Cyber Threat Hunter Analyst
Company: Leidos Inc
Location: Ashburn
Posted on: January 25, 2023
|
|
Job Description:
Description Job Description:The Leidos Intelligence Division is
seeking a Cyber Threat Hunter Analyst to support a highly visible
contract. The Department of Homeland Security (DHS), Security
Operations Center (SOC) Support Services is a US Government program
responsible to monitor, detect, analyze, mitigate, and respond to
cyber threats and adversarial activity on the DHS Enterprise. The
DHS SOC has primary responsibility for monitoring and responding to
security events and incidents detected at the Trusted Internet
Connection (TIC) and Policy Enforcement Point (PEP) and is
responsible for directing and coordinating detection and response
activities performed by each Component SOC. Direction and
coordination are achieved through a new shared DHS incident
tracking system and other means of coordination and
communication.The ideal Cyber Threat Hunter is process driven,
curious, and enjoys identifying patterns and anomalies in data that
are not immediately obvious.Primary Responsibilities* Create Threat
Models to better understand the DHS IT Enterprise, identify
defensive gaps, and prioritize mitigations* Author, update, and
maintain SOPs, playbooks, work instructions* Utilize Threat
Intelligence and Threat Models to create threat hypotheses* Plan
and scope Threat Hunt Missions to verify threat hypotheses*
Proactively and iteratively search through systems and networks to
detect advanced threats* Analyze host, network, and application
logs in addition to malware and code* Prepare and report risk
analysis and threat findings to appropriate stakeholders* Create,
recommend, and assist with development of new security content as
the result of hunt missions to include signatures, alerts,
workflows, and automation.* Coordinate with different teams to
improve threat detection, response, and improve overall security
posture of the EnterpriseBasic QualificationsPositions at this
career level typically require BS degree or equivalent and 12-15
years of prior relevant experience. Additional experience and Certs
may be considered in lieu of a degree.All Department of Homeland
Security CBP SOC employees are required to favorably pass a 5-year
(BI) Background Investigation. Experience in the areas of incident
detection and response, malware analysis, or computer
forensics.Must have one of the following certifications:*SANS GCIH
(GIAC Certified Incident Handler)*SANS GCFA (GIAC Certified
Forensic Analyst)*SANS GCIA (GIAC Certified Intrusion Analyst)*SANS
GNFA (GIAC Network Forensic Analyst)*SANS GWAPT (GIAC Web
Application Pentester)*SANS GPEN (GIAC Penetration
Tester)*Offensive Security Certified Professional (OSCP)Preferred
Qualifications*Expertise in network and host-based analysis and
investigation*Demonstrated experience planning and executing threat
hunt missions*Understanding of complex Enterprise networks to
include routing, switching, firewalls, proxies, load
balancers*Working knowledge of common (HTTP, DNS, SMB, etc)
networking protocols*Familiar with operation of both Windows and
Linux based systems*Proficient with scripting languages such as
Python or PowerShell*Familiarity with Splunk Search Processing
Language (SPL) and/or Elastic Domain Specific Language
(DSL)*Demonstrated experience triaging and responding to APT
activities.*Experience working with various technologies and
platform such as AWS, Azure, O365, containers, etc.*Understanding
of current cyber threat landscape, the different tactics commonly
used by adversaries and how you would investigate, contain and
recover against their attacks.Pay Range:Pay Range $118,300.00 -
$182,000.00 - $245,700.00The Leidos pay range for this job level is
a general guideline onlyand not a guarantee of compensation or
salary. Additional factors considered in extending an offer include
(but are not limited to) responsibilities of the job, education,
experience, knowledge, skills, and abilities, as well as internal
equity, alignment with market data, applicable bargaining agreement
(if any), or other law.
Keywords: Leidos Inc, Germantown , Cyber Threat Hunter Analyst, Professions , Ashburn, Maryland
Click
here to apply!
|