Cyber Threat Analyst in Sierra Vista, AZ at Booz Allen Hamilton Inc.

Date Posted: 6/27/2018

Job Snapshot

Job Description

Job Number: R0024065

Cyber Threat Analyst

Key Role:

Provide technical expertise regarding the defense of military information systems and networks, monitor intrusion detection and security information management systems to discover malicious activity on US Army networks, and initiate computer incident handling procedures to isolate and investigate potential network information system compromises. Perform malware and forensic analysis as part of the incident management process and design and integrate custom rules and reports into military security tools and data collection architectures. Conduct analysis of computer security advisories, current network penetration techniques, and military intelligence threat reports to improve the US Army computer network defense posture. Create whitepapers and briefings to highlight emerging computer security trends to US Army leadership and technical personnel. Perform other duties, as needed to fulfill requirements specified in the contract performance work statement. Provide technical expertise regarding the defense of military information systems and networks. Monitor, administer, and develop signatures for intrusion detection and security information management systems to discover malicious activity on US Army networks.


Basic Qualifications:

-3+ years of experience with network defense tools, including IPS, IDS, HBSS, Proxy, Firewall, ArcSight SIEM, Netflow, SPLUNK, Tanium, or Forensic Toolkit

-3+ years of experience with using and maintaining IP networks and common operating systems and applications, including Linux, Windows, or Microsoft Office products

-Ability to discern the difference between normal events on a network and potential security events

-Secret clearance

-HS diploma or GED

-DoD 8570 Certifications for IAT Level 2 and CSSP Analyst


Additional Qualifications:

-Experience with writing IPS and IDS signatures in Tipping Point, SNORT, SourceFire, or HBSS HIPs

-Knowledge of current computer network threats and trends and vulnerability scanning assessments

-Knowledge of common ports and protocols

-Ability to write technical whitepapers and SOPs, create presentations, and communicate the ideas and concepts being presented clearly

-TS/SCI clearance

-BA or BS degree


Clearance:

Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information; Secret clearance is required.

We’re an EOE that empowers our people—no matter their race, color, religion, sex, gender identity, sexual orientation, national origin, disability, or veteran status—to fearlessly drive change.

DIG100

Your Career is Waiting.

Get job alerts. Learn about new work and upcoming events. Share open roles with friends and colleagues.
Our Talent Network is your opportunity hub.


Get Answers and Access.

Need more information? Find it in our FAQs.

Application already in-process? Log in to keep going.