Security Analyst

1 week ago

Lexington, United States MIT Lincoln Laboratory Full time
Position Description

The Security Analyst II is a member of the Threat Assessment Team – which performs analysis on cyberthreats, research and develop new methods for detecting cyber threats, reviews and triages security alerts, and other suspicious system or network activity.  The Threat Assessment Team is actively involved with security incident handling and works closely with the Security Services Department from the start to the closure of an incident. Through data analysis, the Security Analyst identifies methods to mitigate future risk to networked systems. The Security Analyst researches external malicious cyberactivity to proactively identify ways to mitigate risk to the network. Also as part of the Information Technology Security Team the Security Analyst assists in the evaluation and testing of security tools and devices.

Adversary Detection

-Research and develop ever changing methods to detect and alert on possible threat activity
-Obtain Intelligence on developing actor TTP's
-Identify ways to mitigate future risk to the Laboratory and request blocks to be put in place
-Analyze samples from suspect systems or emails for further Indicators of Compromise
 

Cyber Threat Analysis & Assessment

-Rapid assessment and determination of active threats
-Perform threat analysis on suspicious messages to determine if spam, phishing and or a targeted email
-Investigate sensor detections and alerts to determine severity of threat or false positive
-Through log and data analysis determine scope or extent at which other systems were exposed to the same threat
-Coordinate efforts among analyst to enhance mitigation efforts and avoid duplication of efforts
-Coordinate with Security Services Department on threat impact, nature and potential scope
-Publish detailed Threat Assessment reports as required
-Identify, implement or request solutions (e.g. blocks) to mitigate future risk to the Laboratory
 

External Awareness

-Research current malicious cyber activity at large
-Research how vulnerabilities are being exploited and software affected
-Proactively identify opportunities to mitigate potential threats based on research
-Proactively identify any patterns within device and server logs based on research to potentially identify systems of interest through log analysis
 

Security Projects

-Evaluate potential security software, tools or devices
-Test new network security systems and changes to existing network security devices
-Develop technical project plans, requirement documentation, test plans, change requests, and communications to users
-This position is under general supervision of the Threat Team Lead
-This position does not have any financial responsibility. However technical expertise may be required for assisting with product selection and annual product support renewals
-This position will maintain frequent contact with internal department and/or Laboratory user community as well as external vendors to maintain communications related to problem resolution, systems upgrades, services and product research
-This position interacts frequently with the Security Services Department to maintain communication related to data recovery for forensics analysis based on request, and identification of policy violations, systems of interest putting the network at risk, threats of interest or messages of interest
 

Qualifications

Required Minimum:

-CompTIA Security+ Certification or equivalent
-An understanding of TCP/IP network protocols and application layer protocols (e.g., HTTP, SMTP, DNS, etc.)
-Good understanding of Windows, Mac and Linux Operating Systems and Event logging
-Strong working knowledge of security tools and devices including SIEM and SOAR tools
-Previous experience in developing and implementing detection mechanisms
-Working knowledge Cyber Security in Cloud / DevSecOps including scripting (Python preferred)
-Scripting knowledge including use of APIs to perform integration with systems where possible
-Previous experience developing and deploying cybersecurity solutions to popular cloud platforms
-Previous experience analyzing network or system logs for malicious activity
-Some experience in malware analysis and/or reverse engineering, as well as analyzing email attachments and URL links for malicious content
-Previous experience developing automations and/or playbooks in SOAR environments for response and remediation
-Knowledge of industry standards such as MITRE ATT&CK, Cyberthreat Kill Chain and NIST standards – among others
-Ability to work independently toward delivery of goals as well as collaborate in team efforts
-Skill in interviewing users to determine source of potential malware or suspicious activity
-Excellent customer service skills
-Excellent verbal and written communication skills
 

Preferred

-Bachelor’s Degree in Computer Science, Information Technologies, Engineering or equivalent experience
-SANS GCIH (GIAC Certified Incident Handler) or equivalent, which would include solid working knowledge of incident handling
-Skill in organizing and managing projects
-Skill in building consensus among stakeholders and colleagues
 

Experience:

-4+ years experience in various cyber security / SOC roles
 

Additional Information

-Ability to obtain and maintain a government security clearance
-Occasional off-hour/on-call support is necessary. A certain degree of flexibility of schedule is required as some work (planned/unplanned) must be done outside of major production hours during pre-scheduled maintenance windows
 

 

At MIT Lincoln Laboratory, our exceptional career opportunities include many outstanding benefits to help you stay healthy, feel supported, and enjoy a fulfilling work-life balance. Benefits offered to employees include: 

-Comprehensive health, dental, and vision plans
-MIT-funded pension
-Matching 401K
-Paid leave (including vacation, sick, parental, military, etc.)
-Tuition reimbursement and continuing education programs
-Mentorship programs
-A range of work-life balance options
-... and much more  
 

our Benefits page for more information. As an employee of MIT, you can also take advantage of 
other voluntary benefits, discounts and perks.

