Emerging Threats Analyst
1 week ago
STS Systems Support, LLC. (SSS) is seeking an Emerging Threats Analyst
Requirements:
DoDD 8570.01‐M/8140.01 I AT Level III CND Active TS/SCI Formal intelligence analysis training and government experience. BA/BS or MA/MS Formal Intelligence Analysis training and government experience preferred. Previous experience working with hunting tools and technologies. Understanding of Networking (including the OSI Model, TCP/IP, DNS, HTTP, SMTP). Experience with open source Malware Analysis platforms (Assemblyline, Cuckoo, Malboxes). Experience with one or more commercial Malware Analysis platforms (Joe Sandbox, VirusTotal, knowledge of MITRE ATT&CK framework, and its uses within the cybersecurity community (., Open Source projects).Duties:
Analyze current and historical traffic entering the Air Force network using ArcSight (SIEM technology), Centaur, Noesis, Splunk, ELK, Fidelis, Solera, Niksun, Wireshark and other available tools (commercial and government provided), including OSINT and other classified reporting databases. Determine if the network traffic requires further investigation of the Air Force asset(s) in question. Correlate various data points using historical network traffic, operational events, reporting patterns, and other data to discern anomalies, patterns, or trends. Perform post intrusion correlation to ensure current incidents are contained and have not spread to other Air Force Bases, networks or enclaves. Provide tipper information to other organizations when required. Collect weekly and monthly metrics (or as required) and trend information for organizational reports (as required) and long‐term analysis. Continuously review (24/7/365) NCTOC reports, Tippers, SIGACTS, emails and other self‐reported problems and events. Conduct research and gather threat intelligence on advanced threat actors. Conduct Data Analysis for mission discovery of cyber threats and conduct characterization and attribution of those threats. Identify cyber threats, trends, and new developments on various cyber security topics by analyzing raw intelligence and data which includes geopolitical and transnational events. Present results to analysts and operators and train them how to recognize changes in operational environment likely to cause mission success or failure. Create visual displays conveying situational awareness and engagement effectiveness assessments to the operational crews. (CDRL A008) Analyze current all‐source intelligence from applicable intelligence community sources concerning adversary telecommunication and computer network systems supporting adversary C4I processes. Provide analytical reports and state findings or integrate conclusions into overall squadron generated composite reports, briefings, and target profile folders. Provide analytic tradecraft to gathered intelligence in a consistent manner. Develop and refine cyber threat intelligence collection and analysis processes. Assist crews and analysts to determine most efficient means of execution (course of action) against malware, adversary TTPs, threat actors and the MITRE attack framework with respect to AFCERT weapons. Write technical operational reports associated with systems that extensively involve telecommunications and telecommunications interfaces, IT, computer network defense (CND), computer networking, and network security. (CDRL A002) Make analytical predictions about cyber actors and their future activities based on available data. Recognize threats by performing relevant research and data analysis using both internal and external tools and resources. Produce detailed intelligence analysis reports on cyber threats with a potential to impact AF networks, systems and enclaves. (CDRL A008) Present relevant findings to both technical and non‐technical audiences. Provide OJT to other contractor employees, military, and/or civilian personnel, and ensure continuity folders/working aids are updated at least once per quarter in order to ensure efficient transition when personnel rotate.
Other details
Pay Type Salary-
Threat / Warning Analyst 2
2 months ago
San Antonio, United States Secure Innovations LLC Full timeWhy Work at SI? Secure Innovations (SI) successfully and continuously strives to become experts in the Cybersecurity field by only focusing on Cyber! Because of this, we proudly stand behind our motto, "We're Not Standard Cyber. We're the Cyber Standard." SI was built on the principle that people matter first and foremost. SI believes in providing a strong...
-
Threat / Warning Analyst 2
4 weeks ago
San Antonio, United States Secure Innovations LLC Full timeWhy Work at SI? Secure Innovations (SI) successfully and continuously strives to become experts in the Cybersecurity field by only focusing on Cyber! Because of this, we proudly stand behind our motto, "We're Not Standard Cyber. We're the Cyber Standard." SI was built on the principle that people matter first and foremost. SI believes in providing a strong...
-
Threat Analyst SME with Security Clearance
4 weeks ago
San Antonio, United States Markesman Group Full timeTitle Threat Analyst SME Location San Antonio Description Markesman Group is looking for a Threat Analyst SME to join our team in San Antonio, Texas. The Threat Analyst SME develops cyber indicators to maintain awareness of the status of the highly dynamic operating environment. They collect, processes, analyze, and disseminate cyber threat/warning...
-
Threat Analyst SME with Security Clearance
1 week ago
San Antonio, Texas, United States Markesman Group Full timeTitle: Threat Analyst SMELocation: San AntonioDescription: Markesman Group is looking for a skilled Threat Analyst SME to join our team in San Antonio, Texas. The Threat Analyst is responsible for developing cyber indicators to stay informed about the constantly changing operating environment. They are in charge of collecting, processing, analyzing, and...
-
Threat Analyst, Level 1-4
2 months ago
San Antonio, United States Independent Software Full timeJob DescriptionJob DescriptionWhat you will be doing!Independent Software is hiring Threat Analysts, Level 1-4. Candidate will research adversarial threats posed to various systems, technologies, operations, or missions in all appropriate intelligence sources, analyze likelihood of threat, and contribute to profiling adversarial behavior, intent, and...
