![Motion Recruitment](https://media.trabajo.org/img/noimg.jpg)
Splunk Cyber Threat Analyst- Remote Local Washington D.C.
3 days ago
This position is for a Cyber Threat Analyst for an organization that specializes in analyzing and producing advanced cybersecurity and threat intelligence. Responsibilities include identifying and assessing threats and potential threats to the customer's personnel, information, and information systems. The role involves providing timely and relevant intelligence to assist in mitigating cyber threats, supporting the evaluation, implementation, and operation of advanced analysis tools and technologies, and developing and supporting the Cyber Insider Threat Program.
The company is located in the Washington D.C. Metro area and will remain 100% remote, but the candidate must be local to the area.
What You Will Be Doing: Support the customer's comprehensive cyber threat analysis efforts. Serve as the liaison between the Splunk Engineering team and SOC operations teams to configure the Splunk Data Lake for optimal SOC functionality. Create executive-level dashboards summarizing cyber status or risk level per Splunk, based on criteria published by FISMA and other Government organizations. Produce metrics and trendlines for threat activity and provide in-product security research on existing and emerging threats. Support the use of machine learning for event correlation and proactive cyber response capabilities. Research, analyze, and draft documents such as use case requirements, system change documents, and process documents/workflows. Ensure documentation is accurate, complete, and adheres to quality, editorial, and government standards. Develop content including presentations, bulletins, white papers, memos, policies, briefings, and other products appropriate for the intended audience. Collaborate with analysts and engineers to acquire subject knowledge. Assist in coordinating projects from the planning stage, provide additional or missing materials, and edit for content format, flow, and integrity. Perform Cyber Threat Assessment and Remediation Analysis within the context of SIEM configuration requirements. Process, organize, and analyze incident indicators retrieved from the client environment and correlate these indicators with various intelligence data. Coordinate with internal teams and assist in the creation of engagement deliverables for activities such as Insider Threats, Rule of Engagement (ROE), Threat Hunting, After Action Reports, and other artifacts supporting testing, monitoring, and protecting the enterprise. Investigate network and host detection and monitoring systems to advise on engagement processes. Develop core threat intelligence capabilities and subject matter expertise. Develop and execute bash and python scripts to process discrete log files, extract specific incident indicators, and develop tools to aid in Tier 1 and Tier 2 functions. Required Skills & Experience: Bachelor’s degree in Computer Science, Information Systems, Mathematics, Engineering, or a related field, or an additional two (2) years of relevant experience. Experience in cyber threat intelligence or intelligence analysis. Cybersecurity certifications preferred but not required. Strong organizational, verbal, presentation, and written communication skills. Comfortable presenting briefings to clients. Proficient in using Splunk for SOC operations support. Skilled in assessing SIEM data for search and visualization capabilities. Demonstrated proficiency in Incident Response Process, SOC operations, and threat hunting. Good understanding of system log information and data collection for Incident Events. Operational knowledge of enterprise networking and security tools (firewalls, Antivirus, HIDS, IDS/IPS, proxy, WAF) and Windows and Unix/Linux systems. Experienced in log analysis and reporting. Skilled in creating and tracking investigations to resolution. Experience with Endpoint security solutions such as Windows Defender, Tanium, FireEye Solutions, Antivirus Solutions, and EDR Tools. Understanding of compliance or regulatory frameworks (e.g., FISMA, NIST, ISO). Solid understanding of application, authentication, network security principles, and operating system hardening techniques. General knowledge of cyber-attack frameworks (MITRE ATT&CK, Lockheed Cyber Kill Chain). Understanding of Computer Network Defense (CND) policies, procedures, and regulations. Experienced in SIEM monitoring and analysis, network traffic analysis, log analysis, and differentiating between potential intrusion attempts and false alarms.
Applicants must be currently authorized to work in the United States on a full-time basis now and in the future.
This position doesn’t provide sponsorship.
