Cyber Threat Intel Engineer III
| Company | CACI |
|---|---|
| Location | Springfield, VA, USA, St. Louis, MO, USA |
| Salary | $75200 – $158100 |
| Type | Full-Time |
| Degrees | Master’s |
| Experience Level | Mid Level, Senior |
Requirements
- Have experience with Cyber Threat Intelligence
- Be able to work independently and with minimal supervision
- Be proactive in performing assigned job duties
- Be an excellent communicator
- Be a team player and facilitate a collaborative work environment
- Have DOD 8570.01 IAT II certification and be willing to obtain a CSSP Analyst certification within 120 days of joining the team.
Responsibilities
- Conduct analysis and research on emerging threats and intelligence by collecting and analyzing commercial and government cyber intelligence reports to provide actionable cyber intelligence to support incident response, vulnerability management, and other cybersecurity initiatives.
- Monitor and assess the global threat landscape, including threat actors, malware, hacking techniques that may impact NGA systems and networks
- Collaborate with internal and external stakeholders, to gather and share relevant threat intelligence
- Develop and maintain threat profiles and reports to enhance detection and response capabilities
- Continuously update and refine existing threat intelligence processes and methodologies to ensure the organization remains at the forefront of cyber defense
- Develop and provide to the Government and other Contract Services regular and ad hoc reports, briefs, documents, diagrams, and other products as required to ensure stakeholders are aware of and understand cybersecurity threats and the risk posed to NGA by the threat
- Identify and assess the relevance and effectiveness of signatures and indicators of compromise based on intelligence
- Develop, review, and when properly authorized by the Government, disseminate NGA CSOC developed Cyber Intelligence products to internal to NGA and external DoD and IC partners, to include but not limited to threat intelligence reports, significant cyber activity reports, incident investigation reports, and other products as directed by the Government
- Analyze patterns of behavior to identify and determine adversary intent and provides this analysis to the Government in a document, briefing and/or other products as required
- Develop comprehensive threat models of adversary activity and provide this analysis to the Government in a formal report, briefing, or other product as required
- Coordinate with NGA entities, to include but not limited to Cyber Counterintelligence, Insider Threat, and Red/Blue Team to perform adversary profiling and threat modeling
- Document all work in the authorized ticketing system with a level of detail sufficient to enable the Government and other services to reconstruct the analyst’s analysis process
- Provide input to the daily CSOC Significant Activity Report, the daily CSOC Operations Update, and the Weekly CSOC Status Report
Preferred Qualifications
- Master’s Degree
- Security Operations Center (SOC) experience