AlexandriaRecruiter Since 2001
the smart solution for Alexandria jobs

Cyber Threat Hunter

Company: RTX
Location: Alexandria
Posted on: October 14, 2020

Job Description:

Raytheon Intelligence & Space (RIS) - Cybersecurity, Training & Services (CTS) has an immediate opening for a Cyber Threat Hunter to support a U.S. Federal Agency contract to enable mission accomplishment by identifying current and emerging threat trends, threat actors using a variety of cyber threat intelligence sources. Provide technical assessments of cyber threat actor use of cyber vulnerabilities, exploits, payloads, access infrastructures, and mission platforms. Conduct all-source research on cyber threat actors and intrusion sets (e.g., APTs); evaluate both technical and Intel reporting for cyber threat activities of interest. Conduct detailed analysis of incidents, threats, vulnerabilities, tactics, techniques and procedures (TTP), and other malicious and non-malicious indicators.

Work Location: National Capital Region (Rosslyn, VA)

Job Description:

Perform assessments of systems and networks within the networking environment or enclave and identify where those systems and networks deviate from acceptable configurations, enclave policy, or local policy. This is achieved through passive evaluations such as compliance audits and active evaluations such as vulnerability assessments. Establishes strict program control processes to ensure mitigation of risks and supports obtaining certification and accreditation of systems. Includes support of process, analysis, coordination, security certification test, security documentation, as well as investigations, software research, hardware introduction and release, emerging technology research inspections and periodic audits. Assist in the implementation of the required government policy (i.e., NISPOM, DCID 6-3), make recommendations on process tailoring, participate in and document process activities. Perform analyses to validate established security requirements and to recommend additional security requirements and safeguards. Support the formal Security Test and Evaluation (ST&E) required by each government accrediting authority through pre-test preparations, participation in the tests, analysis of the results and preparation of required reports. Document the results of Certification and Accreditation activities and technical or coordination activity and prepare the system Security Plans and update the Plan of Actions and Milestones POA&M. Periodically conduct a complete review of each system's audits and monitor corrective actions until all actions are closed.

Responsibilities:

Shall perform specific activities that include, but not limited to the following:

* Ingest threat information from internal and external sources for the purpose of targeted monitoring

* Identify and report on gaps in monitoring visibility and strategy

* Tune analytic correlations to reduce false positives and increase actionable alerts

* Assess network threats such as computer viruses, exploits, and malicious attacks

* Determine true threats, false positives and network system misconfigurations and provide solutions to issues detected in a timely manner

* Monitor for potential compromise, intrusion, deficiency, significant event or threat to the security posture and security baseline

* Develop, update and maintain standard operating procedures and other technical documentation for both client and internal operations

* Train and mentor mid-level and junior monitoring analysts

Required Skills:

* Current experience with network intrusion detection and response operations (Protect, Defend, Respond and Sustain methodology)

* Experience in the detection, response, mitigation, and/or reporting of cyber threats affecting client networks and one or more of the following:

* Experience in computer intrusion analysis and incident response

* Working knowledge of Intrusion detection/protection systems

* Knowledge and understanding of network devices, multiple operating systems, and secure architectures

* Working knowledge of network protocols and common services

* System log analysis

* Experience responding to and resolving situations caused by network attacks

* Ability to assess information of network threats such as scans, computer viruses or complex attacks

* Working knowledge of WAN/LAN concepts and technologies

* SIEM content Analysis, Development and Testing

* Experience with SIEMS (such as NetWitness, Splunk, SumoLogic, QRadar)

* Experience with EDR solutions (Carbon Black, Crowdstrike, FireEye, SentinelOne)

* Familiarity with packet analysis to include: HTTP Headers & Status codes, SMTP Traffic & Status codes, FTP Traffic & Status Codes

* Excellent written and verbal communication skills

* Prior experience working in any of the following:

* Security Operations Center (SOC)

* Network Operations Center (NOC)

* Computer Incident Response Team (CIRT)

* Knowledge of and practical experience of integration of COTS or open source tools

* Personality traits: Naturally curious and inquisitive nature; persistent and determined; loves solving problems and puzzles; analytically rigorous; uncompromising integrity

* Demonstrated ability to document processes

* Proficiency with MS Office Applications

* Must be able to work collaboratively across teams and physical locations

* Willing to work rotating shifts

* Must have an active Top Secret Clearance with the ability to obtain a TS/SCI clearance

Required Certifications:

Possess at least one relevant professional designation or related advanced IT certification, but not limited to the following:

* CertifiedInformationSystems Security Professional(CISSP)

