Lead Cyber Threat Analyst with Security Clearance
Apply NowCompany: ManTech International
Location: Springfield, VA 22150
Description:
ManTech seeks a motivated, career and customer-oriented Lead Cyber Threat Analyst to join our team in Springfield, VA. Responsibilities include but are not limited to: * Conduct proactive threat hunts to uncover previously undetected adversary behavior, performing in-depth host and network log analysis, and delivering systematic threat assessments.
* Manage cyber intelligence requirements and focusing cyber intelligence collection efforts. Identifying emerging cyber technologies, capabilities, or weapons which pose a threat to US or Allied systems.
* Produce comprehensive cybersecurity reports, providing sourced and summarized threat intelligence, outlining threat hunt findings and limitations, and presenting recommendations to system owners, cyber defenders, and policy makers.
* Research known adversarial Tactics, Techniques and Procedures (TTPs) to identify foundational components, isolate associated host or network events, and enable threat mitigation, detection, and response.
* Create custom cybersecurity dashboards to monitor host and network activity, enabling rapid identification of successful and unsuccessful intrusion attempts.
* Perform analysis, correlation, and attribution of incidents to Advanced Persistent Threat (APT) groups.
* Perform research and analysis of APT infrastructure and malicious binaries, external cyber threat intelligence reporting and production. Minimum Qualifications: * Bachelor's degree or 4+ additional years of experience in lieu of degree
* 7+ years of cyber experience
* Experience with security technology or discipline such as Incidents and Warnings Management, Cybersecurity Operations, Cybersecurity Engineering
* Knowledge of latest security principles, techniques, and protocols
* IAT Level II (GSEC, Security+, SSCP, or CCNA-Security) certification required or ability to obtain within 6 months of hire Preferred Qualifications: * Ability to use MS Office, SIEM tools, Analytical and Critical Thinking Skills, Interpersonal and People Skills, Oral and Written Communication Skills, Organizational Skills, Project Management Ability, Public Speaking Skills.
* Ability to effectively interact with various levels of senior management is necessary
* Ability to seek out information and data to evaluate, prioritize and formulate best solution or practice
* CNDSP-A (GCIA, GCIH, or CEH) or CNDSP-IR (GCIH, CSIH, or CEH) certification Clearance Requirements: * Must have a current/active TS/SCI w/Polygraph Physical Requirements: * The person in this position must be able to remain in a stationary position 50% of the time. Occasionally move about inside the office to access file cabinets, office machinery, or to communicate with co-workers, management, and customers, via email, phone, and or virtual communication, which may involve delivering presentations.
* Manage cyber intelligence requirements and focusing cyber intelligence collection efforts. Identifying emerging cyber technologies, capabilities, or weapons which pose a threat to US or Allied systems.
* Produce comprehensive cybersecurity reports, providing sourced and summarized threat intelligence, outlining threat hunt findings and limitations, and presenting recommendations to system owners, cyber defenders, and policy makers.
* Research known adversarial Tactics, Techniques and Procedures (TTPs) to identify foundational components, isolate associated host or network events, and enable threat mitigation, detection, and response.
* Create custom cybersecurity dashboards to monitor host and network activity, enabling rapid identification of successful and unsuccessful intrusion attempts.
* Perform analysis, correlation, and attribution of incidents to Advanced Persistent Threat (APT) groups.
* Perform research and analysis of APT infrastructure and malicious binaries, external cyber threat intelligence reporting and production. Minimum Qualifications: * Bachelor's degree or 4+ additional years of experience in lieu of degree
* 7+ years of cyber experience
* Experience with security technology or discipline such as Incidents and Warnings Management, Cybersecurity Operations, Cybersecurity Engineering
* Knowledge of latest security principles, techniques, and protocols
* IAT Level II (GSEC, Security+, SSCP, or CCNA-Security) certification required or ability to obtain within 6 months of hire Preferred Qualifications: * Ability to use MS Office, SIEM tools, Analytical and Critical Thinking Skills, Interpersonal and People Skills, Oral and Written Communication Skills, Organizational Skills, Project Management Ability, Public Speaking Skills.
* Ability to effectively interact with various levels of senior management is necessary
* Ability to seek out information and data to evaluate, prioritize and formulate best solution or practice
* CNDSP-A (GCIA, GCIH, or CEH) or CNDSP-IR (GCIH, CSIH, or CEH) certification Clearance Requirements: * Must have a current/active TS/SCI w/Polygraph Physical Requirements: * The person in this position must be able to remain in a stationary position 50% of the time. Occasionally move about inside the office to access file cabinets, office machinery, or to communicate with co-workers, management, and customers, via email, phone, and or virtual communication, which may involve delivering presentations.