Selected candidate will be subject to a pre-employment background investigation and must be able to obtain and maintain a Secret level DoD security clearance.

MIT Lincoln Laboratory is an Equal Employment Opportunity (EEO) employer. All qualified applicants will receive consideration for employment and will not be discriminated against on the basis of race, color, religion, sex, sexual orientation, gender identity, national origin, age, veteran status, disability status, or genetic information; U.S. citizenship is required.

Requisition ID: 41030 

  • Information Security Assurance Analyst

    2 weeks ago

    Lexington, Kentucky, United States Digital Prospectors Full time

    Position: Information Security Assurance AnalystJob Type: ContractLocation: HybridJob Overview:Digital Prospectors is seeking an Information Security Assurance Analyst to evaluate, interpret, and execute information assurance and security engineering protocols.The Information Security Assurance Analyst will establish criteria for business continuity,...

  • Security Operations Center Analyst

    2 weeks ago

    Lexington, Michigan, United States Trace3 Full time

    About Trace3:Trace3 stands as a premier Transformative IT Authority, delivering exceptional technology solutions and consulting services tailored to our clients' needs. With a team of elite engineers and a commitment to dynamic innovation, we empower IT leaders and their organizations to gain a competitive edge through a cycle of Integration, Automation, and...

  • Information Security Compliance Analyst

    2 weeks ago

    Lexington, Kentucky, United States Equiliem Full time

    Position Overview:The Information Security Compliance Analyst plays a crucial role in ensuring that the organization adheres to necessary compliance protocols and security measures.Key Responsibilities:Support compliance activities by verifying adherence to system security configuration guidelines and monitoring compliance.Regularly assess the...

  • Cyber Security Analyst

    4 days ago

    Lexington Park, Maryland, United States Modern Government Solutions Full time

    Job SummaryWe are seeking a highly skilled Cyber Security Analyst to join our team at Modern Government Solutions. As a Cyber Security Analyst, you will be responsible for analyzing and interpreting data from various cyber defense tools to identify and mitigate potential threats.Key ResponsibilitiesAnalyze data from IDS alerts, firewalls, and network traffic...

  • Cyber Security Analyst/Modeler

    4 days ago

    Lexington Park, Maryland, United States Modern Government Solutions Full time

    Job DescriptionJob Title: Cyber Security Analyst/ModelerJob Type: Full-time, On-siteClearance: Active DoD Top Secret ClearanceLocation: Remote (with occasional on-site requirements)Job Summary:Modern Government Solutions (MGS) is seeking an experienced Cyber Security Analyst/Modeler to join our team. As a key member of our cyber operations team, you will be...

  • Senior Cyber Security Analyst

    1 month ago

    Lexington, United States Pro2Serve Full time

    Company Description: ETAS Inc. has upcoming opportunity for Senior Cyber Security Analyst (Direct Hire) position at our office in Lexington, KY. Please submit resumes via the web page link below. Enterprise Technical Assistance Services, Inc. (ETAS), is a wholly owned subsidiary of Professional Project Services, Inc (Pro2Serve). ETAS was formed and...

  • Financial Analyst

    5 days ago

    Lexington Park, United States Booz Allen Hamilton Full time

    Financial AnalystThe Opportunity: The right mixture of great ideas and funding can create powerful change. In a complex organization, allocating funding to where it can be most effective can be challenging. That’s why we need you, a financial analyst who can easily navigate the requirements and regulations that govern funding, which allows a Navy client's...

  • Security Operations Center Analyst

    2 weeks ago

    Lexington Park, United States Resource Management Concepts Full time

    **This is an open continuous announcement. It will be used to fill immediate and future vacancies.**Resource Management Concepts, Inc. (RMC) provides high-quality, professional services to government and commercial sectors. Our mission is to deliver exceptional management and technology solutions supporting the protection and preservation of the people and...

  • Financial Analyst

    4 weeks ago

    Lexington Park, United States Booz Allen Hamilton Full time

    Financial AnalystThe Opportunity: The right mixture of great ideas and funding can create powerful change. In a complex organization, allocating funding to where it can be most effective can be challenging. That’s why we need you, a financial analyst who can easily navigate the requirements and regulations that govern funding, which allows a Navy client's...

