Cyber Insider Threat Analyst

Job Locations US-Washington, DC
Job ID 2018-1491


AbleVets, LLC is a fast-growing Service Disabled Veteran Owned Small Business (SDVOSB) providing healthcare information technology services and resources to help the Veterans Affairs (VA) and Department of Defense (DoD) improve the lives of the people they serve. AbleVets has an opportunity for an experienced, motivated Cyber Insider Threat Analyst to support our VA customer. The Cyber Insider Threat Analyst will be responsible for providing security and incident analysis and identifying anomalous insider activities. The position is located on-site at the customer’s facility.

Essential Functions and Job Responsibilities


Essential Functions and Job Responsibilities
The successful candidate must be well-versed in security operations, cyber security tools, intrusion detection, and secured networks. The candidate will is assist in drafting, maintaining, and monitoring organizational wide information security policies, procedures, control techniques, training and inspection requirements centered around insider threat management. Duties and responsibilities may include, but are not limited to:

  • Monitoring user activity on an organizations IT automated systems, infrastructure, and networks for any suspicious insider activity
  • Reporting anomalous insider activities to Government staff within 15 minutes of identification
  • Evaluating historical events and incidents to identify trends and methods of data loss
  • Coordinating response activities with various stakeholders for confirmed incidents and recommending mitigation strategies
  • Continuously evaluating changes in actors, tactics, techniques and targets to enhance threat scenarios and use cases and make recommendations to ensure that the technology strategy maintains pace with the changing insider threat landscape
  • Assisting with planning and execution of insider threat training
  • Proactively gathering and compiling internal/external intelligence data
  • Generating weekly and monthly trend analysis reports for insider threat cases and activities



Bachelor's degree or higher in Information Technology or other engineering or technical discipline and at least 6 years IT experience and minimum four years advanced Cyber Threat Information experience. Four year relevant experience may be substituted with professional certification (e.g., CISSP, GREM or GCIH)

  • Certification (or ability to obtain certification) in at least one of the following areas: 1) Insider Threat Program Manager (ITPM) Certificate, 2) Insider Threat Vulnerability Assessor (ITVA) Certificate, 3) Certified Information Systems Security Professional (CISSP)
  • Experience with advanced cyber security tools, network topologies, intrusion detection, PKI, and secured networks
  • In-depth understanding of NIST SP 800-61, US CERT and Office of Management and Budget (OMB) standards
  • Experience interpreting and implementing cyber security regulations
  • Excellent verbal communication skills
  • Outstanding written skills for preparing reports and briefings
  • Excellent analytical and problem solving skills
  • Must be able to obtain and maintain a U.S. Government security clearance (Public Trust) which will require successful completion of a background check and fingerprinting.



Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
Share on your newsfeed