• Cyber Threat Intelligence Manager

    Job Locations US-DC | US-Martinsburg, WV
    Job ID 2018-1816
  • Overview

    AbleVets, LLC is a fast-growing Service Disabled Veteran Owned Small Business (SDVOSB) providing healthcare information technology services and resources to help the Veterans Affairs (VA) and Department of Defense (DoD) improve the lives of the people they serve. AbleVets has an opportunity for an experienced Cyber Threat Intelligence Manager to support our VA customer. The position is located on-site at the customer’s facility.

    Essential Functions and Job Responsibilities

    The successful candidate must have a minimum of 5 years of professional experience managing a team of cybersecurity professionals practicing two or more of the following disciplines: Cyber Threat Intelligence, Forensics, Incident Response, Cybersecurity-related software development, and/or Cybersecurity Compliance including Penetration Testing.This candidate must be well-versed in cybersecurity operations, cyber security tools, and Open Source information gathering from public and private sources.The candidate will provide operational support on expert level analysis regarding Advanced Persistent Threats (APTs), Indicators of Compromise (IOC), Intelligence Gathering and sharing this information with other formalized partners. Duties and responsibilities may include, but are not limited to:

    • The creation and dissemination of a wide range of cybersecurity intelligence reports to the Department of Veteran Affairs.
    • Gather, extract, and disseminate open source intelligence (OSINT) on threat actors targeting the VA, health care industry, government agencies in general, as well as public sector
    • Work with industry partners to gather and share intelligence. Apply intelligence to the VA network and systems to proactively identify potential cyber threats
    • Provide proactive event monitoring/event management/configuration of the following security tools for targeted threats and malicious activity including but not limited to: Splunk, Palo Alto Networks, McAfee EPO, Cisco IronPort, NetScout, Sourcefire Defense Center and BigFix
    • Review audit logs and identify any unusual or suspect behavior
    • Provide targeted attack detection and analysis, including the development of custom signatures and log queries and analytics for the identification of targeted attacks
    • Develop and execute custom scripts to identify host-based indicators of compromise
    • Provide advanced technical capabilities to senior leadership, including Big Data Analytics, and Predictive Intelligence
    • Provide proactive APT hunting, incident response support, and advanced analytic capabilities
    • Profile and track APT actors that pose a threat to the organization in coordination with threat intelligence support teams
    • Support the incident response process by providing advanced analysis services when requested to include recommending containment and remediation processes, independent analysis of security events, and reporting of identified incidents to Incident Handling (IH)
    • Provide all VA cyber task areas with actionable intelligence and serve as the threat dissemination hub


    • Bachelor’s degree or higher in Information Technology or other engineering or technical discipline and at least 10 years of related IT experience. Four years of relevant experience may be substituted with professional certification (e.g., CISSP, GREM, or GCIH)
    • Certification (or ability to obtain certificationwithin120 days at the company's expense) in at least one of the following areas: 1) Certified Counterintelligence Threat Analyst (CCTA), 2) Certified Cyber Intelligence Professional (CCIP), or 3) Certified Cyber Investigations Expert (CCIE)
    • Experience in cyber investigations and information gathering techniques, required
    • Experience briefing C-level executives on current threat landscapes with future analytic predictions
    • In depth understanding of NIST SP 800-61, US CERT and Office of Management and Budget (OMB) standards
    • Experience interpreting and implementing cyber security regulations
    • Excellent verbal communication skills
    • Outstanding written skills for preparing reports and briefings
    • Excellent analytical and problem-solving skills
    • Ability to obtain a Public Trust clearance

    EEO Statement

    AbleVets LLC appreciates your interest in our company as a place of employment.  We are proud to be an equal opportunity/affirmative action employer and are committed to hiring and retaining a diverse workforce. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, marital status, genetic information, disability, veteran status, or any other protected class.  AbleVets is a VEVRAA Federal Contractor


    Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
    Share on your newsfeed