Sorry, this job is no longer accepting applications. See below for more jobs that match what you’re looking for!

Dark Web Cyber Researcher

Expired Job

Verizon Communications Harrisburg , PA 17101

Posted 1 week ago

What you'll be doing...

The Verizon Threat Response Advisory Center (VTRAC) uses cyber intelligence to enable Verizon, its security services, and their customers to prevent, detect, and respond to security incidents. The VTRAC aggregates cyber threat data and intelligence, uses it for analysis and research, and provides both structured data and written analysis products to internal and external stakeholders.

We are seeking trustworthy and experienced team members to expand and enhance our activities involved in meeting these objectives. Day-to-day responsibilities will be dependent upon the area of specialization, but all successful applicants will undertake tasks across multiple VTRAC roles at varying levels. All team members will help deliver client-facing services the VTRAC provides or supports.

Dark Web Researchers will support a global customer base and conduct research and provide analysis to detect, identify, monitor, assess, and counter the threat posed by cyber threat actors and cyber threat patterns against customer information systems, critical infrastructure, and cyber-related interests. This work demands dark web/deep web cyber research experience, initiative, creativity, analytical tradecraft skills, and technical expertise.

You will:

  • Conduct cyber intelligence operations including intelligence collection (especially indicators of compromise/IOCs), tracking threat actors, identifying and tracking malicious assets and infrastructure

  • Respond to research requests from Verizon security businesses and clients with timely and accurate assessments

  • Proactively research relevant threats and produce reports and intelligence products.

  • Support prototyping and continuous development/integration of tools to store, exchange, and analyze threat and incident data

  • Conduct analysis and disseminate actionable intelligence gathered from a variety of commercial, government, industry, open-source, deep web, and social media sources delivered in structured, semi-structured, and unstructured formats and lead group collaboration and analysis

  • Solve complex intelligence problems, produce short-term and long-term written assessments, and brief US and foreign customers

  • Produce actionable intelligence in the form of alerts, reports, and briefings in order for customers to appropriately assign resources and systems for their defense

What we're looking for...

You Must Have:

  • Bachelor's degree or 3 or more years of relevant experience

  • Must have, or be eligible to obtain, a government clearance at the Secret or Top Secret level

  • 3 or more years of experience researching threat actors and threat groups within the cybercrime ecosystem through dark web/deep web sources

  • 3 years of experience conducting intelligence analysis, including analytic tradecraft, and demonstrated critical thinking skills

  • Experience using link-analysis methods and software (Maltego, Palantir, Analyst Notebook)

  • Experience producing cyber intelligence products at strategic, operational and tactical levels, and conducting detailed technical analytics

Even better if you have

  • Experience working as a Cyber Intelligence Analyst in CIA, DIA, NSA, NGA, NRO, FBI, DHS, USSS, DOE, Army, Navy, Air Force, USMC

  • Subject Matter Expertise within a specific geopolitical region

  • Native or near-native foreign language ability (DLPT 3/3 or above; or Interagency Language Roundtable (ILR) scale 4 and above)

  • Experience with Analyst Notebook, Palantir, or Maltego

  • Experience with researching Clearweb, Darkweb, Deepweb

  • Understanding of Collection Management and Collection Requirements process

  • Knowledgeable of ICD 203

  • Knowledgeable of Analytical Tradecraft

  • Experience producing analytical assessments on Cyber Threat Actor trends and Cyber Threat Patterns

  • Familiarity with and understanding of current hacking techniques, vulnerability disclosures, data breach incidents, and security analysis techniques

  • Proven ability to design, draft, and publish high-quality technical and business-level reports, studies, whitepapers, and blogs

  • Good organizational skills, time management, attention to detail and accuracy over multiple simultaneous activities

  • Excellent character and discretion in handling sensitive information, as well as the ability to pass financial and criminal background checks

  • Ability to quickly develop effective solutions to unique problems using a combination of existing tools and custom code/scripts

  • Familiarity with the MITRE ATT&CK, Lockheed Martin Kill Chain, Diamond Model, or similar frameworks and concepts

  • Security Education and Certifications such as SANS SEC487: Open-Source Intelligence Gathering and Analysis, FOR578: Cyber Threat Intelligence, GCIA, GCIH, GCDA, GPEN, or similar training and certification

  • Knowledge of and experience with security monitoring methodologies such as packet capture, flow data (NetFlow), patterns, watch lists, black lists, log parsing, correlation, classification, event generation, taxonomy, filtering

  • Collection Management experience

  • A good level of networking expertise and understanding of routing principles

  • Ability to program/script using Python, Bash and SQL

  • Familiarity with concepts and technologies related to Elasticsearch, Logstash, Kibana, Hadoop and data reduction technologies

  • Experience with Linux/Unix command line administration

When you join Verizon...

You'll be doing work that matters alongside other talented people, transforming the way people, businesses and things connect with each other. Beyond powering America's fastest and most reliable network, we're leading the way in broadband, cloud and security solutions, Internet of Things and innovating in areas such as, video entertainment. Of course, we will offer you great pay and benefits, but we're about more than that. Verizon is a place where you can craft your own path to greatness. Whether you think in code, words, pictures or numbers, find your future at Verizon.

Equal Employment Opportunity

We're proud to be an equal opportunity employer- and celebrate our employees' differences, regardless of race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, or Veteran status. Different makes us better.

