- Hunt for sophisticated cyber threats by analyzing data to identify malicious behaviors. Perform real-time incident handling, independently following as well as creating procedures to analyze and contain malicious activity. Collaboratively engages with peers to build a combined and comprehensive effort to respond to cyber incidents. Collect evidence across multiple platforms as well as collecting malware to perform analysis associated with cyber intrusions. Maintain current knowledge of threat intelligence and adversarial behaviors to use operationally.
- Develops and enhances content and methodologies for hunting, monitoring, and responding to incidents that occur in multiple platforms (on-premises, SaaS, IaaS, IAM). Matures processes, work flows, and documentation. Determines high fidelity behavioral patterns and crafts content in multiple tools.
- Participate in project and multi-functional security teams requiring interaction with system administrators, cloud engineers, IAM administrators, networking staff, application developers, IT operations staff, and cyber research and development areas within the organization in order to identify and implement information assurance controls and risk mitigations for IT operations. Provide routine reporting on goals and objectives to management.
- Bachelor's Degree in Information Security, a security related field, or equivalent experience that provides the knowledge, skills, and abilities to be successful.
- 7+ years experience working in multi-platform complex network environments.
- 5+ years experience working in an operational multi-platform cybersecurity environment.
- Proficiency with extracting and manipulating data, using scripting languages such as Python, PowerShell, SPL or others.
- Possess knowledge of cloud-based threats, cloud IAM exploits, cloud-based privileged escalation, and cloud-based lateral movement.
- Have proficient comprehension of IAM authentication anomalies and the means adversaries use to exploit and bypass multi-factor authentication.
- Understanding of operating systems normal activities, OS internals, MITRE ATT&CK, and identifying anomalous behaviors.
- Experience with Assume Breach methodologies and proficient understanding of attack methodologies of Nation State adversaries, including living off the land and TTPs outlined in MITRE ATT&CK framework.
- Experience analyzing data with technologies like Splunk, ELK, Hadoop, Python, or SQL.
- Technical experience in some of the following areas: Azure, AWS, SaaS, CAASM, SASE, SSE, IAM, EDR, Suricata, Zeek, Full Packet capture technologies, Firewall, Proxy, and Sandbox technologies.
- Experience with memory analysis, host based anomaly detection, and network anomaly detection.
- Experience and understanding of Red Team and Threat Emulation exercises.
- Are able to obtain a Secret security clearance. If selected, you will be subject to a government security clearance investigation and must meet the requirements for access to classified information. Eligibility requirements include U.S. citizenship.
- Master's Degree in Cybersecurity or a related field.
-
Cybersecurity Hunt Analyst
3 weeks ago
The Johns Hopkins University Applied Physics Laboratory Laurel, United StatesAre you interested in being part of a highly collaborative Cybersecurity Research & Hunt Team? · Are you inquisitive and analytical with deep knowledge in Cybersecurity? · If so, we're looking for someone like you to join our team at APL · We are ranked as one of Computerworld ...
-
Cybersecurity Hunt Analyst
3 weeks ago
The Johns Hopkins University Applied Physics Laboratory Laurel, United StatesAre you interested in being part of a highly collaborative Cybersecurity Research & Hunt Team? · Are you inquisitive and analytical with deep knowledge in Cybersecurity? · If so, we're looking for someone like you to join our team at APL · We are ranked as one of Computerworld ...
-
Threat Hunting Analyst
1 day ago
Peraton Washington, United States Full timeResponsibilities · Peraton is seeking a Threat Hunting Analyst to join our team of qualified and diverse individuals. The qualified applicant will become part of Department of State (DOS) Consular Affairs Enterprise Infrastructure Operations (CAEIO) Program, for the Bureau of Con ...
-
Threat Hunt Analyst
3 weeks ago
Evolver Federal Reston, United StatesEvolver Federal is looking for a · Threat Hunt Analyst · to join our team on a large Security Operations program with our Federal client located in · Washington, DC. · This is a Remote position that allows for 100% Work from Home · The Threat Hunt Analyst (THA) works to iden ...
