Cyber Threat Intelligence Lead
Description
ActioNet is looking for a Cyber Threat Intelligence Lead to support monitoring activities, developing cyber threat analysis, identifying mitigation and/or remediation courses of action, sharing actionable cyber threat intelligence used in organizational IT asset protection, and trending strategic cyber threats and situational awareness. This position will support a civilian agency Security Operations Center.
Summary:
This position will identify valid Indicators of Compromise (IOC's) and implement appropriate monitoring, alerting, or blocking. Assist with development and contributions to cyber threat intelligence products for distribution to Federal Partners over classified and unclassified communication networks. Compile cyber threat data gathered including, but not limited to present and emerging adversarial tactics, techniques, and procedures through independent research and analysis of identified activity combined with current SOC operations. Analyze unclassified and classified sources of information and cyber threat intelligence on foreign and/or domestic cyber threats, including recommended mitigation and/or remediation actions, as well as indicators of compromise (IOC's) that could affect information systems and/or networks. Perform cyber and technical threat analyses of hostile nation state actors, cybercriminals, terrorist organizations, and other malicious actors that could harm information systems and/or networks and report on any suspected or verified findings. Recommend countermeasures to malware and other malicious activity that could exploit information systems and/or networks. Develop IOC detection and response.
Why ActioNet?
It is simple. We are passionate about the inspirational missions of our customers and we entrust our employees and teams to deliver exceptional performance to enable the safety, security, health, and well-being of our nation.
Basic Qualifications:
- Must have seven (7) years of experience as a Tier III senior cyber security analyst performing intelligence analysis, collection management, and technical analysis
- A minimum of five (5) years of hands-on experience with experience in the last two (2) years that includes host-based and network based security monitoring using cybersecurity capabilities
- Experience in developing scripts to support cyber threat detection that outputs results in a variety of formats, such as Powershell and Javascript and REST API, Python, C++, and HTML, XML
- US citizen
- DoD TS with SCI eligibility
Preferred Qualifications:
- Related degree
- GCIA, GCIH
What's in It For You?
As an ActioNeter, you get to be part of exceptional team and a corporate culture that nurtures mutual success for our customers, employees and our communities. We give you the tools to be successful; all you need to do is bring your best ideas, your energy and a desire to develop your skills, experience and career.
Are you ready to make a difference?
ActioNet is an equal opportunity employer and value diversity at our company. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status.