eGlobalTech

  • Cyber Tactical Threat Intelligence (TTI) Analyst

    Type
    Regular Full-Time
    US Citizen Required
    Yes
    Job Location
    US-MD-Bethesda
    Active Security Clearance Required
    Secret
    Status
    Current
    Clearance Status
    Active
  • About the Role

    GlobalTech, one of Washington DC's Fastest growing technology firms, is looking for a Cyber Tactical Threat Intelligence (TTI) Analyst to work closely with a Security Management Center (SMC) and the Computer Incident Response Team (CIRT) to identify rapidly perishable information of intelligence value.

    Responsibilities

    The ideal candidate will work as part of a broader team of intelligence assets, feeding operational and strategic components the necessary indicators to pivot from, to develop threat intelligence reporting.

    Required Qualifications

    • Strong understanding of indicators of compromise (IOC) and highly granular tools, techniques, and procedures
    • Ability to coordinate with and articulate to the client how an adversary deploys and utilizes their capabilities
    • General knowledge and understanding of host based artifacts generated during exploitation and installation
    • Strong understanding of net-flow and the ability to identify unusual activity occurring on the network
    • Works well in team setting to coordinate and support operational and strategic intelligence counterparts
    • Strong understanding of malicious adversaries, threat groups, and campaigns
    • Ability to produce intelligence reporting and threat assessments
    • Ability to analyze, articulate, coordinate, and support threat remediation actions to client and client staff
    • Utilize structured analytic techniques to develop tailored intelligence products and provide threat warning notifications to our client’s decision-makers, regionally and globally
    • Gather and analyze data to facilitate improvements in the methodologies, tools and techniques to enable the team to scale and optimize operations to mitigate potential risk
    • Advise client’s managers on cybersecurity events; determines the nature and scope of the event/incident, and classifies the severity and priority of the incident

    Certifications:

    • Certified Network Defender (CND)
    • GIAC Continuous Monitoring (GMON)
    • CompTIA Network +

    Desired Qualifications

    • Strong understanding and experience with Splunk, Nessus, and other network monitoring tools
    • Knowledge and understanding of intelligence trade-craft, processes, and tools to perform open source research and analysis, as well as at a higher level
    • Strong understanding of IOCs and collection methods
    • Experience working with or for Federal agencies

    About Us

    Founded in 2004, eGlobalTech (eGT) is a leading management and IT consulting firm in the Washington, D.C. metropolitan area. Our focus is to provide the public sector with innovative solutions, leveraging cutting-edge tools and methodologies to meet the Government’s most pressing business needs. To achieve this objective, our core practice areas – strategy, IT solutions development, cyber security, and cloud computing – are integrated to provide clients with comprehensive end-to-end results. This integration enables our highly motivated teams to thrive in a culture that encourages out-of-the-box thinking, collaboration and an environment where you can excel. For more information, please visit our website at www.eglobaltech.com.

     

    Equal Employment Opportunity:

     

    eGlobalTech is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, religion, color, national origin, gender, age, status as a protected veteran, sexual orientation, gender identity, or status as a qualified individual with a disability. EEO is the Law.

    Options

    Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
    Share on your newsfeed