Verizon Communications Harrisburg , PA 17101
What you'll be doing...
The Verizon Threat Response Advisory Center (VTRAC) uses cyber intelligence to enable Verizon, its security services, and their customers to prevent, detect, and respond to security incidents. The VTRAC aggregates cyber threat data and intelligence, uses it for analysis and research, and provides both structured data and written analysis products to internal and external stakeholders.
We are seeking trustworthy and experienced team members to expand and enhance our activities involved in meeting these objectives. Day-to-day responsibilities will be dependent upon the area of specialization, but all successful applicants will undertake tasks across multiple VTRAC roles at varying levels. All team members will help deliver client-facing services the VTRAC provides or supports.
Dark Web Researchers will support a global customer base and conduct research and provide analysis to detect, identify, monitor, assess, and counter the threat posed by cyber threat actors and cyber threat patterns against customer information systems, critical infrastructure, and cyber-related interests. This work demands dark web/deep web cyber research experience, initiative, creativity, analytical tradecraft skills, and technical expertise.
Conduct cyber intelligence operations including intelligence collection (especially indicators of compromise/IOCs), tracking threat actors, identifying and tracking malicious assets and infrastructure
Respond to research requests from Verizon security businesses and clients with timely and accurate assessments
Proactively research relevant threats and produce reports and intelligence products.
Support prototyping and continuous development/integration of tools to store, exchange, and analyze threat and incident data
Conduct analysis and disseminate actionable intelligence gathered from a variety of commercial, government, industry, open-source, deep web, and social media sources delivered in structured, semi-structured, and unstructured formats and lead group collaboration and analysis
Solve complex intelligence problems, produce short-term and long-term written assessments, and brief US and foreign customers
Produce actionable intelligence in the form of alerts, reports, and briefings in order for customers to appropriately assign resources and systems for their defense
What we're looking for...
You Must Have:
Bachelor's degree or 3 or more years of relevant experience
Must have, or be eligible to obtain, a government clearance at the Secret or Top Secret level
3 or more years of experience researching threat actors and threat groups within the cybercrime ecosystem through dark web/deep web sources
3 years of experience conducting intelligence analysis, including analytic tradecraft, and demonstrated critical thinking skills
Experience using link-analysis methods and software (Maltego, Palantir, Analyst Notebook)
Experience producing cyber intelligence products at strategic, operational and tactical levels, and conducting detailed technical analytics
Even better if you have
Experience working as a Cyber Intelligence Analyst in CIA, DIA, NSA, NGA, NRO, FBI, DHS, USSS, DOE, Army, Navy, Air Force, USMC
Subject Matter Expertise within a specific geopolitical region
Native or near-native foreign language ability (DLPT 3/3 or above; or Interagency Language Roundtable (ILR) scale 4 and above)
Experience with Analyst Notebook, Palantir, or Maltego
Experience with researching Clearweb, Darkweb, Deepweb
Understanding of Collection Management and Collection Requirements process
Knowledgeable of ICD 203
Knowledgeable of Analytical Tradecraft
Experience producing analytical assessments on Cyber Threat Actor trends and Cyber Threat Patterns
Familiarity with and understanding of current hacking techniques, vulnerability disclosures, data breach incidents, and security analysis techniques
Proven ability to design, draft, and publish high-quality technical and business-level reports, studies, whitepapers, and blogs
Good organizational skills, time management, attention to detail and accuracy over multiple simultaneous activities
Excellent character and discretion in handling sensitive information, as well as the ability to pass financial and criminal background checks
Ability to quickly develop effective solutions to unique problems using a combination of existing tools and custom code/scripts
Familiarity with the MITRE ATT&CK, Lockheed Martin Kill Chain, Diamond Model, or similar frameworks and concepts
Security Education and Certifications such as SANS SEC487: Open-Source Intelligence Gathering and Analysis, FOR578: Cyber Threat Intelligence, GCIA, GCIH, GCDA, GPEN, or similar training and certification
Knowledge of and experience with security monitoring methodologies such as packet capture, flow data (NetFlow), patterns, watch lists, black lists, log parsing, correlation, classification, event generation, taxonomy, filtering
Collection Management experience
A good level of networking expertise and understanding of routing principles
Ability to program/script using Python, Bash and SQL
Familiarity with concepts and technologies related to Elasticsearch, Logstash, Kibana, Hadoop and data reduction technologies
Experience with Linux/Unix command line administration
When you join Verizon...
You'll be doing work that matters alongside other talented people, transforming the way people, businesses and things connect with each other. Beyond powering America's fastest and most reliable network, we're leading the way in broadband, cloud and security solutions, Internet of Things and innovating in areas such as, video entertainment. Of course, we will offer you great pay and benefits, but we're about more than that. Verizon is a place where you can craft your own path to greatness. Whether you think in code, words, pictures or numbers, find your future at Verizon.
Equal Employment Opportunity
We're proud to be an equal opportunity employer- and celebrate our employees' differences, regardless of race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, or Veteran status. Different makes us better.