-
Threat Analyst, Level 1-4
1 week ago
San Antonio, United States Independent Software Full timeJob DescriptionJob DescriptionWhat you will be doing!Independent Software is hiring Threat Analysts, Level 1-4. Candidate will research adversarial threats posed to various systems, technologies, operations, or missions in all appropriate intelligence sources, analyze likelihood of threat, and contribute to profiling adversarial behavior, intent, and...
-
Threat Analyst, Level 1-4
4 weeks ago
San Antonio, United States Independent Software Full timeJob DescriptionJob DescriptionWhat you will be doing!Independent Software is hiring Threat Analysts, Level 1-4. Candidate will research adversarial threats posed to various systems, technologies, operations, or missions in all appropriate intelligence sources, analyze likelihood of threat, and contribute to profiling adversarial behavior, intent, and...
-
Insider Threat Analyst
1 week ago
San Diego, United States Sancorp Consulting, LLC Full time**Position Summary**: Position Description: Insider Threat Analyst (Mid-level) Location: Remote & In-Person / San Diego, CA Employment Category: Full Time / Exempt Travel: Yes, some travel required. Deployment: No Drug screening: Yes **Security Clearance/Citizenship**: Current TS, SCI eligible / Must be a US Citizen. **Required...
-
Threat Data Analysis Center
3 weeks ago
San Jose, United States Ambient AI Full timeAmbient.ai is a computer vision intelligence company transforming security operations for large enterprises by preventing security incidents before they happen. Ambient.ai has a globally deployed footprint with several F500 companies. The Ambient.ai platform applies AI and computer vision intelligence to existing sensor and camera infrastructure to deliver...
-
Senior Cyber Security Analyst
2 months ago
San Antonio, United States University Health Full timePOSITION SUMMARY/RESPONSIBILITIES The Senior Cyber Security Analyst must have a deep understanding of information security protocols and a passion for protecting Community First Health Plans Inc. (Community First) healthcare data. In this role, the Senior Analyst will be instrumental in establishing and maintaining security standards across Community First....
-
San Francisco, United States Hybrid Pathways Full timeAbout the Opportunity: Hybrid Pathways, a New Era Company, is seeking a Security Threat Detection Engineer Consultant to support clients Threat Management objectives to build, maintain and improve threat detections and alerting infrastructure and to ensure the right data collection and detections are in place to discover threats against infrastructure, data,...
-
San Francisco, United States Hybrid Pathways Full timeAbout the Opportunity:Hybrid Pathways, a New Era Company, is seeking a Security Threat Detection Engineer Consultant to support client's Threat Management objectives to build, maintain and improve threat detections and alerting infrastructure and to ensure the right data collection and detections are in place to discover threats against infrastructure, data,...
-
San Francisco, United States Hybrid Pathways Full timeAbout the Opportunity:Hybrid Pathways, a New Era Company, is seeking a Security Threat Detection Engineer Consultant to support client's Threat Management objectives to build, maintain and improve threat detections and alerting infrastructure and to ensure the right data collection and detections are in place to discover threats against infrastructure, data,...
-
San Francisco, California, United States Hybrid Pathways Full timeAbout the Opportunity:Hybrid Pathways, a New Era Company, is seeking a Security Threat Detection Engineer Consultant to support client's Threat Management objectives to build, maintain and improve threat detections and alerting infrastructure and to ensure the right data collection and detections are in place to discover threats against infrastructure, data,...
-
San Francisco, California, United States Hybrid Pathways Full timeAbout the Opportunity:Hybrid Pathways, a New Era Company, is seeking a Security Threat Detection Engineer Consultant to support client's Threat Management objectives to build, maintain and improve threat detections and alerting infrastructure and to ensure the right data collection and detections are in place to discover threats against infrastructure, data,...
-
San Francisco, United States Hybrid Pathways Full timeAbout the Opportunity: Hybrid Pathways, a New Era Company, is seeking a Security Threat Detection Engineer Consultant to support clients Threat Management objectives to build, maintain and improve threat detections and alerting infrastructure and to ensure the right data collection and detections are in place to discover threats against infrastructure, data,...
-
San Francisco, California, United States Hybrid Pathways Full timeAbout the Opportunity: Hybrid Pathways, a New Era Company, is seeking a Security Threat Detection Engineer Consultant to support clients Threat Management objectives to build, maintain and improve threat detections and alerting infrastructure and to ensure the right data collection and detections are in place to discover threats against infrastructure, data,...
-
Senior Security Threat Detection Engineer Consultant
2 months ago
San Francisco, United States Hybrid Pathways Full timeJob DescriptionJob DescriptionAbout the Opportunity: Hybrid Pathways, a New Era Company, is seeking a Security Threat Detection Engineer Consultant to support client’s Threat Management objectives to build, maintain and improve threat detections and alerting infrastructure and to ensure the right data collection and detections are in...
-
San Francisco, United States Hybrid Pathways Full timeAbout the Opportunity:Hybrid Pathways, a New Era Company, is seeking a Security Threat Detection Engineer Consultant to support client’s Threat Management objectives to build, maintain and improve threat detections and alerting infrastructure and to ensure the right data collection and detections are in place to discover threats against infrastructure,...
-
Senior Security Threat Detection Engineer Consultant
2 months ago
San Francisco, United States Hybrid Pathways Full timeAbout the Opportunity:Hybrid Pathways, a New Era Company, is seeking a Security Threat Detection Engineer Consultant to support client’s Threat Management objectives to build, maintain and improve threat detections and alerting infrastructure and to ensure the right data collection and detections are in place to discover threats against infrastructure,...
