Cyber Threat Hunting Analyst

CMR HERNDON VA (CLASSIFIED LOCATION), United States

Apply now Apply later

Cyber Threat Hunting Analyst

Job Category: Engineering

Time Type: Full time

Minimum Clearance Required to Start: TS/SCI with Polygraph

Employee Type: Regular

Percentage of Travel Required: None

Type of Travel: None

* * *

The Opportunity:

Our Cyber Threat Hunting Analyst will be supporting our Enterprise Computer Network Defense (CND) efforts. You will provide technical security assessments of applications and infrastructure, security design reviews as well as risk assessments. This is a hands-on role, requiring technical skills from the hardware to the application layer.

Be part of a department with an expanding range of programs focusing on Cyber Operations, where you get to grow on and between programs with peers who are dedicated to advancing national security. Participate in fun team outings and team building events where you get to engage with your co-workers and expand your career network. We are a fun, engaging environment with a management team focused on growing your career and making you a part of our future. We offer bonus compensation plans that demonstrate you being appreciated for working on the program and being a part of our team. You'll get paid for cyber events and training, such as our Capture the Flag Events, Internal Research and Development opportunities as well as prepaid courses to nationally recognized certification courses to grow your career





Qualifications:

Required: 
 

  • Must have an active TS/SCI with Polygraph clearance

  • 3-5 yrs of experience working in a Security Operations Center (SOC) is helpful

  • Real-time threat assessment experience specializing in unstructured analysis to detect anomalous behavior within our enterprise

  • Must be adaptable with demonstrated ability and willingness to lean into difficult challenges e.g. solve things for which there may be no textbook answer

  • Ability to think like an adversary while investigating suspected compromises or malicious activity

  • Cyber threat intelligence research experience

  • Familiarity with the Mitre ATT&&CK framework and threat modeling

  • Experience developing heuristics for detection of threats

  • Experience with vulnerability assessment and penetration testing strategies for cloud environments

  • Specific experience with Cisco devices and logging

  • Critical thinking and intellectual curiosity are required

  • Experience with lab testing of identfied threat behaviors

  • Must have experience spinning up VMs

  • Comfortable with network scanning techniques 

  • CVE research experience

  • Familiar with setting up, adjusting Splunk queries, sysmon logs, windows logs, writing queries, regex

  • Strong communication skills required, must be willing to reach across team to discuss topics , take ownership, speak up, listen, ask questions, express a point of view based on data, work with ambiguity

  • Forensic (triage) experience, along with data acquisition

  • Python (or Powershell) for task automation, API Dev work

  • Must be comfortable in a role described as "unstructured threat hunting", experience working in ambiguity, good at seeing solutions in advance

-

______________________________________________________________________________

What You Can Expect:

 

A culture of integrity.

At CACI, we place character and innovation at the center of everything we do. As a valued team member, you’ll be part of a high-performing group dedicated to our customer’s missions and driven by a higher purpose – to ensure the safety of our nation.

 

An environment of trust.

CACI takes pride in fostering a diverse and accessible culture where every individual feels supported to chart their own path. You’ll have the autonomy to take the time you need through a unique flexible time off benefit and have access to robust learning resources to make your ambitions a reality.

 

A focus on continuous growth.

Together, we will advance our nation's most critical missions, build on our lengthy track record of business success, and find opportunities to break new ground — in your career and in our legacy.

 

Your potential is limitless. So is ours.

Learn more about CACI here.

______________________________________________________________________________

Pay Range: There are a host of factors that can influence final salary including, but not limited to, geographic location, Federal Government contract labor categories and contract wage rates, relevant prior work experience, specific skills and competencies, education, and certifications. Our employees value the flexibility at CACI that allows them to balance quality work and their personal lives. We offer competitive compensation, benefits and learning and development opportunities. Our broad and competitive mix of benefits options is designed to support and protect employees and their families. At CACI, you will receive comprehensive benefits such as; healthcare, wellness, financial, retirement, family support, continuing education, and time off benefits. Learn more here.

The proposed salary range for this position is:

$85,800 - $180,200

CACI is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, gender identity, age, national origin, disability, status as a protected veteran, or any other protected characteristic.
Apply now Apply later
Job stats:  3  0  0

Tags: APIs Automation Clearance Clearance Required Cloud CND Pentesting Polygraph PowerShell Python Risk assessment Security assessment SOC Splunk Threat intelligence TS/SCI Windows

Perks/benefits: Career development Competitive pay Flex hours Flex vacation Salary bonus Startup environment Team events Wellness

Region: North America
Country: United States

More jobs like this

Explore more career opportunities

Find even more open roles below ordered by popularity of job title or skills/products/technologies used.