Cybersecurity Analyst (SME)

ECS is seeking a Cybersecurity Analyst (SME) to work in our Huntsville, AL office. Please note: This position is contingent upon contract award.

ECS is seeking a qualified Cybersecurity Analyst (SME) to support cybersecurity operations for the Federal Bureau of Investigation. You will provide leadership and cyber SME support for the Cyber Threat Intelligence (CTI) Team, playing a crucial role in the FBI's cybersecurity defense strategy.

The CTI Team is Responsible for monitoring and analyzing external cyber threat data to provide insights and actionable intelligence about potential cyber threats. They shall triage information collected from different threat intelligence sources, including internal sources, and study the pattern of attacks, their methodology, motive, severity, and threat landscape applicable to FBI systems. They shall support enhancing the overall cybersecurity posture of an organization by delivering timely, relevant, information to stakeholders.

Responsibilities

• Monitor open-source websites for hostile content directed towards organizational or partner interests.
• Analyze collected data to identify potential threats, vulnerabilities, and emerging trends.
• Assist the SOC during ongoing incidents by providing real-?me intelligence updates, context, and guidance to help investigate, contain, and remedy threats.
• Apply threat modeling methodologies, such as STRIDE and DREAD, in conducting risk assessments and evaluating potential threats.
• Possess expertise in open-source intelligence (OSINT) collection methods and tools to enhance overall threat intelligence capabilities.
• Have a thorough understanding of incident response processes, methodologies, and best practices, contributing to effective threat mitigation.
• Demonstrate advanced proficiency in using threat intelligence platforms and tools for effective data aggregation and analysis.
• Conduct threat hunting activities to proactively identify and mitigate potential threats within the environment.
• Mentor and train junior analysts, fostering a culture of continuous improvement and knowledge sharing within the CTI team.
• Skilled in developing threat models and conducting risk assessments to support security planning and prioritization.
• Conduct thorough post-incident analyses, identifying lessons learned and recommending improvements for future readiness.

• Must have a current Top-Secret Clearance with the capability of obtaining SCI / CI-Poly if needed to meet contract requirements
• Expert experience with Splunk Enterprise Security
• SOC Watch Floor Management experience
• Must currently live within commuting distance to Huntsville, AL or be willing to relocate.
• Ability to work independently and as part of a team.