Cybersecurity Threat Hunter

National Guard Employment Network is seeking a highly skilled Cybersecurity Specialist to join our team. The ideal candidate will have a strong background in security operations and be able to identify, analyze, contain, and eradicate threats on enterprise systems and infrastructure.

**Job Summary:**

The Cybersecurity Specialist will serve as a subject-matter expert, providing direct support to frontline Cybersecurity Analysts. The candidate must have a curious investigative mind, a passion for information security, and the ability to communicate complex ideas to varied audiences.

**Key Responsibilities:**

* Provide timely detection, identification, and alerting of possible attacks/intrusions, anomalous activities, and misuse activities and distinguish these incidents and events from benign activities
* Use cyber defense tools for continuous monitoring and analysis to identify anomalies and malicious activity
* Support and mentor the frontline Cybersecurity Analyst staff
* Document and escalate incidents (including event's history, status, and potential impact for further action) that may cause ongoing and immediate impact to the environment
* Analyze identified malicious activity to determine weaknesses exploited, exploitation methods, effects on systems and information
* Perform event correlation using information gathered from a variety of sources within the enterprise to gain situational awareness and determine the effectiveness of an observed attack
* Conduct research, analysis, and correlation across a wide variety of all source data sets (indications and warnings)
* Perform cyber defense trend analysis and reporting
* Coordinate with enterprise-wide cyber defense staff to validate alerts and harden the enterprise with preventative controls
* Provide daily summary reports of events and activity relevant to cyber defense practices
* Develop and analyze dashboards and reports to identify potential threats
* Develop monitoring and handling processes as new alert and event types are implemented
* Prepare technical reports for executive audiences with regard to incident response activities and learnings

**Requirements:**

* 4+ years experience in Security Operations
* Experience with cybersecurity investigations
* Experience with various security technologies (SIEM, SOAR, UEBA, EDR, IDS/IPS, etc.)
* Experience with digital forensic analysis
* Experience with cyber threat intelligence
* One or more of the following certifications are strongly desired: CompTIA Network+, CompTIA Security+, AWS Certified Security - Specialty, GIAC Certified Incident Handler (GCIH), GIAC Certified Intrusion Analyst (GCIA), GIAC Certified Detection Analyst (GCDA)

**Compensation:**

$96,250.00/Year - $137,500.00/Year

**Benefits:**

We offer versatile health perks, including flexible spending accounts, HSA, a 401(k) Plan with company match, ESPP, career opportunities, and a flexible time away plan

---