Cybersecurity Analyst IV
6 days ago
Nightwing is a leading provider of full-spectrum cyber, data operations, systems integration, and intelligence support services to the U.S. government. With a rich history of delivering technically advanced solutions, we continue to shape the future of cybersecurity and intelligence.
Job SummaryWe are seeking a highly skilled Cybersecurity Threat Hunter IV to join our team. As a key member of our Cyber Defense team, you will be responsible for identifying and mitigating cyber threats, conducting forensic analysis, and providing expert guidance to our customers.
Responsibilities- Acquire and collect computer artifacts in support of onsite engagements
- Triage electronic devices and assess evidentiary value
- Correlate forensic findings to network events in support of developing an intrusion narrative
- Collect and document system state information prior to imaging, as required
- Perform forensic triage of an incident to include determining scope, urgency, and potential impact
- Track and document forensic analysis from initial participation through resolution
- Collect, process, preserve, analyze, and present computer-related evidence
- Coordinate with Government staff and customer personnel to validate/investigate alerts or additional preliminary findings
- Conduct analysis of forensic images and available evidence in support of forensic write-ups for inclusion in reports and written products
- Evaluate, extract, and analyze suspected malicious code
- Assist in documenting and publishing Computer Network Defense (CND) guidance and reports pertaining to incident findings
- Characterize and analyze network traffic to identify anomalous activity and potential threats to network resources
- Coordinate with enterprise-wide cyber defense staff to validate network alerts
- Perform management duties as required to support the team, projects, and analysts
- Document and escalate incidents, including event history, status, and potential impact for further action
- Perform cyber defense trend analysis and reporting
- Perform event correlation using information gathered from various sources within the enterprise to gain situational awareness and determine the effectiveness of an observed attack
- Provide daily summary reports of network events and activity relevant to cyber defense practices
- Receive and analyze network alerts from various sources within the enterprise and determine possible causes of alerts
- Provide timely detection, identification, and alerting of possible attacks/intrusions, anomalous activities, and misuse activities and distinguish these incidents and events from benign activities
- Use cyber defense tools for continual monitoring and analysis of system activity to identify malicious activity
- Analyze identified malicious activity to determine weaknesses exploited, exploitation methods, effects on system and information
- Identify and analyze anomalies in network traffic using metadata
- Validate intrusion detection system (IDS) alerts against network traffic using packet analysis tools
- Identify applications and operating systems of a network device based on network traffic
- Reconstruct a malicious attack or activity based on network traffic
- Identify network mapping and operating system (OS) fingerprinting activities
- Assist in the construction of signatures that can be implemented on cyber defense network tools in response to new or observed threats within the network environment or enclave
- U.S. Citizenship
- Active TS/SCI clearance
- Ability to obtain Department of Homeland Security (DHS) Entry on Duty (EOD) Suitability
- 8+ years of direct relevant experience in cyber defense analysis using leading-edge technologies and industry-standard cyber defense tools
- Ability to create forensically sound duplicates of evidence (forensic images)
- Ability to author cyber investigative reports documenting digital forensics findings
- Proficiency with analysis and characterization of cyber attacks
- Skilled in identifying different classes of attacks and attack stages
- Understanding of system and application security threats and vulnerabilities
- Understanding of proactive analysis of systems and networks, to include creating trust levels of critical resources
- Able to work collaboratively across physical locations
- Action-oriented and have a proactive approach to problem-solving
- Proficiency with common operating systems (e.g., Linux/Unix, Windows)
- Understanding of SaaS, PaaS, and IaaS in the Cloud Environment
- Proficiency with one or more of the following EDR Tools: Crowdstrike, SentinelOne, Cortex, Microsoft MDE, or Trellix
- Proficiency with two or more of the following tools: Host forensics software (EnCase, FTK, X-Ways, Sleuth Kit/Autopsy), SIFT, Volatility, KAPE, WireShark, Splunk
- Proficiency conducting all-source research
BS Computer Science, Cyber Security, Computer Engineering, or related degree; or HS Diploma & 10 years of network investigations experience
Desired Certifications- GCFE, GCFA, GCLD, GCPS, GCPN, GWEB, GIRD, GREM, GNFA, GCIH, GCIA, GSEC
- Kubernetes Security Specialist, Microsoft 365 Certifications, Microsoft Azure Certifications, AWS Certifications, SANS Cloud Courses (SEC541, SEC584, SEC588) and Certifications GSEC (SANS401), Network+, Security+
-
Cyber Forensic Analyst IV
2 weeks ago
Arlington, Virginia, United States Nightwing Full timeAbout NightwingNightwing is a leading provider of full-spectrum cyber, data operations, systems integration, and intelligence mission support services to the U.S. government. With a rich history of delivering technically advanced solutions, we are committed to shaping the future of cybersecurity and intelligence.Job SummaryWe are seeking a highly skilled...
