NikSoft

Senior Threat Intelligence Analyst (Cyber Threat Hunter)

US-VA-Merrifield
6 days ago
ID
2017-1251
# of Openings
1

Overview

NikSoft Systems Corporation is a recognized Information Technology solutions provider. Founded in 1998 and based in Reston, Virginia, NikSoft is a CMMI Level 3 Certified company with an established reputation for excellence and on-time delivery with a consistently high customer satisfaction rating from its Federal Government and private consulting contracts.

Responsibilities

Seeking a professional and experienced Senior Threat Intelligence Analyst to join our team. Serve as a Cyber threat hunter and review security events to identify and prioritize potential threats and identify trends. Configure security solutions to identify threats.  Complete and deliver complex security reports to management in business terms. Analyze available data sources, security tools, and threat trends and lead security monitoring and analysis techniques to identify attacks against the enterprise. Create correlations and other logic to identify attackers and defend the network against advanced attacks.

  • Keeps current on evolving and emerging technologies that may involve multi-disciplined intelligence and/or evoke new threats and interfaces with other organizations to maintain situational awareness, stay ahead of future threats and leverage best practices.
  • Applies expert knowledge of the nexus between Cyber Counter-Intelligence and other Intelligence operations (i.e., How/ Where/ When Cyber Counter-Intelligence fits in, etc.).
  • Analyzes and synthesizes information with other relevant data sources to develop a common operational picture of criminal and foreign threats to information infrastructure.
  • Fuses computer network attack analyses with criminal and counterintelligence investigations and operations, promotes joint operations, and shares best practices with other members of the intelligence community.

Qualifications

  • Over 7 years’ experience working in the areas of (intelligence, information security, network forensics, insider threat).  

  • Bachelors in computer science, international relations, information security, or a related field or equivalent experience. Master’s degree is preferred.

  • Certification in one or more of; CISSP, CISA, CISM, GIAC, or RHCE.

  • Experience with creating automated log correlations in Splunk tool to identify anomalous and potentially malicious behavior.

  • Experience with Netflow or PCAP analysis.

  • Knowledge of typical behaviors of both malware and threat actors and how common protocols and applications work at the network level, including DNS, HTTP, and SMB

  • Strong Linux configuration and administration knowledge 

  • Basic networking and firewall knowledge to conduct hunt activities 

  • Demonstrable experience with Security Operation tools inclusive of products from Splunk Enterprise Security (ES), FireEye, Looking Glass, Intel, Endgame, StealthWatch, RSA, Tanium

 

BENEFITS:

 

NikSoft’s competitive benefits program includes comprehensive medical and dental care, matching 401K, paid time off, flexible spending accounts, disability coverage, and other benefits that help provide financial protection for you and your family.

 

 

NikSoft Systems Corp is fully committed to the concept and practice of equal opportunity and affirmative action in all aspects of employment.  NikSoft is an EOE M/F/Disability/Veteran employer. For more information about our other openings, please visit www.niksoft.com

Options

Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
Share on your newsfeed