* GIACCertifiedIncidentHandler(GCIH)

* GIAC Network Forensic Analyst (GNFA)

* GIAC Intrusion Analyst (GCIA)

Desire Skills:

* Experience with RSA Netwitness, Splunk, FireEye NX, EX, HX, AX, Carbon Black Response, RSA Archer

* Experience with firewalls, routers or antivirus appliances

* Experience working on a 24x7x365 watch desk environment

* Experience with industry standard help desk tools

Desired Certifications:

Possess at least one relevant professional designation or related advanced IT certification, but not limited to the following:

* GIACCertified Enterprise Defender (GCED)

* GIAC Security Expert (GSE)

* CertifiedInformation Security Manager(CISM)

* Certified Ethical Hacker (CEH)

Required Education (including Major):

Bachelor of Science Degree with major in Computer Science/Electrical Engineering, Engineering, Science or related field. Must have a minimum of 5+ years' experience or equivalent education and experience.

* Occasional travel within CONUS and OCONUS is required

165383

Raytheon is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, creed, sex, sexual orientation, gender orientation, gender identity, national origin, disability, or protected Veteran status.

Keywords: RTX, Alexandria , Cyber Threat Hunter, Other , Alexandria, Virginia

Click here to apply!

Didn't find what you're looking for? Search again!

I'm looking for
in category
within


Other Other Jobs


Class A CDL Company Driver
Description: Trucking Jobs for Company Drivers Dedicated Routes Available Apply online or call our recruiting team to learn more about how we can get you here and on the road to help deliver refrigerated goods to (more...)
Company: Hirschbach Motor Lines
Location: Leesburg
Posted on: 10/26/2020

Harris Teeter: Part Time Meat/Seafood Clerk - Hiring Event
Description: Harris Teeter is hiring
Company: Harris Teeter
Location: Leesburg
Posted on: 10/26/2020

Deliver with Uber Eats
Description: Deliver with Uber Eats Charlottesville, VA 2854 C2-47326 Deliver with Uber. Earn on your schedule. Work on your schedule. Deliver for a few hours in the mornings, every night, or just on weekends it's (more...)
Company: Uber Eats
Location: Charlottesville
Posted on: 10/26/2020


Lyft Driver - Earn Extra Cash
Description: Earn 2,500 in Washington, DC when you give 160 rides in 30 days. Terms apply. 10 What is Lyft 10 Lyft is a platform that connects drivers with individuals and organizations that need rides. 10 In (more...)
Company: Lyft
Location: Leesburg
Posted on: 10/26/2020

Drive with Lyft
Description: Job Description Earn 2,500 in Washington, DC when you give 160 rides in 30 days. Terms apply. What is Lyft Lyft is a platform that connects drivers with individuals and organizations that need rides. (more...)
Company: Lyft
Location: Leesburg
Posted on: 10/26/2020

Registered Nurse - Unit Pool (PRN/Wage) - 6 Central Neurology
Description: Job location: Medical Center Charlottesville, VA Employment Type: Part-time Posted data: 2020-10-20 Req: R0017248 Responsible for providing and coordinating interdisciplinary patient care (more...)
Company: University of Virginia
Location: Charlottesville
Posted on: 10/26/2020

Licensed Health Insurance Agent - Work from Home, Great Sales opportunity
Description: Assurance has opened up 100 spots nationally for Licensed Health agents to join our platform by 10/31 Join the revolutionary ASSURANCE platform in time to have the best Open Enrollment Period OEP (more...)
Company: ASSURANCE Independent Agents
Location: Charlottesville
Posted on: 10/26/2020

Deliver Food with Uber - Flexible Gig
Description: Deliver Food with Uber - Flexible Gig Charlottesville, VA 2854 C2-190713 Deliver with Uber. Earn on your schedule. Work on your schedule. Deliver for a few hours in the mornings, every night, or just (more...)
Company: Uber Eats
Location: Charlottesville
Posted on: 10/26/2020

Lot Associate
Description: Lot Associate 316140410 Leesburg, Virginia, US, 20178 Lot Associates assist customers with the loading
Company: The Home Depot
Location: Leesburg
Posted on: 10/26/2020

CDL-A Truck Driver - Walmart Transportation
Description: Job Description LOCATION POTTSVILLE, PA CAREER AREA Drivers amp Transportation
Company: Walmart
Location: Leesburg
Posted on: 10/26/2020

Log In or Create An Account

Get the latest Virginia jobs by following @recnetVA on Twitter!

Alexandria RSS job feeds