Defensive Cyber Threat Analyst Senior
Click the Facebook, Google+ or LinkedIn icons to share this job with your friends or contacts. Click the Twitter icon to tweet this job to your followers. Click the link button to view the URL of the job, which then can be copied and pasted into an e-mail or other document.
Fort Huachuca, AZ 85670
Performs all procedures necessary to ensure the safety of information systems assets and to protect systems from intentional or inadvertent access or destruction.
+ The Cyber Threat Analyst, Sr. will research and provide insight and intelligence on new and existing cyber threats.
+ Construct and exploit threat intelligence to detect, respond, and defeat advanced persistent threats (APTs)
+ Fully analyze network and host activity in successful and unsuccessful intrusions by advanced attackers
+ Manage, share, and receive intelligence on APT adversary groups
+ Generate intelligence from their own data sources and share it accordingly
+ Leverage intelligence to better defend against and respond to future intrusions.
+ Conduct advanced threat hunt operations using known adversary tactics, techniques and procedures as well as indicators of attack in order to detect adversaries with persistent access to the enterprise.
+ Create and add custom signatures, to mitigate highly dynamic threats to the enterprise using the latest threat information obtained from multiple sources.
+ Conduct initial dynamic malware analysis on samples obtained during the course of an investigation or hunt operation in order to create custom signatures
+ Develop and produce reports on all activities and incidents to help maintain day to day status, develop and report on trends, and provide focus and situational awareness on all issues. Reports shall be produced on a daily, weekly, monthly, and quarterly basis capturing and highlighting status, preparedness, and significant issues.
+ Correlate data from intrusion detection and prevention systems with data from other sources such as firewall, web server, and DNS logs.
+ Notify the management team of significant changes in the security threat against the government networks in a timely manner and in writing via established reporting methods.
+ Coordinate with appropriate organizations within the intelligence community regarding possible security incidents. Conduct intra-office research to evaluate events as necessary, maintain the current list of coordination points of contact.
+ Review assembled data with firewall administrators, engineering, system administrators and other appropriate groups to determine the risk of a given event.
Bachelors Degree in Computer Science or a related technical discipline, or the equivalent combination of education, professional training or work experience.
8-10 years of related experience in data security administration.
Certifications: IAT III (e.g. CASP, CISSP or CISA); CSSP-Analyst (e.g. CEH, GCIA, GCIH); Computing Environment Certification
For more than 50 years, General Dynamics Information Technology has served as a trusted provider of information technology, systems engineering, training and professional services to customers across federal, state, and local governments, and in the commercial sector. Over 40,000 GDIT professionals deliver enterprise solutions, manage mission-critical IT programs and provide mission support services worldwide. GDIT is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status, or any other protected class.
Number of Positions2
Job FunctionInformation Technology
Security Clearance LevelTop Secret/SCI
Full/Part TimeFull Time