Apply on Employer Site

Sentar Inc. · 2 months ago

Cyber Threat Intelligence (CTI) – Technical Lead

Charleston, SC

Full-time

Onsite

Senior Level

7+ years exp

Sentar Inc. is an employee-owned company focused on cybersecurity, intelligence, analytics, and systems engineering. They are seeking a Cyber Threat Intelligence (CTI) – Technical Lead to analyze threats, support security operations, and lead a team in identifying cyber threats and trends.

AnalyticsCyber SecurityInformation ServicesInformation TechnologyIntelligent Systems

Growth Opportunities

No H1B

Security Clearance Required

U.S. Citizen Only

Responsibilities

Support threat intelligence collection, analysis, production, and dissemination of finished reporting products to internal security operations, information technology, enterprise risk management teams, and executive decision-makers

Lead a team in identifying cyber threats, trends, and new developments by analyzing open-source intelligence (OSINT) and other data

Maintain knowledge of adversary activities, including intrusion set TTPs

Communicate events to agencies regarding intrusions and compromises to network infrastructure, applications, and operating systems

Provide cyber threat assessments and coordinate threat tracking with other organizations and government partners

Provide cyber risk and threat identification through proactive monitoring of internal and external environments for malicious code, vulnerabilities, and attacks

Compile and maintain internal Standard Operating Procedure (SOP) documentation

Ensure documentation and capabilities remain compliant with Chairman of the Joint Chiefs of Staff Manual (CJCSM) 6510.01B and other applicable policy directives

Participate in program reviews, product evaluations, and onsite certification evaluations

Analyze and present complex threat intelligence information in a meaningful and actionable way

Support incident response actions (surge operations) as needed

Qualification

Cyber Threat IntelligenceIncident ResponseMalware AnalysisThreat Analysis ModelsDoD 8570 CertificationDoD Cybersecurity CertificationSecurity InfrastructureAnalytical ToolsCommunication SkillsTeam LeadershipSelf-motivated

Required

Minimum of a Top Secret (TS) Clearance

Must meet applicable Department of Defense (DoD) 8570 and DoD 8140 Information Assurance Technical (IAT) Level III certification requirements

Must meet applicable DoD Cybersecurity Network Defense (CND) certification requirements

7+ years of experience in incident response, IT security, malware analysis, security product development, offensive security, tracking cyber threats, or a similar cybersecurity environment

Position may require up to 10% travel as needed

Overtime may be required to support incident response actions (surge operations)

Preferred

Demonstrated ability to leverage intelligence on attacker methodology, tools, and infrastructure to improve security posture

Ability to edit finished products based on highly technical subject matter and analysis for dissemination to less technical or non-technical audiences

Experience collecting, analyzing, and interpreting qualitative and quantitative data to produce meaningful intelligence products

Functional understanding of security infrastructure such as firewalls, Intrusion Detection/Prevention Systems (IDS/IPS), proxy servers, email controls, anonymizing technology, and Security Information and Event Management (SIEM) systems

Functional understanding of common threat analysis models, including the Diamond Model, Cyber Kill Chain, and MITRE ATT&CK framework

Experience with detection creation methodologies across multiple platforms

Excellent oral and written communication skills, including the ability to brief senior leadership and agency groups