Current jobs related to Malware Investigation and Cybersecurity Specialist - Ashburn, Virginia - Leidos
-
Cyber Forensics and Malware Analyst
3 days ago
Ashburn, Virginia, United States Leidos Full timeCybersecurity Expert for Malware Analysis and ForensicsWe are seeking a highly skilled Cybersecurity Expert to join our team as a Malware Analyst and Forensics Specialist. In this role, you will be responsible for analyzing and investigating cyber threats, identifying vulnerabilities, and developing strategies to mitigate risks.Key Responsibilities:Conduct...
-
Cyber Forensics and Malware Analyst
1 month ago
Ashburn, Virginia, United States 00100 LEIDOS, INC. Full timeCyber Forensics and Malware AnalystAt Leidos, we are seeking a highly skilled Cyber Forensics and Malware Analyst to join our team. As a key member of our Cybersecurity team, you will be responsible for analyzing and investigating cyber threats, identifying vulnerabilities, and developing strategies to mitigate risks.Key Responsibilities:Conduct in-depth...
-
Cyber Forensics and Malware Analyst
1 week ago
Ashburn, Virginia, United States Leidos Full timeJob SummaryWe are seeking a highly skilled Cyber Forensics and Malware Analyst to join our team at Leidos. As a key member of our Cyber Forensics and Malware Analysis Team, you will be responsible for conducting in-depth technical analysis of malicious code, analyzing the inner workings, and developing defensive countermeasures.Key Responsibilities:Perform...
-
Cyber Forensics and Malware Analyst
1 week ago
Ashburn, Virginia, United States 00100 LEIDOS, INC. Full timeJob SummaryLeidos is seeking an experienced Cyber Analyst to join our team covering both forensics and malware analysis on a highly-visible cyber security single-award IDIQ vehicle that provides network operations security center (NOSC) support, including monitoring and analysis, cyber threat intelligence, email analysis, forensics, incident response, and...
-
Cybersecurity Specialist
4 weeks ago
Ashburn, Virginia, United States ESM Full timeJob Title: Cybersecurity SMEESM is seeking a highly skilled Cybersecurity SME to join our team. As a Cybersecurity SME, you will be responsible for providing comprehensive cybersecurity services to our clients, including investigating and analyzing cyber threats, developing and implementing remediation plans, and providing overall CS engineering and Risk...
-
Cybersecurity Specialist
3 days ago
Ashburn, Virginia, United States Family Promise of NorthCentral Palm Beach County Full timeCybersecurity SME Job DescriptionESM is seeking a highly skilled Cybersecurity SME to support a Department of Homeland Security (DHS) U.S. Customs and Border Protection (CBP) environment. The successful candidate will provide comprehensive cybersecurity services, including threat analysis, vulnerability remediation, and risk management.Key...
-
Cybersecurity Operations Center Deputy Team Lead
1 month ago
Ashburn, Virginia, United States Leidos Full timeJob Title:Cybersecurity Operations Center Deputy Team LeadJob Summary:Leidos is seeking an experienced Cybersecurity Operations Center Deputy Team Lead to join our team. As a leader of this highly visible cyber Security Operations Center (SOC) for U.S. Customs and Border Protection (CBP), you will be responsible for managing day-to-day operations of the...
-
Cybersecurity Specialist
1 month ago
Ashburn, Virginia, United States The Judge Group Full timeJob Title: Cybersecurity Specialist**Job Summary:**The Judge Group is seeking a highly skilled Cybersecurity Specialist to join our team. As a Cybersecurity Specialist, you will play a crucial role in the Security Operations Center, providing near real-time security monitoring and incident response services to our clients.Key Responsibilities:Security...
-
Cybersecurity Specialist
1 week ago
Ashburn, Virginia, United States REDLattice Full timeJob Title:Cybersecurity Specialist (High Risk)Location:Ashburn, VAWelcome to REDLattice, where we operate at the nexus of innovative technology and national security imperatives. As a premier cyberwarfare company specializing in Computer Network Operations (CNO), Offensive Cyber Operations (OCO), Electronic Warfare (EW), and Information Operations (IO), we...
-
Cybersecurity Specialist
3 days ago
Ashburn, Virginia, United States Agile Defense Full timeJob SummaryAt Agile Defense, we are seeking a highly skilled Cybersecurity Specialist to join our team. As a Cybersecurity Specialist, you will be responsible for performing cloud pentests and acting as the cloud pentesting SME for the team. You will also perform internal and external pentest against systems to determine vulnerabilities and offer mitigation...
-
Cybersecurity Expert
7 days ago
Ashburn, Virginia, United States ESM Full timeJob Title: Cybersecurity SMEESM is seeking a highly skilled Cybersecurity SME to join our team. As a Cybersecurity SME, you will be responsible for providing comprehensive cybersecurity services, including threat analysis, vulnerability assessment, and remediation planning.Key Responsibilities:Investigate and analyze cyber threats using various cybersecurity...
