Cyber Incident/Forensic Analyst III

Job Summary

General Atomics (GA), and its affiliated companies, is one of the world's leading resources for high-technology systems development ranging from the nuclear fuel cycle to remotely piloted aircraft, airborne sensors, and advanced electric, electronic, wireless and laser technologies.

We have an exciting opportunity for an Incident Response Analyst to join our ITS Cybersecurity Threat Management (CTM) in Rancho Bernardo, California. With general supervision under the CTM manager, this position is responsible for cybersecurity threat hunting, incident response management, threat and intrusion analysis, digital forensics, cybersecurity consulting and threat assessments.

DUTIES AND RESPONSIBILITIES:

• Active threat hunting within the General Atomics network using a formalized process.

• Identifies cybersecurity vulnerabilities and participates in the development and implementation of remediation.

• Develops signatures and alerts to enhance visibility of complex threats using a variety of tools and techniques.

• Performs digital forensics and detailed reporting for cybersecurity and internal investigations.

• In-depth analysis and detailed reporting of threats, malware, root cause and endpoint behavior using a variety of tools including IR Case Management, EDR, SIEM, PCAP, Mitre Framework, malware sandbox.

• Performs maintenance and upkeep of the CTM forensics lab and various analysis tools.

• Collects, maintains and analyzes threat intelligence from both internal and external sources.

• Works in partnership with the ITS Cyber Security Operations Center (CSOC) as an escalation resource for incident response and threat analysis.

• Consults within ITS and internal business units regarding cybersecurity architecture and threat mitigation.

• Performs and manages threat assessments.

• Develops process enhancements and efficiencies to improve overall cybersecurity team effectiveness.

• Maintains the strict confidentiality of sensitive information.

• Responsible for observing all laws, regulations and other applicable obligations wherever and whenever business is conducted on behalf of the Company. Expected to work in a safe manner in accordance with established operating procedures and practices.

• Performs other duties as assigned or required.

We recognize and appreciate the value and contributions of individuals with diverse backgrounds and experiences and welcome all qualified individuals to apply.