ME00492-Cyber Threat Analyst

Momentum Engineering, Inc., a Woman-Owned Small Business (WOSB), fosters an employee-centric culture. Our strength lies in our people. With a high percentage of employees holding advanced degrees in engineering, computer science, and related disciplines, we bring deep technical expertise to every mission. Our team includes professionals with security clearances and full-scope polygraphs, ensuring trusted, secure support for the most sensitive national security initiatives. Additionally, our workforce is equipped with industry-leading certifications, demonstrating a commitment to continuous learning and excellence. Most importantly, our exceptional employee retention rate reflects a culture of professional growth, mission focus, and dedication—ensuring long-term stability and expertise for our customers’ critical needs.

Job Summary

• Seeking a Cyber Threat Analyst with subject matter expertise in industrial control systems and critical infrastructure to join our team
• The candidate will be focused on conducting continuous research on emerging threats and threat actor activity to identify and assess the capabilities and activities of cyber criminals and/ or foreign intelligence entities
• The candidate will work as part of a team that analyzes data and prioritizes vulnerabilities with the goal to prevent and eradicate threats to critical U.S. systems

Primary Responsibilities

• Independently leveraging Agency tools and capabilities to generate intelligence
• Independently performing software engineering functions that directly align/integrate into the IC mission architecture and capabilities including understanding the overall design, data flow, interfaces, and other pertinent details
• Generating threat intelligence reporting (information sharing and dissemination) performing data analysis, implementing best practices in knowledge management, and creating automated solutions in the IC mission environment
• Performing analysis across disparate data sets to discover and inform mission operations
• Performing advanced queries at scale including a diverse range of data sources (e.g. partner, IC, open source) to enhance/enrich reporting
• Forming advanced analytics, network diagrams, and other forms of associated knowledge to further understanding of the system, network, environment, and adversary

Required Qualifications

• Must have active Top Secret/SCI clearance with NSA Full Scope Polygraph
• Must have a Bachelor’s Degree in Computer Science, international relations, information security, or a related field
• Seven (7) years’ experience working in the areas of intelligence, information security, network forensics or insider threat with focus on Industrial Control Systems/Supervisory Control and Data Acquisition (ICS/SCADA) systems
• Subject matter expertise understanding the unique components, protocols, and architectures of ICS/SCADA systems
• Ability to understand data in various formats to extract and enrich information to enhance its value
• Experience working with development teams to articulate requirements/enhancements to capabilities and tools
• Experience with XKS creating general queries, fingerprinting, and identifying atypical events
• Experience with Elastic/Splunk/ or other Security Information and Event Management (SIEM) experience creating visualizations and dashboards
• Understanding of TCP/IP communication protocols and packet flows based on IP traffic; analysis of Packet Capture (PCAP) traffic in Wireshark
• Familiarity writing signatures in Zeek and/or Snort
• 5+ years of experience:
• • Working within a cybersecurity mission environment using tools and capabilities to generate threat intelligence. This includes working with cybersecurity analyst teams in more than one mission space to perform data analysis with a deep understanding of adversary tradecraft
  • Creating log file analysis including creating threat intelligence reports that indicate findings, mitigations, and confidence
  • Performing network communications and traffic analysis as well as analysis across disparate data sets to discover and inform cyber operations

Desired Qualifications

• Master’s Degree is preferred but not required

Exempt hourly position. 11 paid holidays, minimum of 3 weeks PTO, company sponsored group medical plan, company paid dental, vision, life insurance, and STD/LTD plans. Salary is dependent upon the candidate’s experience and qualifications.