AbleVets

  • Cyber Hunt Threat Analyst (CHTA)

    Job Locations US-SC
    Job ID 2018-1716
  • Overview

    AbleVets, LLC is a fast-growing Service Disabled Veteran Owned Small Business (SDVOSB) providing healthcare information technology services and resources to help the VA and DoD improve the lives of the people they serve. AbleVets has an opportunity for an experienced and motivated Cyber Hacker Threat Analyst. This position is located on site at our customer's facility Charleston, SC.

     

    Essential Functions and Job Responsibilities

    The candidate selected shall provide support for the ongoing analysis of threats capable of impacting resources being serviced by the Cyber Security Service Provider (CSSP) based on review of programmatic, technical, and IA Certification and Accreditation documentation and daily review of open source / unclassified and classified threat warnings and bulletins.

     

    Performs cyber intelligence gathering and threat analysis of threats, including nation-state sponsored threats for a large organization. Actively provides in-depth incident analysis. Evaluates security incidents and performs research. Monitors, analyzes and correlates network traffic utilizing the latest in security tools and technology. Reviews threat data from various sources; coordinates with federal leadership, as well as government agencies to provide reporting and situational awareness.

    • Perform daily review of cyber threat warnings, bulletins, alerts, and incident reporting documentation and databases produced by the U.S. Government (USG), Department of Defense (DoD) and Intelligence Community (IC).
    • Conducts research on emerging security threats; Provides correlation and trending of cyber incident activity.
    • Maintains knowledge of adversary activities, including intrusion set tactics, techniques ,and procedures (TTP).
    • Maintains Situational Awareness and reports on advanced threats, including Advanced Persistent Threat (APT) and Focused Operations (FO) incidents.
    • Communicates events to agencies regarding intrusions and compromises to network infrastructure, applications, and operating systems; assists with implementation of counter-measures and mitigating controls.
    • Analyzes relevant cyber security event data for attack indicators and breaches that may yield detection/prevention content
    • Prepares cyber threat assessments based on threat analysis, coordinates cyber threat tracking with other organizations and the government; assists in developing reports, briefings and assessments to facilitate the understanding of cyber threats.
    • Provides expert quality network traffic (PCAP) and Net Flow analysis. Experience with multiple programming languages.
    • Experience in software reverse engineering or software development. In-depth knowledge of IDA Pro/Debuggers.
    • In-depth knowledge of dynamic /static malware analysis and memory analysis.
    • In-depth knowledge of Windows Operating System Internals (Kernel, Registry, File System, Windows APIs.
    • Supports SOC analysis and incident response as needed.
    • Creates and maintains Standard Operating Procedures and other documentation as needed.
    • Additional duties as assigned.

    Qualifications

    • Bachelor’s Degree with a minimum of 5 year’s related technical experience or Master’s degree with a minimum of 3 years of related technical experience.
    • Must have a minimum of 4 years hands-on CND experience.
    • Bachelor's Degree in Computer Science or related technical discipline, or the equivalent combination of education, professional training, or work experience.
    • Excellent written and verbal communication skills. Excellent problem solving skills.
    • Obtain and maintain compliance with applicable DoD 8570.01-M requirements. Cyber threat analyst support requires at least IAT Level II and CND Analyst certifications.
    • CND Analyst Certifications: (GCIA, CEH, or GCIH)
    • Cyber threat analyst support requires at least IAT Level II Certifications: (Security Plus, GSEC, or SSCP) 
    • Active DOD Secret Clearance required

    Additional Qualifications Below:

     

    A qualified candidate should also have excellent analytical and problem solving skills as well as interpersonal skills to interact with customers, team members and upper management; skilled in Incident Response and network security monitoring. Strong writing skills highly desired. Technically proficient in network communication using TCP/IP protocols, system administration knowledge of computer network defense operations (proxy, firewall, IDS/IPS, router/switch). Knowledgeable of Windows, Linux and Cisco operating systems, networking, and information security; Experience with EnCase, Splunk, McAfee NSM, Fidelis, and SourceFire is desirable.

     

     

    EEO Statement

    AbleVets LLC appreciates your interest in our company as a place of employment.  We are proud to be an equal opportunity/affirmative action employer and are committed to hiring and retaining a diverse workforce.  All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, marital status, genetic information, disability, veteran status, or any other protected class.  AbleVets is a VEVRAA Federal Contractor.

    Options

    Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
    Share on your newsfeed