Apply on Employer Site

Peraton · 13 hours ago

Cyber Intel Analyst - I&W

Arlington, VA

Full-time

Onsite

Senior Level, Lead/Staff

$104K/yr - $166K/yr

9+ years exp

Peraton is a next-generation national security company that drives missions of consequence spanning the globe. They are seeking a Senior Cyber Intel Analyst to join their Indications and Warnings team, focusing on tracking advanced persistent threat actor activity and performing analysis to identify malicious cyber threat activity targeting Department of State information, systems, and personnel.

Information TechnologyRobotics

No H1B

Security Clearance Required

U.S. Citizen Only

Responsibilities

Leverage open-source, proprietary/vendor, and classified reporting to closely track advanced persistent threat actor activity

Perform pattern, trend, and behavior analysis, as well as other specialized analysis techniques to identify malicious cyber threat activity targeting DOS information, systems and personnel

Maintain records to catalog and track malicious cyber threat activity targeting DOS information, systems and personnel

Identify Indicators of Compromise (IOCs) present on an Enterprise network through the use of a SIEM and other security tools and logs

Liaise with members of the Intelligence Community (IC); and Acts as the fusion analysis cell within Cyber Threat Analysis Division (CTAD)

Provide presentations to a variety of technical and non-technical audiences pertaining to cyber threats

For up to 10% travel to foreign and domestic locations

Qualification

Cybersecurity certificationsSplunk SIEMMITRE ATT&CK matrixAdvanced Persistent ThreatsIndicators of CompromiseBriefing skillsWritten communicationTeam collaboration

Required

Bachelor's degree and 9 years of experience; an additional 4 years of experience will be considered in lieu of the degree requirement

Must possess or be able to obtain at least one of the following certifications before start date. Continued certification required as a condition of employment: CASP+ CE; CCNP Security; CEH; CFR; CHFI; CISA; CISSP (or Associate); Cloud+; CND; CySA+; GCED; GCIH; GICSP; SSCP

Experience with Splunk SIEM

Experience leveraging the MITRE ATT&CK matrix or other threat models (e.g. Lockheed Martin Kill Chain, Diamond Model)

Knowledge or experience tracking advanced persistent threats (APTs)

Knowledge or experience pivoting from IOCs to identify related infrastructure

Demonstrated written communication skills, communicating technical topics in an analytic fashion

Experience briefing individuals and large groups, ranging from the working to executive level

Demonstrated ability to work independently as well as with a team of other analysts

Active U.S. Passport and the ability to travel up to two weeks at a time, both foreign and domestically (up to10%)

U.S. citizenship required

Active Top Secret security clearance with SCI eligibility