Threat Fusion Analyst

Threatconnect, Inc. Arlington , VA 22201

Posted 3 weeks ago

Company Description

Designed by analysts but built for the entire team (security operations, threat intelligence, incident response and security leadership), ThreatConnects intelligence-driven security operations platform is the only solution available today with intelligence, automation, analytics, and workflows in a single platform. Founded in 2011, the company started servicing government agencies on specialized cybersecurity contracts while building its platform. Officially launched in 2013, the ThreatConnect Platform has grown to more than 20,000 users worldwide. Whether you want to work on building a world-class security platform or as a member of the services team, you will enjoy a career that truly makes an impact. For more information on the benefits of working at ThreatConnect, visit www.threatconnect.com/careers

Job Description

ThreatConnect is looking for highly motivated and experienced analysts with currently active U.S. Government Top Secret security clearances to fill positions on government contracts within the DC/NoVA/MD region. If you are sought after as an expert in your field and looking for a company that will both value and reward your expertise, take a look at what ThreatConnect has to offer.

Requirements

Cyber Fusion analysts, working closely with threat and intelligence analysts to monitor current attack and threat information to identity those that are relevant to the enterprise;identify traffic patterns that define potential attacks; differentiate between anomalous traffic patterns caused by intruder activity. These analysts capture digital data from media and varied devices;conduct incident analysis all with an understanding of legal issues and techniques that will allow the work to be accepted as evidence in courts of law. These experts have knowledge of firewall and other security policies and functionality to block unwanted traffic and dealing with attackers

  • Ability to conduct deep level packet analysis
  • Ability to conduct traffic analysis at the host and network level
  • Ability to work in a team environment
  • Knowledge of a variety of security concepts and procedures
  • Understanding of adversarial TTPs
  • Understanding a variety of network devices and configuration strategies
  • Understanding of USCERT policies and doctrine
  • Ability to draft, modify and create SOP for use of other team members
  • Ability to create tailored products for different consumers
  • Knowledge of Networking methodology to include but not limited to the OSI Layer
  • Understanding of legal issues
  • Understanding of planning processes
  • May require shift work

Desired Education / Experience

  • B.S. Comp Science, related degree, or equivalent experience
  • Certifications Desired: Security+, Network+, CISSP, CCNA, CCNA, GCIA, Linux+
  • Maintain DoD 8570.01M Standards

This position requires a currently active TOP SECRET U.S. government clearance with the ability to obtain a TS/SCI

Benefits

Work-Life Balance:

  • 10 Paid Federal Holidays
  • Accrued Paid Time Off (PTO) for vacation/sick, time
  • Your birthday off
  • Employee recognition program with quarterly awards
  • Employee referral program
  • Military leave options available
  • Education reimbursement program for job-related college courses and professional training
  • Company-provided refreshments at our headquarters
  • Quarterly events with your geographic team
  • Annual company party

Medical:

  • MEDICAL PREMIUM FOR INDIVIDUALS AND FAMILIES ARE 100% COVERED
  • Prescription drug coverage
  • Dental coverage
  • Vision coverage
  • Company-paid short term and long term disability
  • Company-paid insurance and AD&D coverage

Financial:

  • 401K retirement savings plan with company matching program up to 6%
  • Health Savings Account
  • Flexible Spending Accounts (medical, dependent care, transit and parking)
  • Cell phone stipend
icon no score

See how you match
to the job

Find your dream job anywhere
with the LiveCareer app.
Mobile App Icon
Download the
LiveCareer app and find
your dream job anywhere
App Store Icon Google Play Icon
lc_ad

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
Cyber Risk Fusion Managed Services Senior Threat Intelligence Analyst

Deloitte & Touche L.L.P.