-
Threat Hunt Analyst
3 weeks ago
Evolver Federal Reston, United StatesJob Description · Job DescriptionEvolver Federal is looking for a Threat Hunt Analyst to join our team on a large Security Operations program with our Federal client located in Washington, DC. · This is a Remote position that allows for 100% Work from Home · The Threat Hunt Analy ...
-
Threat Hunt Analyst
2 weeks ago
OneZero Solutions Washington, United StatesJob Description · Job DescriptionWe are an employee-centric company that truly appreciates our team members and their value to our customers and the missions they support. We pride ourselves on being forward-leaning thinkers and fostering teams that are and continue to be technic ...
-
Threat Hunt Analyst Jr.
3 weeks ago
Federal Staffing Solutions Inc. Washington, United StatesWe connect our employees with some of the best opportunities around. · Time and again, our employees tell us that the most important thing we offer is respect. Federal Staffing Solutions puts people to work in all types of jobs. When you work with us, you build a relationship wit ...
-
Cyber Threat Hunt/Intel Analyst
3 weeks ago
XOR Security Arlington, United StatesJob Description: · XOR Security, An Agile Defense Company is actively seeking a Cyber Threat Intel Analyst to apply their technical and analytic expertise to evaluate advanced and emerging cyber threats targeting Federal Departments and Agencies (D/A) and National Critical Functi ...
-
Cyber Threat Hunt/Intel Analyst
3 weeks ago
XOR Security Arlington, United StatesJob Description:XOR Security, An Agile Defense Company is actively seeking a Cyber Threat Intel Analyst to apply their technical and analytic expertise to evaluate advanced and emerging cyber threats targeting Federal Departments and Agencies (D/A) and National Critical Functions ...
-
Senior Cyber Hunt and Incident Response Analyst
2 weeks ago
phia Arlington, United StatesAt phia we hire talented and passionate people who are focused on collaborative, meaningful work, providing technical and operational subject matter expertise and support services to our partners and clients. We are seeking a Senior Cyber Hunt & Incident Response Analyst to suppo ...
-
Threat Hunt Analyst Jr. with Security Clearance
2 weeks ago
I2X Technologies Washington, United StatesMinimum Clearance Required Secret Responsibilities I2X Technologies is a reputable technology services company to the Federal Government. Whether the focus is on space exploration, national security, cyber security, or cutting-edge engineering applications, I2X is ready to offer ...
-
GEICO Chevy Chase, United States Full timeGEICO's Cyber Threat Intelligence/Threat Hunting Team is looking for a highly motivated, confident, decisive, experienced Cyber Threat Intelligence Analyst. As a member of CTI/Threat Hunting, you will be focused on delivering timely, accurate, and focused intelligence on relevant ...
-
Security Operations Center
2 weeks ago
EverWatch Annapolis Junction, United StatesOverview · EverWatch is a government solutions company providing advanced defense, intelligence, and deployed support to our country's most critical missions. We are a full-service government solutions company. Harnessing the most advanced technology and solutions, we strengthen ...
-
5G Vulnerability Analyst, Lead
3 days ago
Booz Allen Hamilton Annapolis Junction, United States5G Vulnerability Analyst, LeadThe Opportunity: · Do you enjoy the thrill of the hunt? Are you motivated by the head-to-head challenge of gaining access to well-protected networks? As a network exploitation professional, you know that understanding the adversaries' tactics, techni ...
-
5G Vulnerability Analyst, Lead
1 week ago
Booz Allen Hamilton Annapolis Junction, United States Full time5G Vulnerability Analyst, Lead The Opportunity: · Do you enjoy the thrill of the hunt? Are you motivated by the head-to-head challenge of gaining access to well-protected networks? As a network exploitation professional, you know that understanding the adversaries' tactics, tec ...
