Sr. Threat Hunter
4 weeks ago
Responsibilities:
- Perform event correlation using information gathered from a variety of sources within the enterprise to gain situational awareness and determine the effectiveness of an observed attack
- Assesses network topology and device configurations identifying critical security concerns and providing security best practice recommendations
- Collects network intrusion artifacts (e.g., PCAP, domains, URI's, certificates, etc.) and uses discovered data to enable mitigation of potential incidents
- Collects network device integrity data and analyze for signs of tampering or compromise
- Analyzes identified malicious network and system log activity to determine weaknesses exploited, exploitation methods, effects on system and information
- Tracking and documenting on-site incident response activities and providing updates to leadership through executive summaries and in-depth technical reports
- Planning, coordinating and directing the inventory, examination and comprehensive technical analysis of computer related evidence
- Serving as technical forensics liaison to stakeholders and explaining investigation details
Required Skills:
- Must have an active Secret clearance (TS/SCI eligible) and be able to obtain DHS Suitability
- 8+ years of directly relevant experience in cyber forensic and network investigations and BS Computer Science, Cybersecurity, Computer Engineering or related degree (or HS Diploma and 10+ years of host or digital forensics or network forensic experience)
- Experience with reconstructing a malicious attack or activity
- Ability to characterize and analyze network traffic, identify anomalous activity / potential threats, analyze anomalies in network traffic using metadata
-Ability to create forensically sound duplicates of evidence (forensic images)
- Able to write cyber investigative reports documenting forensics findings
- In depth knowledge and experience of:
- identifying different classes and characterization of attacks and attack stages
- CND policies, procedures and regulations
- proactive analysis of systems and networks, to include creating trust levels of critical resources
- system and application security threats and vulnerabilities
- of network topologies, Wi-Fi Networking, and TCP/IP protocols
- Splunk (or other SIEMs)
- Vulnerability scanning, assessment and monitoring tools such as Security Center, Nessus, and Endgame
- MITRE Adversary Tactics, Techniques and Common Knowledge (ATT&CK)
- Experience and proficiency with the following tools and techniques:
• EnCase, FTK, SIFT, X-Ways, Volatility, WireShark, Sleuth Kit/Autopsy, and Snort
• EDR Tools: Crowdstrike, Carbon Black, Etc
• Carving and extracting information from PCAP data
• Non-traditional network traffic: Command and Control
• Preserving evidence integrity according to national standards
• Designing cyber security systems and environments in a Linux environment
• Virtualized environments
• Conducting all-source research
Desired Certifications: - GCFA, GCFE, EnCE, CCE, CFCE, CEH, CCNA, CCSP, CCIE, OSCP, GNFA
-
Sr. Threat Hunter with Security Clearance
1 month ago
Arlington, United States Base One Technologies Full timeOur client is seeking Cyber Forensics Analysts to support the Govt Hunt and Incident Response Team. This team secures the Nation’s cyber and communications infrastructure while providing front line response for cyber incidents and hunting for malicious cyber activity. Contract personnel provide front line response for digital forensics/incident response...
-
Arlington, United States Peraton Full timeAbout Peraton Peraton is a next-generation national security company that drives missions of consequence spanning the globe and extending to the farthest reaches of the galaxy. As the world's leading mission capability integrator and transformative enterprise IT provider, we deliver trusted, highly differentiated solutions and technologies to protect our...
-
Sr Cybersecurity Engineer
4 days ago
Arlington, United States General Motors Financial Company, Inc. Full timeThe Sr Cybersecurity Engineer is responsible for developing, deploying, monitoring, tuning, evaluating, reporting and maintaining systems and procedures to identify and mitigate threats to the corporate network, corporate assets and corporate users. Security Engineer, Cybersecurity, Security, Engineer, Network Operations, IT, Technology
-
Cyber Threat Intelligence Analyst
1 week ago
Arlington, United States Nightwing Group Full timeCyber Threat Intelligence Analyst page is loaded Cyber Threat Intelligence Analyst Apply locations VA149: 1110 N Glebe Road Arlington 1110 North Glebe Road Suite 630, Arlington, VA, 22201 USA time type Full time posted on Posted 8 Days Ago job requisition id 01676620 Date Posted: 2024-02-05 Country: United States of America Location: VA149: 1110 N Glebe Road...
-
Sr. Cyber Security Subject Matter Expert
2 months ago
Arlington, United States BCMC Full timeJob DescriptionJob DescriptionBCMC is supporting a U.S. Government customer on a large mission critical development and sustainment program to design, build, deliver, and operate a network operations environment including introducing new cyber capabilities to address emerging threats.We are seeking a Sr. Cyber Security Subject Matter Expert (SME) who can...
-
Information Systems Security Analyst
5 days ago
Arlington, United States Node.Digital Full timeInformation Systems Security Analyst / Sr Cyber Security Subject Matter ExpertLocation: Arlington, VAMust have an active Top Secret Clearance Node is supporting a U.S. Government customer on a large mission-critical development and sustainment program to design, build, deliver, and operate a network operations environment including introducing new cyber...
-
Information Systems Security Analyst
6 days ago
Arlington, United States Node.Digital Full timeJob DescriptionJob DescriptionInformation Systems Security Analyst / Sr Cyber Security Subject Matter ExpertLocation: Arlington, VAMust have an active Top Secret ClearanceNode is supporting a U.S. Government customer on a large mission-critical development and sustainment program to design, build, deliver, and operate a network operations environment...
