Cyber Intelligence Analyst

This is a fully remote position, open to applicants in District of Columbia, +1 more state.

📋 Description

• Support a government contract remotely for a client based in Washington, DC.

• Work collaboratively with teams to produce reports and assess threats.

• Apply threat intelligence to conduct technical analyses of enterprise assets.

• Develop and deliver Cyber Threat Intelligence products and white papers to senior leadership.

⛳️ Requirements

• Must possess an active TS/SCI security clearance.

• Have three (3) to five (5) years of experience in an intelligence-related role.

• Familiarity with the cyber intelligence lifecycle is necessary.

• Understanding of MITRE ATT&CK and D3FEND frameworks is required.

• Proficient in creating queries and generating reports.

• Experience in concepts and implementation of Cyber Threat Intelligence is essential.

• Capable of using threat intelligence for technical analysis of enterprise assets.

• Knowledge of the Diamond Model of Intrusion Analysis and reporting based on that analysis is needed.

• Understanding of cyber intrusion kill chain concepts and their implementation is a must.

• Experience enhancing monitoring and detection capabilities with cyber threat intelligence data.

• Ability to analyze and synthesize data from various sources for threat briefings.

• Awareness of the current landscape regarding cyber adversary tactics and trends is important.

• Knowledge of threat actor Indicators of Compromise (IOC) and Indicators of Attack (IOA) is required.

• Capacity to produce trend reports on threat actors' TTPs in relation to the client's mission.

• Familiarity with vulnerability management, cyber threat hunting, penetration testing, security operations, and incident response processes is beneficial.

• Proven experience in creating Cyber Threat Intelligence products and white papers that are easily understood for senior leadership presentations.

• Experience developing threat matrices to assist with Security Control Assessment Reporting.

• A minimum of CySA+ or GCIA certification is required, along with one of the following certifications: CFR, Network+, Security+, CEH.

🏝️ Benefits

• M9 Benefits - https://m9solutions.com/why-join-m9/#our-benefits