Cyber Threat Intel Lead (CBP)
Task Order: TO-CBP
Req ID: Cyber Threat Intel Lead (CBP)
Tier: Tier 4
LCAT: Subject Matter Expert – Mid
Location: Reagan Building, DC
Shift: Regular Days (non-shift work)
The Threat Intel Lead will need a strong cyber security background with experience in: host-based and network based forensics related to the identification of advanced cyber threat activities, intrusion detection, incident response, malware analysis, and security content development (e.g., signatures, rules etc.); and cyber threat intelligence.
Will be responsible for developing scripts to support cyber threat detection that outputs results in a variety of formats, such as VB scripts, Python, C++, HTML, XML or other type most appropriate for the task.
Will conduct cyber threat analysis, identifying mitigation and/or remediation courses of action; developing actionable intelligence used to protect organizational IT assets; and trending cyber threat metrics for leadership situational awareness.
Responsible for maintaining a comprehensive understanding of the cyber threat landscape, including identifying and analyzing cyber threats actors and/or activities to enhance cybersecurity posture of an the organization’s IT operating environment.
The candidate must currently possess a Top Secret/SCI Clearance. In addition to clearance requirement, all CBP personnel must have a current or be able to favorably pass a 5 year background investigation (BI).
BS in IT related field or higher and 8+ years’ experience in an information technology field with a minimum of 7 years of experience as a Tier III senior cyber security analyst performing intelligence analysis, collection management, and technical analysis.
2 years recent experience with host-based and network based security monitoring using cybersecurity capabilities.
Must be experienced developing scripts to support cyber threat detection that outputs results in a variety of formats, such as VB scripts, Python, C++, HTML, XML or other.
Ability to work independently with minimal direction; self-starter/self-motivated
Certified Information System Security Professional (CISSP).