Provide support in the detection, response, mitigation, and reporting of cyber threats affecting
our networks
• Maintain an understanding of the current vulnerabilities, response, and mitigation strategies used
in cyber security operations
• Produce reports and briefs to provide an accurate depiction of the current threat landscape and
associated risk. Accomplish this through the use of customer, community, and open source
reporting
• Provide analysis for correlated information sources
• Facilitate the posturing itself to aggressively investigate cyber activity targeting customer
information and its information infrastructure
• Assist our training department in the education of staff on the cyber threat
• Liaison with other government cyber threat analysis entities, such as intra-agency and interagency Cyber Threat Working Groups
• Maintaining proficiency in the use and production of visualization charts, link analysis diagrams,
and database queries
• Analyze and report cyber threats as well as assist in deterring, identifying, monitoring,
investigating and analyzing computer network intrusions
• Additional duties may include providing intrusion support to high technology investigations in the
form of computer evidence seizure, computer forensic analysis, data recovery, and network
assessments
• Meet and maintain our required Information Assurance training compliance
Clearance Requirement:
• Must be able to receive a security clearance, that is to say to comply with a procedure allowing
access to protected information.
What you’ll need to excel in the role:
• 3 - 8 years of related experience with a Computer Engineering Bachelor’s degree or relevant OR 5
years of experience and a Master’s Degree
• Hands-on experience in the detection, response, mitigation, and/or reporting of cyber threats
affecting our networks and one or more of the following:
o Experience in computer intrusion analysis and incident response
o Experience with Intrusion detection
o Computer network surveillance/monitoring
o Knowledge and understanding of network protocols, network devices, multiple operating
systems, and secure architectures
o Experience in computer evidence seizure, computer forensic analysis, and data recovery
o Computer network forensics
o System log analysis
• Experience with current cyber threats and the associated tactics, techniques, and procedures used
to infiltrate computer networks
• Current experience with network intrusion detection and response operations (Protect, Defend,
Respond and Sustain methodology)
• Current experience with cyber threats and the associated tactics, techniques, and procedures
used to infiltrate computer networks
• Demonstrated ability to document processes
• The ability to respond to crises objectively
• Proficiency with MS Office Applications
• Must be able to work collaboratively across agencies and physical locations
Desired Skills:
• Computer Forensics experience
• Malware reverse engineering experience
• Experience with Risk and Opportunity management
• Scripting experience (python, perl etc…)
• Experience with process development and deployment
• Prior experience with data visualization products such as Analyst Notebook is desired.
• Prior experience with Splunk
• Prior experience working in one of the following highly desired:
o Security Operations Center (SOC/NOSC)
o Computer Emergency Response Team (CERT/CIRT)
o DOD/FED Cyber Intel organization
o DCIO/MCIO, with Cyber Counterintelligence focus
Desired Certifications:
• Security industry specific certifications are a plus (CEH, GCIH, GCFA, OSCP etc.

• Incident Management
• Support
• Cybersecurity