  • Financial Analyst

    4 days ago

    Lexington Park, United States Booz Allen Hamilton Full time

    Financial AnalystThe Opportunity: The right mixture of great ideas and funding can create powerful change. In a complex organization, allocating funding to where it can be most effective can be challenging. That’s why we need you, a financial analyst who can easily navigate the requirements and regulations that govern funding, which allows a Navy client's...

  • Program Analyst

    3 months ago

    Lexington Park, United States KBR Full time

    Title:Program AnalystKBR is seeking a Program Analyst to join our team. As a part of one of the world’s largest independent logistics organizations supporting both US Government and commercial agencies, you will be joining a highly talented and experienced KBR Logistics team providing FMS Logistics services to all NAVAIR aviation programs. As a winner of...

  • Security Operations Center Analyst

    1 month ago

    Lexington Park, United States Resource Management Concepts, Inc. Full time

    Job DescriptionJob Description**This is an open continuous announcement. It will be used to fill immediate and future vacancies.**Resource Management Concepts, Inc. (RMC) provides high-quality, professional services to government and commercial sectors. Our mission is to deliver exceptional management and technology solutions supporting the protection and...

  • Security Operations Center Analyst

    4 weeks ago

    Lexington Park, United States Resource Management Concepts, Inc. Full time

    Job DescriptionJob Description**This is an open continuous announcement. It will be used to fill immediate and future vacancies.**Resource Management Concepts, Inc. (RMC) provides high-quality, professional services to government and commercial sectors. Our mission is to deliver exceptional management and technology solutions supporting the protection and...

  • Security Operations Center Analyst

    3 weeks ago

    Lexington Park, United States Resource Management Concepts Full time

    **This is an open continuous announcement. It will be used to fill immediate and future vacancies.** Resource Management Concepts, Inc. (RMC) provides high-quality, professional services to government and commercial sectors. Our mission is to deliver exceptional management and technology solutions supporting the protection and preservation of the people and...

  • Senior Analyst

    3 months ago

    Lexington Park, United States KBR Full time

    Title:Senior AnalystKBR is seeking a Senior Analyst to join our team. As a part of one of the world’s largest independent logistics organizations supporting both US Government and commercial agencies, you will be joining a highly talented and experienced KBR Logistics team providing FMS Logistics services to all NAVAIR aviation programs. As a winner of the...

  • FMS Program Analyst

    3 weeks ago

    Lexington Park, United States KBR Full time

    Title:FMS Program AnalystKBR is seeking an FMS Program Analyst with 3+ years of experience to join our team in Patuxent River, MD.This position supports E-2 Hawkeye Airborne Command and Control Systems Program Office (PMA-231) E-2C/D France Foreign Military Sales (FMS) IPT. RESPONSIBILITIES:Supports the efforts and actions of the Case Manager/Program...

  • Senior Management Systems Analyst

    3 months ago

    Lexington Park, United States KBR Full time

    Title:Senior Management Systems AnalystKBR is seeking a Senior Management Systems Analyst to join our team. As a part of one of the world’s largest independent logistics organizations supporting both US Government and commercial agencies, you will be joining a highly talented and experienced KBR Logistics team providing FMS Logistics services to all NAVAIR...

  • Senior Information Security Analyst

    7 days ago

    Lexington Park, United States Sabre Systems Full time

    Senior Information Security Analyst JOB_DESCRIPTION.SHARE.HTML CAROUSEL_PARAGRAPH JOB_DESCRIPTION.SHARE.HTML Lexington Park, Maryland Engineering 3990 Job Description ResponsibilitiesThe NAVAIR Digital Department leads the digital transformation of NAVAIR and works to accelerate and scale digital/analytic technologies and capabilities across the NAVAIR...

  • FMS Financial Analyst

    4 weeks ago

    Lexington Park, United States Booz Allen Hamilton Full time

    FMS Financial AnalystThe Opportunity: As an FMS Financial Program Analyst in defense missions, your unique skill set inspires you to think bigger, push further, and ask questions others don’t. We need your industry knowledge and advisory skills to help solve some of our clients’ most complex problems, and find solutions that keep our nation safe. On our...

  • Junior Financial Analyst

    3 months ago

    Lexington Park, United States KBR Full time

    Title:Junior Financial AnalystKBR is seeking a Junior Financial Analystto join our team. As a part of one of the world’s largest independent logistics organizations supporting both US Government and commercial agencies, you will be joining a highly talented and experienced KBR Logistics team providing FMS Financial services to all NAVAIR aviation programs....