SkyePoint Decisions, Inc.

Returning Candidate?

Threat Intelligence Analyst

Threat Intelligence Analyst

ID 
2017-1501
Job Location 
US-VA-Arlington
Job Type 
Immediate Hire
Category 
Information Technology

More information about this job

Overview

The Threat Intelligence Analyst will perform various tasks and hold key responsibilities within a newly created team supporting the Department of State in Rosslyn, VA.

Responsibilities

  • Performs in a function, taking accountability for the intelligence collection plan and all that it governs (sources, Indicator of Compromise management, alerts and advisories, strategic intelligence, cyber scenario modeling, kill chain analysis).
  • Intelligence Cycle activities. Collect, process and analyze data and information to create threat intelligence.  Maintain detailed knowledge and familiarity with attack surfaces and attack vectors.
  • Identify, track and monitor emerging security threats and trends.  Keep current with changing technologies, threat actors and geopolitical events which could impact confidentiality, stability and operations.  Provide research, analysis, coordination, publishing and briefs on security threats, technical risks and geopolitical issues that have the potential of affecting the organizations business, employees, clients.  Provide rapid assessments of potentially imminent security situations, sensitive developments and complex threat issues.  Assess unforeseen thread developments and recommend changes in security direction and approach.
  • Administer security and intelligence tools, keeping them current, tuned and optimized.
  • Utilize security and intelligence tools and processes to meet scope and mission requirements. Leverage and expand the capabilities of existing analytical tools and technologies; recommend new technologies as appropriate.
  • Collect and analyze data and evidence in support of investigations, preserving chain of custody when necessary.
  • Excellent verbal and written communication skills to be utilized for analyzing suspect incidents and effectively communicate their existence to team members and management. Ability to communicate and influence technical IT operators as well as very senior leadership. Will be responsible for briefing a multidisciplinary groups and organizations through security incidents.
  • Utilize open source tools to tactically analyze threats to focus incident response.
  • Ability to see the big picture while recognizing concerns for various type of alerts/vulnerabilities in both the tactical and strategic sense. Will monitor many appropriate feed channels daily needed to maintain consistent coverage of ever-changing DoS issues and concerns (infrastructure and users)

Qualifications

  • Bachelor’s degree or equivalent experience
  • Active Top Secret
  • 5+ years of related experience in the IT Security field where daily activities include hands on technical work, Incident Response or Forensics preferred.
  • Must have minimum of 2-year supporting the Cyber Intelligence arena and how it pertains to real-world applications.
  • 4+ years working with a Security Operations Center (SOC) environment
  • 1-2 years’ experience in Cybersecurity Intelligence methodologies, frameworks and tools (one or more of the following: CRITS, Maltego, FireEye, STIX, TAXII, CybOX)
  • Familiar with tools and technology: FireEye, PaloAlto, Splunk and logs injested, CrowdStrike, US-CERT, Threat Intel Snort Intrusion Detection System, Malware, open threat exchange and more.
  • Knowledge on Network Systems and Network Security.
  • Open source tools experience

 

SkyePoint Decisions is an established ISO 9000:2008 certified small business headquartered in Dulles, Virginia, with local offices across the Washington, DC, metropolitan area. SkyePoint Decisions has grown into a successful federal contractor by combining industry best practices with innovative solutions that consistently meet or exceed customer requirements. We understand and integrate our customer’s technology and mission requirements to successfully deliver high quality, cost effective services on time and on budget.

 

SkyePoint Decisions empowers a secure dynamic workforce to complete any mission -- anytime, anywhere. It’s what we call Agency Anywhere®. SkyePoint Decisions delivers Agency Anywhere® by tightly integrating our technical competencies (cybersecurity, cloud services, remote access, collaboration, system & network optimization, device management and more) to provide our customer’s operating environments with the security, flexibility, availability, and operational continuity required to enable today’s on-the-go federal workforce to successfully and securely complete any mission – anytime, anywhere.

 

SkyePoint Decisions is committed to hiring and retaining a diverse workforce. We are an Equal Opportunity Employer, making decisions without regard to race, color, religion, sex, national origin, age, veteran status, disability, or any other protected class. U.S. Citizenship is required for most positions.