Cyber Defense Analyst, Lead in Herndon, VA at Booz Allen Hamilton Inc.

Date Posted: 11/11/2018

Job Snapshot

Job Description

Job Number: R0032443

Cyber Defense Analyst, Lead

Key Role:

Monitor, analyze, detect, and respond to Cyber events and incidents. Support dynamic Cyber defense and deliver operational effects, including intrusion detection and prevention and situational awareness and data spillage. Maintain a secure Cyber environment through configuration management, administration, and response actions. Configure and analyze network defense systems, including IDS/IPS, SIEM, and firewalls. Provide team leadership for Cyber defense operations teams and complex projects. Build and deliver training modules and platforms to train and develop team personnel.

Basic Qualifications

-5+ years of experience with working in a Cyber defense operations team, hunting advanced adversaries, performing log analysis, including using Splunk or similar tools, packet capture analysis, and malware analysis

-Experience with Windows file system and registry, and *NIX operating systems and command line tools

-Experience with using and writing custom signatures for IDS

-Experience in creating advanced SIEM queries and dashboards

-Experience with scripting or programming, including Perl, Python, C, C++, C#, Java, Bash, Shell, or batch

-Experience in leading Cyber defense operations teams, complex projects and workstreams, and junior staff training initiatives

-Knowledge of typical behaviors of malware and malware authors and how common protocols and applications work at the network level, including DNS, HTTP, and SMB

-Ability to obtain a security clearance

-BA or BS degree

Additional Qualifications:

-MA or MS degree

-SANS GIAC Certified Incident Handler (GCIH), SANS GIAC Certified Forensic Analyst (GCFA), or SANS GIAC Certified Forensic Examiner (GCFA)


Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information.

We’re an EOE that empowers our people—no matter their race, color, religion, sex, gender identity, sexual orientation, national origin, disability, or veteran status—to fearlessly drive change.


Your Career is Waiting.

Get job alerts. Learn about new work and upcoming events. Share open roles with friends and colleagues.
Our Talent Network is your opportunity hub.

Get Answers and Access.

Need more information? Find it in our FAQs.

Application already in-process? Log in to keep going.