SOSi

Senior Threat Analyst

Job Locations US-AZ-Fort Huachuca
Job Post Information* : Posted Date 3 months ago(5/20/2022 1:51 PM)
ID
2022-6030
Location : Location
US-AZ-Fort Huachuca
Potential for Remote
No
Clearance Requirement
Top Secret/SCI
Job Requires Relocation
Yes
Job Requires Relocation
Yes

Overview

SOS International, LLC (SOSi) is currently seeking a Senior Threat Analyst in Fort Huachuca, AZ. The Senior Threat Analyst reports to the T&DA Team Lead and is responsible for supporting the defense of the Army Network.

Responsibilities

  • Analyze, correlate, and perform trend analysis for cyber events and incidents to extract indicators of compromise.
  • Monitor dashboards for threat activity to include ArcSight, Gabriel Nimbus, Rally, TYCHON, and Stealthwatch.
  • Perform exploratory analysis of network traffic, audit logs, external threat intelligence, malware analysis, and incident reports to identify any threat not captured through current detection capabilities.
  • Coordinate findings with DCI for signature development.
  • Provide operational impact assessments resulting from hunt missions.
  • Provide recommendations to improve intrusion detection, malicious activity response, and vulnerability identification.
  • Coordinate efforts within the Defensive Infrastructure Team and Cyber Defensive Operations Team to improve the enterprise posture and to identify and respond to future malicious activity. These teams have overlapping areas of responsibilities and play an integral part to the success for one other.
  • Provide guidance and work leadership and structure to less-experienced personnel and other technical staff to maintain a dynamic prioritization effort.
  • Review all system development project requests and coordinate schedules and related departmental activity.
  • Maintain current knowledge of relevant technologies as assigned.
  • Provide timely notification to the Government for any critical or high incidents.
  • Provide on-call support after business hours and during weekends when required.
  • Lead positions may have supervisory responsibility to include but not limited to: reporting and timekeeping; technical/administrative training; correspond with the government; scheduling to effectively utilize all team resources; support management decision-making; recommend/take action regarding recognition and discipline; recommend innovative solutions to more effectively and efficiently support work performance.
  • Follow ITIL best practices to manage tickets and processes.
  • Develop and/or maintain SOPs, TTPs, and SmartBooks associated with current knowledge of relevant technologies as assigned.
  • Participate in special projects as required.
  • Actively collaborate with GTMs, Branch Chiefs, Division Chiefs and RCC-C Leadership, as well as outside agencies, including LE/CI, higher commands, NECs, Brigades, and Operations Centers external to the RCC-C.

Qualifications

  • Active in scope Top Secret (TS) with eligibility for Sensitive Compartmented Information (SCI) clearance
  • HS +12 yrs similar technical experience or AA/AS +10, or BS/BA +8
  • An IAT III certification (CASP+CE, CCNP-Security, CISA, CISSP(or Associate), GCED, or GCIH) is required
  • Certified Ethical Hacker (CEH)
  • Cybersecurity Service Provider (CSSP) - Analyst Certification
  • Knowledgeable in the mission and operational requirements of the U.S. Army
  • Demonstrated understanding of U.S. Army IT operational and technical requirements and an advanced understanding of Risk Management Framework (RMF)
  • Must be willing to work overtime, after hours, holidays, and weekends, as necessary

Preferred Qualifications

  • Master’s degree in Network Management, Telecommunications, Cybersecurity, National Security Strategy, or a related field
  • ITIL v4 certification
  • Fluency in a foreign language is desirable, but not required

Working Conditions

  • Working conditions are normal for an office environment.
  • Fast paced, deadline-oriented environment.
  • May require periods of non-traditional working hours including consecutive nights or weekends (if applicable)

 

SOSi is an equal employment opportunity employer and affirmative action employer. All interested individuals will receive consideration and will not be discriminated against on the basis of race, color, religion, sex, national origin, disability, age, sexual orientation, gender identity, genetic information, or protected veteran status. SOSi takes affirmative action in support of its policy to advance diversity and inclusion of individuals who are minorities, women, protected veterans, and individuals with disabilities.

Options

Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
Share on your newsfeed