-
Arlington, Virginia, United States Motion Recruitment Full timeSplunk Cyber Threat AnalystThis position is for a Cyber Threat Analyst for an organization that specializes in analyzing and producing advanced cybersecurity and threat intelligence. Responsibilities include identifying and assessing threats and potential threats to the customer's personnel, information, and information systems. The role involves providing...
-
CyberSecurity Threat Analyst
2 weeks ago
Arlington, United States Development InfoStructure Full timeJob DescriptionJob DescriptionDevelopment InfoStructure LLC., (DEVIS) provides exceptional DevSecOps integration in our agile software development and embedded software solutions, combined with comprehensive IT management and consulting services to our federal, state, and local governments. The outcomes of our research and development, products and...
-
CyberSecurity Threat Analyst
2 weeks ago
Arlington, United States Development InfoStructure Full timeJob DescriptionJob DescriptionDevelopment InfoStructure LLC., (DEVIS) provides exceptional DevSecOps integration in our agile software development and embedded software solutions, combined with comprehensive IT management and consulting services to our federal, state, and local governments. The outcomes of our research and development, products and...
-
Cybersecurity Threat Analyst
4 weeks ago
Arlington, United States Development InfoStructure Full timeJob DescriptionJob DescriptionDevelopment InfoStructure LLC., (DEVIS) provides exceptional DevSecOps integration in our agile software development and embedded software solutions, combined with comprehensive IT management and consulting services to our federal, state, and local governments. The outcomes of our research and development, products and...
-
Host Based Cyber Systems Analyst IV
2 weeks ago
Arlington, United States Argo Cyber Systems Full timeThe DHS's Hunt and Incident Response Team (HIRT) secures the Nation's cyber and communications infrastructure. HIRT provides DHS's front line response for cyber incidents and proactively hunting for malicious cyber activity. Argo Cyber Systems is a key partner to DHS, and performs HIRT investigations to develop a preliminary diagnosis of the severity of...
-
Host Based Cyber Systems Analyst IV
1 month ago
Arlington, United States Argo Cyber Systems Full timeJob DescriptionJob DescriptionThe DHS's Hunt and Incident Response Team (HIRT) secures the Nation's cyber and communications infrastructure. HIRT provides DHS's front line response for cyber incidents and proactively hunting for malicious cyber activity. Argo Cyber Systems is a key partner to DHS, and performs HIRT investigations to develop a...
-
Arlington, Virginia, United States SIXGEN Full timeWe are seeking a Cyber Warfare Threat Analyst to join our growing team. As a Cyber Warfare Threat Analyst, you will be challenged in a variety of cyber security focuses. From your knowledge of foreign threats, avenues of attack, using your intelligence experience, you will create intelligence products and briefings. You will work with Intelligence production...
-
Cyber Threat Analyst
1 month ago
Arlington, United States Node.Digital Full timeCyber Threat AnalystLocation: Arlington, VAMust have Top Secret Clearance Node is supporting a U.S. Government customer to provide support for onsite incident response to civilian Government agencies and critical asset owners who experience cyber-attacks, providing immediate investigation and resolution. Contract personnel perform investigations to...
-
Cyber Threat Analyst
1 month ago
Arlington, United States Node.Digital Full timeJob DescriptionJob DescriptionCyber Threat AnalystLocation: Arlington, VAMust have Top Secret ClearanceNode is supporting a U.S. Government customer to provide support for onsite incident response to civilian Government agencies and critical asset owners who experience cyber-attacks, providing immediate investigation and resolution. Contract personnel...
-
Cyber Threat Analyst
22 hours ago
Arlington, United States Node.Digital Full timeJob DescriptionJob DescriptionCyber Threat AnalystLocation: Arlington, VAMust have an active Top Secret Security ClearanceNode is supporting a U.S. Government customer to provide support for onsite incident response to civilian Government agencies and critical asset owners who experience cyber-attacks, providing immediate investigation and resolution....