-
Cyber Forensic Analyst IV
5 days ago
Arlington, Virginia, United States Nightwing Full timeAbout NightwingNightwing is a leading provider of full-spectrum cyber, data operations, systems integration, and intelligence mission support services to the U.S. government. With a rich history of delivering technically advanced solutions, we continue to shape the future of cybersecurity and intelligence.Job SummaryWe are seeking a highly skilled Cyber...
-
Cybersecurity Analyst
2 days ago
Arlington, Virginia, United States Arlo Solutions Full timeAbout the RoleWe are seeking a highly skilled Cybersecurity Analyst to join our team at Arlo Solutions. As a Cybersecurity Analyst, you will play a critical role in managing and responding to security incidents with precision and urgency.Key ResponsibilitiesIncident Response: Analyze, report, and respond to detected cyber incidents, utilizing advanced skills...
-
Cybersecurity Program Analyst
2 weeks ago
Arlington, Virginia, United States Apex Systems Full timeJob Overview:Position: Cybersecurity Program/Budget AnalystLocation: Remote FlexibilityApex Systems is seeking a skilled Cybersecurity Program Analyst with experience in DoD programs, budget analysis, and stakeholder management to support our team.Key Responsibilities:Proficiency in DoD programs and management procedures.Strong analytical abilities for...
-
Cybersecurity Policy Analyst
2 days ago
Arlington, Virginia, United States Booz Allen Full timeAbout the RoleWe are seeking a highly skilled Cybersecurity Program Analyst to join our team at Booz Allen. As a Cybersecurity Program Analyst, you will play a critical role in analyzing and developing strategic cyber policies to support our defense infrastructure.Key ResponsibilitiesLead the assessment of client cyber policies, coverage, and areas of...
-
Senior Cybersecurity Analyst
1 week ago
Arlington, Virginia, United States Guidehouse Full timeAbout the RoleWe are seeking a highly skilled Senior Cybersecurity Analyst to join our team at Guidehouse. As a key member of our organization, you will be responsible for providing executive-level support, special studies, strategic planning, and analytical support to our clients.Key ResponsibilitiesProvide high-level briefings and analytical support to...
-
Cybersecurity Systems Analyst
1 week ago
Arlington, Virginia, United States Fusion Technology Full timeFusion Technology is committed to advancing cybersecurity protocols for government entities. We are seeking a proficient individual to become part of our team as a Cybersecurity Systems Analyst. Qualifications:Possess Top Secret security clearance and meet DHS suitability standardsDemonstrated experience in cyber forensic investigationsSkilled in utilizing...
-
Cybersecurity Threat Hunter IV
6 days ago
Arlington, Virginia, United States Nightwing Full timeAbout NightwingNightwing is a leading provider of full-spectrum cyber, data operations, systems integration, and intelligence support services to the U.S. government. With a rich history of delivering technically advanced solutions, we continue to shape the future of cybersecurity and intelligence.Job SummaryWe are seeking a highly skilled Cybersecurity...
-
Senior Cybersecurity Analyst
1 week ago
Arlington, Virginia, United States Peraton Full timeAbout the RoleWe are seeking a highly skilled Cybersecurity Analyst to join our team at Peraton. As a key member of our Cyber Incident Response Team, you will play a critical role in providing leading cyber and technology security experience to enable innovative, effective, and secure business processes.Key ResponsibilitiesSupport the Department of State Red...
-
Senior Cybersecurity Analyst
3 days ago
Arlington, Virginia, United States Peraton Full timeAbout the RoleWe are seeking a highly skilled Cybersecurity Analyst to join our team at Peraton. As a key member of our Cyber Incident Response Team, you will play a critical role in ensuring the security and integrity of our systems and data.Key ResponsibilitiesSupport the Department of State Red Cell Team by performing Gap Analysis of customer systems...
