabilities and tools.
• Ability to perform log file analysis including creating threat intelligence reports that indicate findings, mitigations, and confidence.
• Vast experience fanning advanced analytics, network diagrams, and other forms of associated knowledge to further understand systems, networks, environments, and adversaries.
• Document findings and create detailed reports to ensure tradecraft is continually updated. Present results to technical and non-technical stakeholders
• Superior written and verbal communication skills, including executive-level reporting and presentations.
• Experience working with IC mission cybersecurity analysts on understanding the adversary and developing mission specific TTPs.

Employment decisions are based solely on qualifications, merit, and business needs - not on any protected characteristic. EOA Technologies, LLC provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, ancestry, marital status, religious affiliation, hairstyle, or any other characteristic protected by federal, state or local laws. EOA is committed to providing reasonable accommodations when feasible to individuals with disabilities.