-
Cyber Threat Intelligence Analyst
2 weeks ago
Arlington, United States Peraton Full time**In this role, you will**: - Perform research and investigates current threats, including the forward deployed incident response and threat hunting functions. - Analyze data to derive facts and projections concerning capabilities, intentions, attack approaches, research resource allocations, motivations, tendencies, personalities. - Contribute to profiling...
-
Senior Cyber Threat Intelligence Analyst
2 weeks ago
Arlington, Virginia, United States Cordia Resources by Cherry Bekaert Full timeLeading Cybersecurity/ Financial Services Firm Senior Cyber Threat Intelligence Analyst ($180k-$210k + 15% Bonus) Work Model: Hybrid (3x) Step into a leading cybersecurity/ financial services firm in Northern VA, unwavering in its mission to fortify our nation's pivotal financial infrastructure. Their strategic alliances with Fortune 100 corporations and...
-
Cloud Security Analyst
1 month ago
Arlington, United States Motion Recruitment Full timeCloud Security Analyst The company is looking for creative individuals interested in helping grow something truly unique in their markets. While the ideal candidate is great at independently getting their work done, at the same time they are a team player who readily and proactively contributes to team activities to both the team and client’s consistent...
-
Senior Cyber Threat Intelligence Analyst
3 weeks ago
Arlington, United States Cordia Resources by Cherry Bekaert Full timeLeading Cybersecurity/ Financial Services FirmSenior Cyber Threat Intelligence Analyst ($180k-$210k + 15% Bonus)Work Model: Hybrid (3x)Step into a leading cybersecurity/ financial services firm in Northern VA, unwavering in its mission to fortify our nation's pivotal financial infrastructure. Their strategic alliances with Fortune 100 corporations and...
-
Cyber Threat Analyst
4 weeks ago
Arlington, United States Nine Mind Solutions Full timeWe are looking for Cyber Threat Analyst to support this critical customer mission. Shift Work: Saturday & Sunday 0600-1830; plus two 8-hour shifts during the work week Eligibility: Must be a US Citizen Must have an active TS/SCI clearance Must be able to obtain Client Entry on Duty (EOD) Suitability prior to onboarding Must have 2+ years of directly...
-
Information Security Analyst
4 weeks ago
Arlington, United States Motion Recruitment Full timeInformation Security Analyst The Information Security Analyst, a member of the Cybersecurity Operations Group, will report to the Director of Information Security & Assurance. This role involves overseeing ongoing monitoring of the network environment to identify and respond to malicious activities and potential threats. The candidate must be local to the...
-
Security Analyst
2 weeks ago
Arlington, United States Argo Cyber Systems Full timeJob DescriptionJob DescriptionARGO Cyber Systems is seeking a Cyber Security Incident ResponderARGO is supporting a U.S. Government customer on a large mission critical development and sustainment program to design, build, deliver, and operate a network operations environment; including introducing new cyber capabilities to address emerging threats. In...
-
Security Analyst
1 month ago
Arlington, United States Argo Cyber Systems Full timeJob DescriptionJob DescriptionARGO Cyber Systems is seeking a Cyber Security Incident ResponderARGO is supporting a U.S. Government customer on a large mission critical development and sustainment program to design, build, deliver, and operate a network operations environment; including introducing new cyber capabilities to address emerging threats. In...
-
Cloud Security Analyst
1 month ago
Arlington, Virginia, United States Motion Recruitment Full timeCloud Security AnalystThe company is looking for creative individuals interested in helping grow something truly unique in their markets. While the ideal candidate is great at independently getting their work done, at the same time they are a team player who readily and proactively contributes to team activities to both the team and client's consistent...
-
Splunk Ingest Engineer
1 month ago
Arlington, United States Motion Recruitment Full timeSplunk Ingest Engineer As a Splunk Ingest Engineer, you will be entrusted with the critical role of maintaining and expanding our Splunk infrastructure. Your day-to-day responsibilities will include health checks, maintenance, and deployment activities that are crucial for the seamless operation of our Splunk ecosystem. The company is located in the D.C....