See if you are a match!

See how well your resume matches up to this job - upload your resume now.… Change Resume
Find your dream job anywhere
with the LiveCareer app.
Download the
LiveCareer app and find
your dream job anywhere

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
Director Of Cyber Security

Pennsylvania Gaming Control Board

Posted 3 days ago

VIEW JOBS 8/15/2018 12:00:00 AM 2018-11-13T00:00 Position: Director of Cyber Security Address: Commonwealth Tower 5th Floor Strawberry SquareHarrisburg, PA 17101 WORK HOURS: 8:30 AM 5:00 PM ESTSalary: $71,404.00 $119,006.00 JOB DUTIES: This is professional managerial work directing the Pennsylvania Gaming Control Board’s (PGCB) cybersecurity and regulatory oversight program, to help ensure that gaming operators and licensees cybersecurity policies and practices are compliant with statutes, regulations or internal controls. An employee in this job is responsible for designing and implementing a compliance and oversight program of cybersecurity regulatory functions of PGCB. The employee makes policy recommendations to the Board to enable the execution of its regulatory functions of gaming in Pennsylvania. Work involves:Recommending and reviewing proposed cyber-related statutes, regulations and orders; Providing recommendations for regulatory policy consideration; Serving as a cybersecurity subject matter expert to Board, executive staff and bureau/office directors; Recommending policy and regulatory improvements regarding the cybersecurity oversight of gaming operators and licensees, as well as for internal PGCB systems; and Providing testimony before the Board or legislative committees regarding cybersecurity-related regulatory mattersEvaluating, inspecting and analyzing cybersecurity programs and information security programs in both PGCB’s regulatory functions and internal operationsDeveloping internal cybersecurity programs or information security programs for PGCB and/or providing consultation and guidance regarding internal programs. Work is performed independently and is evaluated and reviewed by the Administrative Director through periodic conferences and written reports. EXAMPLES OF WORK: Advises the Executive Director and Board on policy issues involving cybersecurity oversight functions of regulated gaming entities.Makes decisions regarding cybersecurity regulatory or compliance priorities and recommends policy positions to the Board and Executive Director.Recommends policy and procedural improvements to the Board, executive staff and bureau/office directors regarding the cybersecurity oversight of gaming entities and/or PGCB internal cybersecurity controls.Recommends, drafts and/or reviews proposed cyber-related regulations for Board consideration.Reviews cybersecurity plans and protocols of regulated entities regarding the sufficiency of regulated entities’ cybersecurity programs and makes recommendations regarding alterations, deficiencies and remedial measures. Develops regulatory protocols to review, analyze and report the reliability and accuracy of determining gaming revenue for all types of gaming operations including but not limited to interactive gaming and airport gaming.Serves as PGCB's cybersecurity liaison working closely with multiple bureaus to identify and recommend courses of action concerning technical, policy, and legal matters associated with cybersecurity and as needed aids in executing cybersecurity specific initiatives and policy positions for the Board.Advises the PGCB’s Office of Information Technology staff members regarding agency-specific cybersecurity intrusion and detection strategies and procedures.Advises and assists the PGCB’s bureaus to design policies and protocols necessary to evaluate the effectiveness of regulated gaming entities cybersecurity plans.Reviews design strategies to determine proper interface with the information security systems of the agency and licensed gaming entities within the commonwealth. Participates in network, application, and other IT system designs or regulatory reviews to ensure implementation of appropriate systems security policies. Researches potential schemes or scams intended to perpetrate fraud or deception in the transmission and play of games or gaming activities for the purpose of directing regulatory steps to deter and prevent such fraud or deception. Reviews and analyzes procedures submitted by licensed entities to assess the reliability of customers’ gaming accounts for all types of gaming operations including but not limited to interactive gaming. Works with casino personnel or vendors on cyber security plans. Provides testimony before Board or legislative committees regarding cybersecurity oversight of regulated gaming entities. Oversees the design and delivery of cybersecurity awareness training to all PGCB staff.Monitors relevant federal and state cybersecurity-related legislation, rulemakings and trends nationally.Develops and maintains working relationships with gaming entities.Performs related work as required.ENTRY LEVEL KNOWLEDGES, SKILLS, AND ABILITIES:Knowledge of information technology security architecture and design.Knowledge of server and platforms.Knowledge of information security industry standards and best practices.Knowledge of information security countermeasures and incident resolution techniques.Knowledge of the concepts, characteristics and capabilities of information security technologies.Knowledge of the functions and capabilities of standard security application systems.Knowledge of the functions and capabilities of security testing tools.Knowledge of current trends, principles and practices of the regulated gaming industry.Knowledge of policy analysis and strategic planning techniques.Knowledge of the principles and practices of project management.Knowledge of gaming internal control systems.Ability to develop and implement programs, policies and procedures.Ability to read and interpret requirements of laws and regulations.Ability to read and analyze cybersecurity technical and intelligence reports and develop a threat assessment program.Ability to read and interpret security logs, system design specifications and technical manuals to identify potential problems.Ability to establish and maintain effective working relationships.Ability to communicate effectively orally.Ability to communicate effectively in writing. Pennsylvania Gaming Control Board Harrisburg PA

Dark Web Cyber Researcher

Expired Job

Verizon Communications