This listing was posted on ApplicantPro.
Threat Hunting Analyst
Location:
Vienna, VA
Description:
Solutions by Design is looking for a Threat Hunting Analyst to join our team in support of a large security operations program with a federal client. The formal practice of threat hunting seeks to uncover the presence of attacker tactics, techniques, and procedures (TTP) to support the customers mission of ensuring confidentiality, integrity, and availability of the infrastructure for the agency to achieve its mission. The candidate shall apply the proper techniques and procedures for the identification, collection, examination, and analysis of data while preserving the integrity of the information and maintaining a strict chain of custody. This position is approved to be remote within the United States. Responsibilities Include: Detect, analyze, and mitigate targeted, highly organized, or sophisticated threats Provide recommendations and produce consistent comprehensive reports on findings. Activities include: Advanced traffic analysis (at the packet level) and reconstruction of network traffic to discover anomalies, trends, and patterns affecting the customers networks Implementation, training, and SOP development and maintenance of implemented solutions In-depth Web log analysis to determine trend, patterns, and suspicious activity Pattern analysis, trend analysis, behavior analysis and other specialized analysis Identify and develop enhancement opportunities while investigating and reporting on cyber policy trends and issues Search for activity consistent with the presence of an advanced persistent threat Design, deploy, and manage deception technologies (e.g., honeypots, lures, traps) Design and implement a structured approach to assessing the ability of applications to indicate anomalies, provide recommendations to close gaps, and assist in the implementation of those recommendations (e.g., providing sample configs for logs, application settings, etc.) Coordinate with the SOC to implement constant assessment of key risk areas (e.g., public facing interfaces, databases containing sensitive data) Provide support to enhance Cyber requirements analysis and tracking process Required Experience and Qualifications: Experience with: APT detection and prevention products such as FireEye HX, Cisco Advanced Malware Detection, ThreatGrid, Exabeam, etc Creating operating system baselines, verification of operating system services and applications to identify malicious anomalies. Linux/Unix operating systems and file system knowledge is useful. Strong knowledge/experience with Windows servers, domain controllers, databases, group policy management and network filtering (firewalls) Performing NETFLOW or PCAP analysis using Wireshark, Cisco Stealthwatch, AWS VPC Flow logs, etc. Real time security event monitoring, statistical analysis and detection of event anomalies and event analytics with Splunk Forensic re-creation and documentation of a malware attack/breach from initial injection/exposure to malware, compromise, and proliferation of threat across systems and removal/cleanup of a malware incident Strong experience with network, live system, sandbox static and RAM/memory forensic malware analysis Must have and maintain at least two (2) active certifications: Security+, GCIH, ISC2 CISSP, GSE, GREM, GAWN, GCIA, GPPA, GSEC, GCED, GSLC, GSNA, GCFA, or other comparable certifications Two (2) years of experience with Splunk, Wireshark This is a Monday-Friday day shift position; however, must be willing to work after hours on call if/when needed. Must be a US Citizen able to obtain an agency-specific suitability clearance prior to starting Must be able to obtain and maintain up to a DoD Top Secret level clearance, which can be obtained after joining. A current/active DoD Top Secret clearance is preferred. Must be able to pass a comprehensive background check. Job Posted by ApplicantPro
Company:
Solutions By Design Ii
Posted:
December 26 2023 on ApplicantPro
Visit Our Partner Website
This listing was posted on another website. Click here to open: Go to ApplicantPro
Important Safety Tips
- Always meet the employer in person.
- Avoid sharing sensitive personal and financial information.
- Avoid employment offers that require a deposit or investment.
To learn more, visit the Safety Center or click here to report this listing.
More About this Listing: Threat Hunting Analyst
Threat Hunting Analyst is a Jobs Analyst Job at Solutions by Design Ii located in Vienna VA. Find other listings like Threat Hunting Analyst by searching Oodle for Jobs Analyst Jobs.
Threat Hunting Analyst is a Jobs Analyst Job at Solutions by Design Ii located in Vienna VA. Find other listings like Threat Hunting Analyst by searching Oodle for Jobs Analyst Jobs.