-
Host Based Systems Analyst
1 month ago
Arlington, United States Arsiem Corporation Full timeARSIEM is seeking a senior Cyber Threat Hunter. Responsibilities:- Perform event correlation using information gathered from a variety of sources within the enterprise to gain situational awareness and determine the effectiveness of an observed attack- Assesses network topology and device configurations identifying critical security concerns and providing...
-
Cyber Network Defense Analyst Ii
2 weeks ago
Arlington, United States Dhara Consulting Group Full timeToday - Dept of Homeland Security - Unspecified - Unspecified - IT - Hardware - Arlington, VA** (ON-SITE/OFFICE)** **Date Posted**: 2024-04-05 **Country**: United States of America **Location**: VA149: 1110 N Glebe Road Arlington 1110 North Glebe Road Suite 630, Arlington, VA, 22201 USA **Position Role Type**: Hybrid You have been redirected to RTX's career...
-
Sr. Security Operations Center Analyst
7 days ago
Arlington, United States Raytheon Technologies Full timeDate Posted:2024-04-02Country:United States of AmericaLocation:VA149: 1110 N Glebe Road Arlington 1110 North Glebe Road Suite 630, Arlington, VA, 22201 USAPosition Role Type:HybridYou have been redirected to RTX's career page as we have recently transitioned from RTX to become a standalone company, which provides us with greater autonomy and opportunities...
-
Business Development Manager
6 days ago
Arlington, United States Clarion Security Full timeClarion Security is seeking candidates for a Business Development Manager (BMD) to join our sales team based in the fast-growing Dallas branch. The mission of the BDM is to sell security officer and technology hybrid services to commercial and government properties for the new Dallas Branch of Clarion Security. We are seeking a motivated team member with...
-
Sr Risk and Vulnerability Analyst
1 week ago
Arlington, Virginia, United States IVA'AL Solutions, LLC Full timeDescription: IVA'AL Solutions, LLC is seeking highly skilled Senior Risk and Vulnerability Analyst to provide services on a contract supporting DHS CISA Joint Cyber Defense Collaborative (JCDC).The ideal candidate will have excellent problem-solving and communications skills as well as previous work history supporting the development of detailed plans for...
-
Sr. Security Operations Center Analyst
1 week ago
Arlington, United States Raytheon Technologies Full timeDate Posted: 2024-04-02 Country: United States of America Location: VA149: 1110 N Glebe Road Arlington 1110 North Glebe Road Suite 630, Arlington, VA, 22201 USA Position Role Type: Hybrid You have been redirected to RTX's career page as we have recently transitioned from RTX to become a standalone company, which provides us with greater autonomy and...
-
Arlington, United States Base One Technologies Full timePrimary Responsibilities:• Lead, manage, and understand the entire endpoint security lifecycle: obtain visibility, minimize surface area of attack, prevent and detect threats, investigate and respond, and remediate• Deploying, configuring, operating, monitoring, tuning, upgrading, and troubleshooting endpoint security tools• Collaborate, guide, and...
-
Cyber Network Defense Analyst Iv Ap
2 weeks ago
Arlington, United States Dhara Consulting Group Full timeToday - Dept of Homeland Security - Unspecified - Unspecified - IT - Hardware - Arlington, VA** (ON-SITE/OFFICE)** **Date Posted**: 2024-04-05 **Country**: United States of America **Location**: VA149: 1110 N Glebe Road Arlington 1110 North Glebe Road Suite 630, Arlington, VA, 22201 USA **Position Role Type**: Hybrid You have been redirected to RTX's career...
-
Senior Gap Team Analyst
2 weeks ago
Arlington, United States Peraton Full timeAbout Peraton Peraton is a next-generation national security company that drives missions of consequence spanning the globe and extending to the farthest reaches of the galaxy. As the world's leading mission capability integrator and transformative enterprise IT provider, we deliver trusted, highly differentiated solutions and technologies to protect our...
-
Sr. Cybersecurity Engineer- Tenable
1 week ago
Arlington, United States Cyber Crime Full timephia, LLC At phia, trust us to solve the complex challenges of our connected world through top-tier cyber intelligence & threat hunting. Contact us. View company page At phia we hire talented and passionate people who are focused on collaborative, meaningful work, providing technical and operational subject matter expertise and support services to our...
-
Network Based Systems Analyst IV
2 weeks ago
Arlington, United States Base One Technologies Full timeOur Pensacola, FL based client is looking for Sr. Mgr. Cyber Incdnt Rspnse/Network Based Systems Analyst IV. If you are qualified for this position, please email your updated resume in word format to Our Govt client provides remote and onsite advanced technical assistance, proactive hunting, rapid onsite incident response, and immediate investigation and...
-
Sr. Network Security Architect
1 month ago
Arlington, Virginia, United States AES Corporation Full timeWe are seeking a skilled and seasoned Senior Security Network Engineer to join our network team. The successful candidate will play a critical role in architecting, designing, deploying, monitoring, maintaining, and refreshing secure global IT/OT network infrastructures to protect digital assets from leakage, unauthorized access, and cyber-attacks. The...
-
Sr. Security Engineer
1 month ago
Arlington, United States American Association of Motor Vehicles Full timeJob DescriptionJob DescriptionPosition Summary:AAMVA’s Security team is looking for a highly motivated, self-starter, certified senior security engineer, who enjoys the challenge of working in a fast pace environment. The engineer will be primarily tasked with the implementation of security in the Microsoft Azure cloud using code and automation. The...