Cyber Intel Officer

Linthicum Heights, MD

Industry: ALKU:Gov SysNet Job Number: 134183

 

Cyber Intel Officer

Candidates must  have a TS-SCI  Clearance

Program Description:

The contract is looking for an assertive and self-confident Cyber Intel Officer  to partner with the Analytics  team, program, and government customers to perform the duties as an Cyber Intel Officer  located in Ft. Meade. This is a multi-tasking environment that demands customer service, communication, and organizational skills.

Day-to-Day Responsibilities:

The selected candidate will serve as a cyber intelligence officer  within the  Analytical Group in our clients primed program. The officer  provides the customer with
expertise in Intelligence sources, collection methods and analytic techniques. The
officer collaborates among interagency partners to identify malicious activity and
provide analytic support to LE/CI investigations and operations. The officer
performs analysis on existing and emerging advanced persistent threat (APT)
organizations, actors, and malware.

Required skills:
  • Strong technical skills proficiency in the following areas: network communication
    using TCP/IP protocols, basic system administration, basic
    • understanding of malware (malware communication, installation, malware types),
    • Intermediate knowledge of computer network defense operations (proxy, firewall, IDS/IPS, router/switch) 
    • Open source information collection. Candidate must have a thorough understanding of Domain Name Service records.
  • Strong knowledge of Cyber Threat Intelligence principles to include indicators of
    compromise (IOC) types, indicator pivoting and indicator attribution strength.
  • Strong proficiency hunting APT data using open source cyber threat analytic tools or data repositories such as VirusTotal, Passive Total, Threat Miner, or Maltego
  • Proficiency and recent experience (within last 3 years) performing
    NETFLOW and PCAP analysis using common analysis tools (examples include
    Wireshark, Splunk, ChopShop, Dshell, Network Miner, Moloch, etc). Candidate must be strongly proficient at sessionizing PCAP data, identifying and decoding protocols, extracting files, and applying standard filters such as Berkley Packet Filter (BPF).
  • Strong or Intermediate ability to apply formal intelligence analysis methods, develop hypothesis, prove/disprove relationships, always ask why, defend your analysis, and apply attribution to cyber threat activity. Candidate must be able to make confidence based assessments for purposes of attribution based on their technical analysis of network traffic, multi-source data, malware and system forensic analysis. Candidate must be able to identify analytic bias
  • Intermediate ability to build intrusion related data visualizations and perform
    analysis (i.e., using I2 Analyst Notebook, Netviz, Palantir, etc)

Desired skills:
  • Familiarity with / experience researching Secure Sockets Layer (SSL) certificates and IP Geolocation
  • Experience applying Kill Chain analysis, Cyber Intelligence Preparation of the
    Environment (CIPE) modeling, or Diamond modeling of cyber threat activity
  • Russian language, ILR 3/3 level of general proficiency (or equivalent certified
    language training standard) with a test date in the last 3 years
  • Advanced NETFLOW and PCAP Analysis
  • Certifications (any): CISSP, CEH, Network+, CCNA, Security+, SANS certification(s) such as GPEN or GCIH
  • Advanced Data Visualization proficiency leveraging COTS/GOTS tool
  • Technical Skills proficiency: Python language, encryption technologies/standards
  • Intermediate malware analysis or digital computer forensics experience
  • Any type of Cyber related Law Enforcement or Counterintelligence experience
  • Existing Subject Matter Expert of Advanced Persistent Threat activity
  • Experience using COTS/Open Source tools: Novetta Cyber Analytics, Mitre ChopShop and/or ARL DSHELL
  • Analyst experience in Federal Cyber Center, NSA, or Corporate CIRT
  • Formal training as an intelligence analyst in any discipline
  • graduate of US Govt intelligence analysis course: CAC, IBC, Kent School, IC 101
  • Analysis 101, Army, Navy, Air Force, etc

Job Type: FT

 

Share This Job:

Related Jobs:

Login to save this search and get notified of similar positions.