-
Cybersecurity Specialist
7 days ago
Ashburn, Virginia, United States Agile Defense Full timeJob Title: Cybersecurity SpecialistAt Agile Defense, we are committed to delivering innovative solutions to support our nation's most important missions. As a Cybersecurity Specialist, you will play a critical role in ensuring the security and integrity of our clients' information systems.The Security Operations Center (SOC) is a U.S. Government program...
-
Cyber Threat Intelligence Specialist
2 weeks ago
Ashburn, Virginia, United States 00100 LEIDOS, INC. Full timeCyber Threat Hunter Job DescriptionLeidos is seeking a highly skilled Cyber Threat Hunter to join our NOSC Cyber Team. The ideal candidate will possess a strong background in incident detection and response, malware analysis, and/or cyber forensics.Key Responsibilities:Create Threat Models to identify defensive gaps and prioritize mitigationsAuthor, update,...
-
Cybersecurity Incident Response Specialist
3 weeks ago
Ashburn, Virginia, United States Leidos Full timeCybersecurity Incident Response AnalystWe are seeking a skilled Cybersecurity Incident Response Analyst to support our cyber security operations center (SOC) and provide 24x7x365 support to detect, prevent, and eradicate cyber threats to our networks.Key Responsibilities:Monitor and analyze network traffic to identify potential security threatsInvestigate...
-
Cybersecurity Specialist
2 days ago
Ashburn, Virginia, United States Telos Corporation Full timeJob Title: Information Assurance SpecialistJob Summary: We are seeking a highly skilled Information Assurance Specialist to join our team at Telos Corporation. As a key member of our cybersecurity team, you will be responsible for providing IA support to networks, enclaves, and programs of record.Responsibilities:Provide IA management, technical, ST&E, and...
-
Cyber Security Incident Response Specialist
3 days ago
Ashburn, Virginia, United States Leidos Holding Full timeJob SummaryWe are seeking a highly skilled Cyber Security Incident Response Specialist to join our team at Leidos Holding. The ideal candidate will have a strong background in cybersecurity and incident response, with experience in leading teams and managing complex security operations.Key ResponsibilitiesLead and mentor a team of cybersecurity analysts,...
-
Cyber Threat Hunter
1 month ago
Ashburn, Virginia, United States 00100 LEIDOS, INC. Full timeCyber Threat Hunter Job DescriptionLeidos is seeking a highly skilled Cyber Threat Hunter to join our NOSC Cyber Team. The ideal candidate will possess a strong background in cybersecurity, threat hunting, and incident response.Key Responsibilities:Create and maintain threat models to identify defensive gaps and prioritize mitigationsAuthor and update SOPs,...
-
Cybersecurity Specialist
4 weeks ago
Ashburn, Virginia, United States The Judge Group Full timeCybersecurity Analyst Job DescriptionWe are seeking a highly skilled Cybersecurity Analyst to join our team at The Judge Group. As a Cybersecurity Analyst, you will play a critical role in the Security Operations Center, responsible for monitoring and analyzing security infrastructure and alarm devices for Indicators of Compromise (IoCs) using a proprietary...
-
Cyber Threat Hunt Analyst
1 week ago
Ashburn, Virginia, United States Leidos Full timeCyber Threat Hunt AnalystLeidos is seeking a highly skilled Cyber Threat Hunt Analyst to join our team. As a member of this technical team, you will be responsible for in-depth analysis of network and endpoint logs and activity, executing various types of cyber threat hunts on agency assets, escalating findings as deemed appropriate, and authoring technical...
-
Cybersecurity Analyst Task Lead, Senior
3 days ago
Ashburn, Virginia, United States Family Promise of NorthCentral Palm Beach County Full timeEnterprise Solutions and Management (ESM) is a rapidly growing government contractor that provides strategic IT services that meet mission needs for Defense and Federal customers.We are seeking a highly skilled Cybersecurity Analyst Task Lead to join our team in Ashburn, Va.The ideal candidate will have a strong background in cybersecurity and experience in...
Malware Investigation and Cybersecurity Specialist
2 months ago
UNLOCK YOUR POTENTIAL
At Leidos, we provide cutting-edge solutions through the dedication of our diverse and skilled workforce committed to our clients' success.
Our actions are guided by a steadfast commitment to doing what is right for our clients, our employees, and our community.
Our Mission, Vision, and Values shape our business practices.Leidos is on the lookout for a seasoned Cybersecurity Specialist to join our team focusing on both digital forensics and malware examination within a prominent cybersecurity initiative that offers network operations security center (NOSC) support, encompassing monitoring and analysis, cyber threat intelligence, email scrutiny, forensics, incident response, and malware evaluation.
The Department of Homeland Security (DHS) Network Operations Security Center (NOSC) is a U.S.
government initiative tasked with monitoring, detecting, analyzing, mitigating, and responding to cyber threats and adversarial actions within the DHS Enterprise.
The DHS NOSC holds primary responsibility for overseeing and addressing security events and incidents identified at the Trusted Internet Connection (TIC) and Policy Enforcement Point (PEP), directing and coordinating detection and response activities executed by each Component SOC.
