
Cyber Intelligence Analyst
Posted 6 hours ago

Posted 6 hours ago
This is a fully remote position, open to applicants in District of Columbia, +1 more state.
• Support a government contract remotely for a client based in Washington, DC.
• Work collaboratively with teams to produce reports and assess threats.
• Apply threat intelligence to conduct technical analyses of enterprise assets.
• Develop and deliver Cyber Threat Intelligence products and white papers to senior leadership.
• Must possess an active TS/SCI security clearance.
• Have three (3) to five (5) years of experience in an intelligence-related role.
• Familiarity with the cyber intelligence lifecycle is necessary.
• Understanding of MITRE ATT&CK and D3FEND frameworks is required.
• Proficient in creating queries and generating reports.
• Experience in concepts and implementation of Cyber Threat Intelligence is essential.
• Capable of using threat intelligence for technical analysis of enterprise assets.
• Knowledge of the Diamond Model of Intrusion Analysis and reporting based on that analysis is needed.
• Understanding of cyber intrusion kill chain concepts and their implementation is a must.
• Experience enhancing monitoring and detection capabilities with cyber threat intelligence data.
• Ability to analyze and synthesize data from various sources for threat briefings.
• Awareness of the current landscape regarding cyber adversary tactics and trends is important.
• Knowledge of threat actor Indicators of Compromise (IOC) and Indicators of Attack (IOA) is required.
• Capacity to produce trend reports on threat actors' TTPs in relation to the client's mission.
• Familiarity with vulnerability management, cyber threat hunting, penetration testing, security operations, and incident response processes is beneficial.
• Proven experience in creating Cyber Threat Intelligence products and white papers that are easily understood for senior leadership presentations.
• Experience developing threat matrices to assist with Security Control Assessment Reporting.
• A minimum of CySA+ or GCIA certification is required, along with one of the following certifications: CFR, Network+, Security+, CEH.
• M9 Benefits - https://m9solutions.com/why-join-m9/#our-benefits
Keep IT Simple
Inovalon
SimSpace
GAIN
Get handpicked remote jobs straight to your inbox weekly.