Apply on Employer Site

Booz Allen Hamilton · 1 day ago

Cyber Threat Intelligence Analyst, Mid

Bethesda, MD

Full-time

Hybrid

Entry, Mid Level

$62K/yr - $141K/yr

2+ years exp

Booz Allen Hamilton is a leading consulting firm, and they are seeking a Cyber Threat Intelligence Analyst to support their Security Operations Center. The role involves collecting and analyzing cyber threat intelligence, managing threat intelligence platforms, and developing actionable intelligence products to enhance security operations.

ConsultingCyber SecurityIT InfrastructureManagement ConsultingSecurity

Growth Opportunities

No H1B

U.S. Citizen Only

Responsibilities

Support the Security Operations Center by collecting, analyzing, and correlating cyber threat intelligence from a wide range of open‑source, commercial, government, and industry partners

Manage and operationalize ThreatConnect to enrich SOC investigations, identify emerging threats, and maintain high‑quality intelligence workflows

Develop and disseminate actionable intelligence products such as reports, alerts, and briefings to inform SOC operations, leadership, and mission stakeholders

Facilitate intelligence sharing and collaboration across interagency and cross‑industry communities such as ISACs and DHS AIS, ensuring timely exchange of relevant threat information

Contributes to the maturity of the CTI program by conducting annual capability assessments, identifying gaps, and developing strategic roadmaps to enhance intelligence processes, tooling, and integration with SOC operations

Qualification

Cyber threat intelligenceThreatConnect managementIntelligence analysisMITRE ATT&CK knowledgeIncident response experienceAnalytic product developmentPublic TrustBachelor’s degreeCommunication skillsSoft skillsTeam collaboration

Required

2+ years of experience in cyber threat intelligence, SOC support, or incident response, including intelligence analysis or threat research

Experience collecting, analyzing, and correlating intelligence from open and closed sources, including government, commercial, and industry feeds

Experience managing or administering threat intelligence platforms

Knowledge of intelligence sharing frameworks and communities, including ISACs, DHS AIS, or federal information‑sharing programs

Knowledge of cyber threat actor tactics, techniques, and procedures (TTPs) and frameworks such as MITRE ATT&CK

Ability to develop actionable intelligence products such as reports, alerts, and briefings for technical and non‑technical audiences

Ability to brief leadership and produce high‑quality analytic products

Public Trust

Bachelor's degree

Preferred

Experience supporting SOC investigations with threat enrichment, indicator analysis, or adversary profiling

Experience with structured analytic techniques used in intelligence analysis

Experience with ThreatConnect playbooks, indicator management, or intelligence lifecycle workflows

Experience conducting CTI program maturity assessments, gap analyses, or roadmap development

Knowledge of Zero‑Trust, EDR technologies, or modern enterprise security architectures

Knowledge of malware analysis fundamentals, network forensics, or threat hunting concepts

Possession of excellent written and verbal communication skills

CompTIA CySA+, GIAC Cyber Threat Intelligence (GCTI), GIAC Open-Source Intelligence (GOSI), Certified Threat Intelligence Analyst (CTIA), CISSP or other relevant industry Certification