Cyber Threat Network Analyst, Mid in Redstone Arsenal, AL at Booz Allen Hamilton Inc.

Date Posted: 7/30/2018

Job Snapshot

Job Description

Job Number: R0029935

Cyber Threat Network Analyst, Mid

Key Role:

Perform Cyber threat network analysis, including the analysis of network traffic from multiple organizations’ networks, initial analysis of issues resulting from system or network compromise, identification and execution of mitigation strategies that will contribute to the availability of information resources, data tracking and reporting, and other duties, as directed by the Cyber leadership team. Identify and respond to issues, based on data from network monitoring tools, event logs, or other data sources and escalating high priority issues, as needed. Record activities in accordance with established reporting procedures to facilitate the collection of performance metrics for use in process improvement.

Basic Qualifications:

-Experience with network architecture concepts, common ports and protocols, and network monitoring tools

-Experience with analytical tools, including Network Intrusion Detection System (NIDS), Host-based Intrusion Detection System (HIDS), NetFlow analysis, and PCAP analysis

-Experience with collecting, analyzing, and interpreting qualitative and quantitative data for the purposes of documenting results and analyzing findings to provide finished products

-Experience with Cyber, defensive or offensive Cyber operations, information operations or information warfare, or topical Cyber expertise

-Experience with Microsoft Office, including Excel, Outlook, PowerPoint, and Word

-Knowledge of network hardware and configuration, including routers and switches

-Ability to develop specific expertise, discern patterns of complex threat actor behavior, and communicate a comprehension of current and developing Cyber threats

-TS/SCI clearance required

-HS diploma or GED and 6+ years of experience in the military or civilian sector or BA or BS degree and 2+ years of experience in the military or civilian sector

-DoD Baseline Certification, including CCNA+, Network+, Security+, CEH, or completion of the Joint Cyberthreat Analysis Course (JCAC)

Additional Qualifications:

-Experience with working in a Security Operations Center (SOC)

-Experience with performing traffic analysis on packet-switched networks for signs of intrusions or anomalies

-Experience with analytic tools, including Augury, SPLUNK, TAC, Palantir, Shodan, and Analyst Notebook preferred

-Experience in collaborating and coordinating with intelligence community partners on Cyber issues and topics

-Experience with working as a penetration tester a plus

-Ability to write finished products based on highly technical subject matter and analysis for dissemination to a less technical or non-technical audience

-Possession of excellent oral and written communication skills, including briefing to seniors and agency groups on a regular basis

-Possession of excellent product development and review skills to convert technical data into easily digestible finished reports


Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information; TS/SCI clearance is required.

We’re an EOE that empowers our people—no matter their race, color, religion, sex, gender identity, sexual orientation, national origin, disability, or veteran status—to fearlessly drive change.

Your Career is Waiting.

Get job alerts. Learn about new work and upcoming events. Share open roles with friends and colleagues.
Our Talent Network is your opportunity hub.

Get Answers and Access.

Need more information? Find it in our FAQs.

Application already in-process? Log in to keep going.