Coordination is facilitated through a shared DHS incident tracking system and various communication methods.If this environment resonates with your professional aspirations, continue reading.
The Digital Modernization Sector integrates our digital transformation and IT programs, enhancing our ability to serve our clients through scalability and repeatability.
Key Responsibilities include dynamic malware examination and conducting memory and dead-box forensics.
The Specialist should possess experience in monitoring and detection, as well as incident response to aid in the detection, containment, and eradication of malicious activities targeting client networks.
Acting as a point of escalation for other NOSC analysts, the Specialist will undertake the following:Support investigations into computer and information security incidents to ascertain the extent of compromise to information and automated information systems.
Conduct thorough analyses of various types of computer code, particularly malicious code, to uncover unknown, suspicious, or exploitative activities.
Collaborate with analytical counterparts across the U.S. Intelligence Community, applying knowledge of network fundamentals, open-source tools, and current technology implementations to devise strategies for pursuing access and exploitation of targeted interests.
Assist in cross-training and mentoring other NOSC Support Staff.
Participate in briefings to provide expert insights on emerging threats.
Author reports and/or engage with clients for ad-hoc inquiries.
Engage in discussions to recommend enhancements to NOSC visibility or processes.
The Cyber Forensics and Malware Analysis Team provides support during core business hours (7am – 7pm), Monday through Friday EST.
Essential Duties:
Conduct both long-term and time-sensitive in-depth technical analyses of malicious code (malware), examining its inner workings and developing defensive countermeasures.
Perform malware analysis utilizing static and dynamic methodologies (e.g., debuggers [Ollydbg], disassembler [IDA Pro], sandbox execution, etc.).
Generate malware reports for dissemination to the watch floor and enterprise.
Execute technical analyses against target systems and networks, characterizing target network capabilities and vulnerabilities, while supporting the development of new techniques for exploiting targets.
Analyze cyber activities to identify entities of interest, their methods, motives, and capabilities; determine malicious behavior; and recognize emergent patterns and linkages to visualize the broader landscape of cyber operations.
Draft forensics and/or incident response reports, investigate computer attacks, and extract data from electronic systems.
Conduct technical analyses for the exploitation of identified activities of unknown or suspicious origins.
Train team members on analysis, tools, and reporting.
Collaborate with the Splunk team to implement, enhance, or modify existing use cases.
Pivot on forensic data in collaboration with the Cyber Threat Intelligence team to ascertain if the malware is part of a larger campaign, how DHS is being targeted, and what further remediation is necessary.
Lead remote compromise assessments and produce final assessment reports.
Provide input for NOSC improvements and identify visibility gaps for enterprise monitoring.
Occasional travel to other DHS locations may be required to support Incident Response investigations.
Develop and maintain Standard Operating Procedures (SOPs) and Rules of Engagement (ROE) templates.
Basic Qualifications:
A minimum of a Bachelor's degree in Computer Science, Engineering, Information Technology, Cybersecurity, or a related field PLUS eight (8) years of professional experience in incident detection and response, malware analysis, and/or cyber forensics.
In lieu of a Bachelor's degree, 12 or more years of continuous cyber network and vulnerability/malware analysis experience will be considered on a case-by-case basis, along with required certifications.
Experience in reverse engineering and analyzing malware and producing malware analysis reports.
Familiarity with Threat Intel Frameworks (e.g., Cyber Kill Chain, MITRE ATT&CK, Diamond Model).
Hands-on experience with EnCase, Axiom, FTK, CrowdStrike Falcon, Volatility, Security Onion, Suricata, Splunk.
Signature (e.g., Snort, Yara, Suricata) development/tuning.
Proficient in both Windows and Linux operating systems.
Experience with any of the following malware tools: Wireshark, OllyDBg, IDA Pro, RegShot, TCPDump, WinHex, Windbg, or PEid.
Experience in writing scripts/tools to develop analysis capabilities, including applying basic analytic methods such as computer programming (JAVA, Perl, C, etc.) and debugging programs.
Experience with network topologies and network security devices (e.g., Firewall, IDS/IPS, Proxy, DNS, WAF, etc.).
Must possess TS/SCI clearance.
In addition to specific security clearance requirements, all Department of Homeland Security SOC employees are required to obtain an Entry on Duty (EOD) clearance to support this program.
The ideal candidate is a self-driven individual pursuing a career in cybersecurity.Should hold at least one of the following certifications:
SANS GIAC:
GCIH, GCFA, GCFE, GREM, GISF, GXPN, GCTI, GOSI.
Offensive Security:
OSCP, OSCE, OSWP, OSEE.
ISC2:
CCFP, CISSP.
EC Council:
CHFI, LPT, CSA, CTIA.
Defense Cyber Investigative Training Academy:
WFE-FTK, CIRC, WFE-E-CI, FIWE.
Preferred Qualifications:
Previous experience in a DHS or other federal government agency SOC/NOC/NOSC environment.
Knowledge of Cyber Kill Chain and MITRE ATT&CK frameworks.
Proficient in one or more of the following programming languages: Python, Bash, Visual Basic, or PowerShell to support cyber threat detection or reporting.
