Cyber Threat Hunting Analyst
CMR HERNDON VA (CLASSIFIED LOCATION), United States
Full Time Entry-level / Junior Clearance required USD 85K - 180K
CACI International Inc
The Opportunity:
Our Cyber Threat Hunting Analyst will be supporting our Enterprise Computer Network Defense (CND) efforts. You will provide technical security assessments of applications and infrastructure, security design reviews as well as risk assessments. This is a hands-on role, requiring technical skills from the hardware to the application layer.
Be part of a department with an expanding range of programs focusing on Cyber Operations, where you get to grow on and between programs with peers who are dedicated to advancing national security. Participate in fun team outings and team building events where you get to engage with your co-workers and expand your career network. We are a fun, engaging environment with a management team focused on growing your career and making you a part of our future. We offer bonus compensation plans that demonstrate you being appreciated for working on the program and being a part of our team. You'll get paid for cyber events and training, such as our Capture the Flag Events, Internal Research and Development opportunities as well as prepaid courses to nationally recognized certification courses to grow your career
Qualifications:
Required:
Must have an active TS/SCI with Polygraph clearance
3-5 yrs of experience working in a Security Operations Center (SOC) is helpful
Real-time threat assessment experience specializing in unstructured analysis to detect anomalous behavior within our enterprise
Must be adaptable with demonstrated ability and willingness to lean into difficult challenges e.g. solve things for which there may be no textbook answer
Ability to think like an adversary while investigating suspected compromises or malicious activity
Cyber threat intelligence research experience
Familiarity with the Mitre ATT&&CK framework and threat modeling
Experience developing heuristics for detection of threats
Experience with vulnerability assessment and penetration testing strategies for cloud environments
Specific experience with Cisco devices and logging
Critical thinking and intellectual curiosity are required
Experience with lab testing of identfied threat behaviors
Must have experience spinning up VMs
Comfortable with network scanning techniques
CVE research experience
Familiar with setting up, adjusting Splunk queries, sysmon logs, windows logs, writing queries, regex
Strong communication skills required, must be willing to reach across team to discuss topics , take ownership, speak up, listen, ask questions, express a point of view based on data, work with ambiguity
Forensic (triage) experience, along with data acquisition
Python (or Powershell) for task automation, API Dev work
Must be comfortable in a role described as "unstructured threat hunting", experience working in ambiguity, good at seeing solutions in advance
______________________________________________________________________________
What You Can Expect:
A culture of integrity.
At CACI, we place character and innovation at the center of everything we do. As a valued team member, you’ll be part of a high-performing group dedicated to our customer’s missions and driven by a higher purpose – to ensure the safety of our nation.
An environment of trust.
CACI takes pride in fostering a diverse and accessible culture where every individual feels supported to chart their own path. You’ll have the autonomy to take the time you need through a unique flexible time off benefit and have access to robust learning resources to make your ambitions a reality.
A focus on continuous growth.
Together, we will advance our nation's most critical missions, build on our lengthy track record of business success, and find opportunities to break new ground — in your career and in our legacy.
Your potential is limitless. So is ours.
______________________________________________________________________________
Pay Range: There are a host of factors that can influence final salary including, but not limited to, geographic location, Federal Government contract labor categories and contract wage rates, relevant prior work experience, specific skills and competencies, education, and certifications. Our employees value the flexibility at CACI that allows them to balance quality work and their personal lives. We offer competitive compensation, benefits and learning and development opportunities. Our broad and competitive mix of benefits options is designed to support and protect employees and their families. At CACI, you will receive comprehensive benefits such as; healthcare, wellness, financial, retirement, family support, continuing education, and time off benefits. Learn more here.
The proposed salary range for this position is:
$85,800 - $180,200CACI is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, gender identity, age, national origin, disability, status as a protected veteran, or any other protected characteristic.Tags: APIs Automation Clearance Clearance Required Cloud CND Pentesting Polygraph PowerShell Python Risk assessment Security assessment SOC Splunk Threat intelligence TS/SCI Windows
Perks/benefits: Career development Competitive pay Flex hours Flex vacation Salary bonus Startup environment Team events Wellness
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.