EverWatch

Cyber Threat Intelligence Analyst

Job Locations US-MD-Annapolis Junction
Posted Date 7 months ago(4/22/2024 5:09 PM)
ID
2024-3092
# of Openings
1
Category
Cyber

Job Title

Cyber Threat Intelligence Analyst

Overview

EverWatch is a government solutions company providing advanced defense, intelligence, and deployed support to our country’s most critical missions.  We are a full-service government solutions company. Harnessing the most advanced technology and solutions, we strengthen defenses and control environments to preserve continuity and ensure mission success.

 

EverWatch is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex (including pregnancy), gender identity, sexual orientation, national origin, age (40 or older), disability, genetic information, citizenship or immigration status, and veteran status or any other factor prohibited by applicable law.

EverWatch employees are focused on tackling the most difficult challenges of the US Government. We offer the best salaries and benefits packages in our industry - to identify and retain the top talent in support of our critical mission objectives. 

Responsibilities

As a cyber threat intel analyst, you know the key to detecting and deterring malicious activity is quality risk-based intel that maps to a tactical behavior. At EverWatch, you can apply your expertise to investigate the most pressing cyber threats impacting the DoD and our Nation. This is your chance to take on the adversary’s perspective, identify their motivations, and recommend ways to harden systems, reduce their attack surface, and thwart malicious actors.

 

As a cyber threat intelligence analyst on our team, you’ll be trusted to collect, document, assess, and analyze raw cyber threat information using tools, technologies, and industry standards like threat intel platforms, and intelligence collection platforms. You’ll help conduct strategic assessments on systems and networks and provide tactical analyses and influential recommendations for network operation. You’ll be the key to discovering and correlating timely threat intel and deciphering what represents a real risk, and you’ll play an active role in incident analysis, adversarial research, packet analysis, dynamic malware analysis, and finished intelligence products to inform policymakers, cyber operators, and mission area leadership.


EverWatch is committed to creating an environment where you not only keep pace with the industry but propel it forward. With access to academic programs, certifications, and opportunities to use expert tradecraft, we’ll continuously invest in you so you can create the career you want as you grow. 

Qualifications

Qualifications:

  • Experience with Cyber Threat Intelligence
  • Experience in collaborating with multiple internal and external stakeholders to gather data and intelligence, analyze, vet, and enrich the intelligence, create joint reports, and share with entities 
  • Experience with Threat Intel Platforms (TIP) 
  • Experience with a Security Operations Center (SOC) 
  • Knowledge of vulnerabilities and attacks 
  • Knowledge of cyber threats, open-source research, and nation-state actors 
  • Ability to write succinct briefings, presentations, and reports to convey analysis, threat trends, threat actor profiles, indicator bulletins, vulnerability details, and defensive strategies
  • TS/SCI clearance with a polygraph
  • Bachelor’s degree

 

Nice If You Have:

  • Experience working in a fast-paced, cyber threat or analysis center, promptly responding to critical mission needs as needed 
  • Experience in Splunk and using query searches 
  • Experience with packet capturing tools, including Wireshark 
  • Knowledge of how to enrich threat intelligence, including performing DNS lookups and querying existing threat repositories and new sources for additional data correlation 
  • Ability to adopt adversary perspective, analyzing targeted cyberspace to predict adversary courses of action in support of tactical to operational planning efforts 
  • IAT II or IAT III Certification, including CISSP, CSSP, or SEC+

 

Clearance Level

TS/SCI polygraph

Job Locations

US-MD-Annapolis Junction

Skills

TechELINT, osint, SIGINT, TDNA, cyber security

Options

Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
Share on your newsfeed