-
Cybersecurity Analyst
2 weeks ago
Arlington, Virginia, United States Department of The Navy Full timePosition Overview: As a vital member of the Department of the Navy, you will play a crucial role in enhancing and coordinating cybersecurity initiatives across the organization.Key Responsibilities:Act as an analyst to synchronize and integrate cyber posture activities, focusing on resilience and operational effectiveness.Serve as a policy and technical...
-
Cybersecurity Analyst
1 week ago
Arlington, Virginia, United States Department of The Navy Full timePosition Overview:As a key analyst, you will be responsible for synchronizing, coordinating, and integrating cyber posture activities within the Department of the Navy (DON). Your expertise will be vital in enhancing cybersecurity, cyber resilience, and cyber operations.Key Responsibilities:- Serve as a policy and technical authority for DON cyber...
-
Cybersecurity Threat Intelligence Analyst
2 weeks ago
Arlington, Virginia, United States Nodel Full timeJob OverviewPosition: Cyber Threat AnalystLocation: Arlington, VASecurity Clearance: Top Secret RequiredNode is dedicated to providing expert support to U.S. Government clients, focusing on incident response for civilian agencies and critical infrastructure owners facing cyber threats. Our team is responsible for immediate investigation and resolution of...
-
Cybersecurity Systems Analyst
2 weeks ago
Arlington, Virginia, United States Nine Mind Solutions Full timeLocation: Remote Salary: $60-70/Hr Clearance: US Citizen We are looking for a Cybersecurity Systems Analyst to play a pivotal role in aligning security initiatives necessary for maintaining an Authority to Operate (ATO). This position involves providing essential support for Assessment and Authorization (A&A) processes.Key Responsibilities:Assist in...
-
Cybersecurity Threat Analyst
2 weeks ago
Arlington, Virginia, United States Booz Allen Hamilton Full timePosition Overview:As a Cyber Threat Intelligence Analyst, you will play a crucial role in safeguarding national interests against cyber threats. Your responsibilities will include processing, analyzing, and researching cyber threats to deliver actionable intelligence. This encompasses identifying adversary indicators of compromise, understanding techniques,...
-
Cybersecurity Threat Analyst
2 weeks ago
Arlington, Virginia, United States Booz Allen Hamilton Full timePosition Overview:As a Cyber Threat Intelligence Analyst, you will play a pivotal role in safeguarding national interests against cyber threats. Your primary responsibility will be to process, analyze, and investigate cyber threats, delivering actionable intelligence that includes adversary indicators, tactics, techniques, procedures, and trends to enhance...
-
Cybersecurity Compliance Lead
2 weeks ago
Arlington, Virginia, United States cFocus Software Incorporated Full timecFocus Software Incorporated is seeking a Cybersecurity Compliance Lead to enhance our program supporting the Department of Homeland Security. This role offers the flexibility of remote work. Candidates must possess an active Secret clearance and comply with 8570 standards. Key Qualifications:Bachelor's Degree or equivalent professional experience in a field...
-
Cybersecurity Threat Analyst
2 weeks ago
Arlington, Virginia, United States Booz Allen Hamilton Full timePosition Overview:As a Cyber Threat Intelligence Analyst, you will play a crucial role in safeguarding national interests against cyber threats. Your primary responsibility will be to analyze, process, and research various cyber threats to deliver actionable intelligence. This includes identifying adversary indicators of compromise, understanding their...
-
Cybersecurity Technical Writer
4 days ago
Arlington, Virginia, United States Solutions³ LLC Full timeJob SummarySolutions³ LLC is seeking a highly skilled Cybersecurity Technical Writer to support our critical customer mission. As a key member of our team, you will be responsible for developing and reviewing technical communications deliverables, including cybersecurity documentation, operational procedures, plans, action reports, and meeting minutes.Key...
-
Cybersecurity Documentation Specialist
2 days ago
Arlington, Virginia, United States BCMC Full timeJob DescriptionBCMC is seeking a highly skilled Cybersecurity Documentation Specialist to support our critical customer mission. As a key member of our team, you will be responsible for developing and reviewing technical communications deliverables, including cybersecurity documentation, operational procedures, plans, action reports, and meeting minutes.Key...