Posted 4 weeks ago

VIEW JOBS 10/25/2019 12:00:00 AM 2020-01-23T00:00 Deloitte Fusion Managed Services Threat intelligence Analyst RU Are you interested in improving the cyber risk protection of leading companies? If your response is yes, consider joining Deloitte & Touche LLP's growing Cyber Risk Data Fusion Managed Services practice. Our Fusion Managed Services analysts and engineers assist our clients with identifying unauthorized activities and intrusions in their networks in real time. The Deloitte Fusion Managed Services (FMS) Threat Intelligence & Analysis (TIA) team consists of engineers and analysts around the world who specialize in the tactics, tools and procedures used by cyber criminals. Work You'll Do Threat Intel Analyst– Russian APTs Focused will work within an interdisciplinary team that develops advanced analytical frameworks, tools and research methodologies in order to identify emerging cyber threats. The Analyst will be responsible for collecting information used to analyze the political, economic, social, and behavioral aspects of malicious cyber activity. The analyst will contribute to internal intelligence products for our clients. This position is primarily focused on Russian-based APT actors. We're looking for an intel analyst with deep knowledge of Russian-based APT campaigns, TTPs and activities. Other research will include monitoring of underground forums, chat channels, and, social media, the identification and analysis of security incidents using open source and internal sources to assess severity and identify responsible parties, including hacktivist groups and actors. This position will also aid in producing a comprehensive operating picture and cyber security situational awareness. Analyst Roles and Responsibilities: * Work with various intelligence collection and reporting tools and frameworks to produce reports. * Collect, process, catalog, and document information using an ALL-SOURCE approach and various technical and human means on cyber-security topics as required based on defined intelligence requirements. * Respond to requests for ad-hoc reporting and research topics from management and analysts as required. * Identifies gaps in available intelligence information and engages with leadership on strategies to meet intelligence requirements through Intelligence collection processes. * Quickly understand and deliver on company and customer requirements. * Deal professionally with offensive, profane, and obscene materials encountered during the course of investigations and research. * Aid in and participate in daily, weekly, quarterly, and yearly production reporting for clients, partners, and internal teams. The team Deloitte Advisory's Cyber Risk team helps complex organizations more confidently pursue their growth, innovation and performance agendas through proactive management of the associated cyber risks. Our professionals provide advisory and implementation services that integrate risk, regulatory, and technology skills to help clients transform their legacy programs into proactive Secure.Vigilant.Resilient.TM cyber risk programs. Join the team developing the future state of cyber risk solutions. Learn more about Deloitte Advisory's Cyber Risk Services practice. Qualifications Required: * Must be legally authorized to work in the United States without the need for employer sponsorship, now or at any time in the future * BA or BS in Computer Science or Information Management desirable or equivalent work experience * Additional certification include Certified Intrusion Analyst (GIAC), CISSP, Certified Ethical Hacker (CEH), Certified Expert Penetration Tester (CEPT) * Outstanding written and oral communication skills and the ability to prioritize work. * Good understanding of global geopolitical dynamics and the ability to apply that knowledge to an information security context. * Proven ability to understand and explain the behaviors of different types of complex organizations, from criminal groups to financial enterprises. * Proven ability to translate complex information sets into specific recommendations that can be actioned by customers to enhance their security posture. * Familiarity with cyber threats, defenses, motivations and techniques. * Some Experience with intelligence analysis tools, methods and the intelligence lifecycle. * Experience distilling raw information into actionable intelligence. * Ability to write analytical information products. * Ability to construct and analyze social network graphs. * Outstanding written and oral communication skills and the ability to prioritize work. * Technical Knowledge: * <li> Strong understanding of threat analysis and enterprise level, mitigation strategies. * Working knowledge of how malicious code operates and how technical vulnerabilities are exploited. * Knowledge of operating systems and networking technologies in general. * Knowledge of databases, query design, and how to analyze data thus obtained. Preferred: * Reverse Engineering skills is a plus. * Knowledge of foreign languages is a plus (Russian, Farsi, Arabic, Mandarin, Korean) * How you'll grow At Deloitte, our professional development plan focuses on helping people at every level of their career to identify and use their strengths to do their best work every day. From entry-level employees to senior leaders, we believe there's always room to learn. We offer opportunities to help sharpen skills in addition to hands-on experience in the global, fast-changing business world. From on-the-job learning experiences to formal development programs at Deloitte University, our professionals have a variety of opportunities to continue to grow throughout their career. Explore Deloitte University, The Leadership Center. Benefits At Deloitte, we know that great people make a great organization. We value our people and offer employees a broad range of benefits. Learn more about what working at Deloitte can mean for you. Deloitte's culture Our positive and supportive culture encourages our people to do their best work every day. We celebrate individuals by recognizing their uniqueness and offering them the flexibility to make daily choices that can help them to be healthy, centered, confident, and aware. We offer well-being programs and are continuously looking for new ways to maintain a culture where our people excel and lead healthy, happy lives. Learn more about Life at Deloitte. Corporate citizenship Deloitte is led by a purpose: to make an impact that matters. This purpose defines who we are and extends to relationships with our clients, our people and our communities. We believe that business has the power to inspire and transform. We focus on education, giving, skill-based volunteerism, and leadership to help drive positive social impact in our communities. Learn more about Deloitte's impact on the world. Recruiter tips We want job seekers exploring opportunities at Deloitte to feel prepared and confident. To help you with your interview, we suggest that you do your research: know some background about the organization and the business area you're applying to. Check out recruiting tips from Deloitte professionals As used in this posting, "Deloitte Advisory" means Deloitte & Touche LLP, which provides audit and enterprise risk services; Deloitte Financial Advisory Services LLP, which provides forensic, dispute, and other consulting services; and its affiliate, Deloitte Transactions and Business Analytics LLP, which provides a wide range of advisory and analytics services. Deloitte Transactions and Business Analytics LLP is not a certified public accounting firm. Please see www.deloitte.com/us/about for a detailed description of the legal structure of Deloitte LLP and its subsidiaries. These entities are separate subsidiaries of Deloitte LLP. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability or protected veteran status, or any other legally protected basis, in accordance with applicable law. Requisition code: E20NATFA7SS901TIS * * * * * * Deloitte & Touche L.L.P. Arlington VA

Threat Fusion Analyst

Threatconnect, Inc.