Cyber Threat Analyst Intern in Blue Ash, OH at Booz Allen Hamilton

Date Posted: 1/25/2018

Job Snapshot

Job Description

Job Number: R0022186

Booz Allen Hamilton has been at the forefront of strategy and technology for more than 100 years. Today, the firm provides management and technology consulting and engineering services to leading Fortune 500 corporations, governments, and not-for-profits across the globe. Booz Allen partners with public and private sector clients to solve their most difficult challenges through a combination of consulting, analytics, mission operations, technology, systems delivery, cybersecurity, engineering and innovation expertise.


Cyber Threat Analyst Intern

Key Role:

Participate as a member of the 24x7x365 Threat Intelligence Center (TIC) responsible for identifying malicious threat actors, thwarting hackers, preventing data breaches, acting as a security advocate for clients, performing security threat analysis, and working with clients to provide remediation strategies and guidance. Perform daily incident detection and response operations. Collect host–based artifacts and perform forensic analysis to determine if the asset has been compromised. Identify compromised computers using logs, live response, and related computer–centric evidence sources. Provide peer review of both signatures for development and resulting threat detections. Provide input on new detection strategies and remediation guidance to clients. Form accurate and precise real–time host–centric analysis, including live response and digital forensics, malware analysis, and log–centric (SIEM) analysis, as needed. Analyze and assess security incidents and escalate to client resources, appropriate teammates, or internal teams for additional assistance. Present analysis to other analysts for review, fine tuning, and feedback, work with the threat intelligence team to fine tune signatures, validate and characterize threats, collaborate with others when needed, and assist the incident response team with the incident response process.


Basic Qualifications:

-Ability to document findings to report and escalate Cyber incidents to customers and management clearly and concisely

-Ability to work well both independently and in a team environment

-Ability to take ownership of analytic work and provide constructive feedback to others.

-Scheduled to obtain a BA or BS degree in Winter 2018 or Spring 2019


Additional Qualifications

-Experience with nNetwork–centric analysis (NSM)

-Experience with deploying and scripting detection solutions in Bro–IDS

-Experience with hos–based detection and prevention suites, including McAfee EPI, OSSEC, Yara, MIR, CarbonBlack, or Tanium

-Experience with IT infrastructure, including system and application vulnerabilities and exploitation and operating systems, including Windows, *Nix, and Mac

-Knowledge of Spunk and other SIEM technologies

-Knowledge of scripting and programming in Python, Perl, or C

-Knowledge of APT, Cyber Crime, and other associated tactics

-Possession of critical thinking, problem–solving, and analytical skills

-Possession of excellent oral and written communication skills

-BA or BS degree in Cybersecurity, CS, or IT preferred

Integrating a full range of consulting capabilities, Booz Allen is the one firm that helps clients solve their toughest problems by their side to help them achieve their missions.  Booz Allen is committed to delivering results that endure.

We are proud of our diverse environment, EOE, M/F/Disability/Vet.

Your Career is Waiting.

Get job alerts. Learn about new work and upcoming events. Share open roles with friends and colleagues.
Our Talent Network is your opportunity hub.


Get Answers and Access.

Need more information? Find it in our FAQs.

Application already in-process? Log in to keep going.