-
5G Vulnerability Analyst, Lead
2 weeks ago
Booz Allen Hamilton Annapolis Junction, United States Full time5G Vulnerability Analyst, Lead The Opportunity: · Do you enjoy the thrill of the hunt? Are you motivated by the head-to-head challenge of gaining access to well-protected networks? As a network exploitation professional, you know that understanding the adversaries' tactics, tec ...
-
Cyber Intel Analyst
2 weeks ago
The Johns Hopkins University Applied Physics Laboratory Laurel, United StatesAre you interested in being part of a highly collaborative Cybersecurity Hunt Team? · Are you inquisitive and analytical with a Cybersecurity focus? · If so, we 're looking for someone like you to join our team at APL · We are ranked as one of Computerworld 's Top Places to Wo ...
-
Cyber Threat Analyst
1 week ago
The Johns Hopkins University Applied Physics Laboratory Laurel, United States· Are you interested in being part of a highly collaborative Cybersecurity Research & Hunt Team?Are you inquisitive and analytical with deep knowledge in Cybersecurity?If so, we're looking for someone like you to join our team at APLWe are ranked as one of Computerworld 's Top P ...
-
Principal Full Stack Software Engineer
1 week ago
GliaCell Technologies LLC Laurel, United StatesAre you a Principal Software Engineer who is ready for a new challenge that will launch your career to the next level? · Tired of being treated like a company drone? · Tired of promised adventures during the hiring phase, then being dropped off on a remote contract and never seen ...
-
Software Engineer
19 hours ago
GliaCell Technologies LLC Laurel, United StatesAre you a Software Engineer who is ready for a new challenge that will launch your career to the next level? · Tired of being treated like a company drone? · Tired of promised adventures during the hiring phase, then being dropped off on a remote contract and never seen or hear ...
Cybersecurity Hunt Analyst - Laurel, United States - Johns Hopkins Applied Physics Laboratory
Description
Are you interested in being part of a highly collaborative Cybersecurity Research & Hunt Team?
Are you inquisitive and analytical with deep knowledge in Cybersecurity?
If so, we're looking for someone like you to join our team at APL
We are ranked as one of Computerworld 's Top Places to Work in IT 5 years running and we are seeking a Cybersecurity Analyst to help us track advanced cyber threats tradecraft, keeping up with an evolving threat landscape, pivoting on and analyzing data to identify malicious behaviors. Perform real-time incident handling, independently following and creating procedures to analyze and contain malicious activity. Collect evidence to include digital media, logs, and malware to perform analysis associated with cyber intrusions. Maintain an understanding of attack methodologies and use information operationally. Make recommendations and create or modify processes and procedures based on knowledge of advanced threat behaviors. Identify and analyze threats, using OSINT, Threat Intelligence, research, and leveraging enrichment resources.
As a Cybersecurity Hunt Analyst:
You meet our minimum qualifications for the job if you...
#SMR
Why work at APL?
The Johns Hopkins University Applied Physics Laboratory (APL) brings world-class expertise to our nation's most critical defense, security, space and science challenges. While we are dedicated to solving complex challenges and pioneering new technologies, what makes us truly outstanding is our culture. We offer a vibrant, welcoming atmosphere where you can bring your authentic self to work, continue to grow, and build strong connections with inspiring teammates.
At APL, we celebrate our differences and encourage creativity and bold, new ideas. Our employees enjoy generous benefits, including a robust education assistance program, unparalleled retirement contributions, and a healthy work/life balance. APL's campus is located in the Baltimore-Washington metro area. Learn more about our career opportunities at
About Us
APL is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, creed, color, religion, sex, gender identity or expression, sexual orientation, national origin, age, physical or mental disability, genetic information, veteran status, occupation, marital or familial status, political opinion, personal appearance, or any other characteristic protected by applicable law.
APL is committed to promoting an innovative environment that embraces diversity, encourages creativity, and supports inclusion of new ideas. In doing so, we are committed to providing reasonable accommodation to individuals of all abilities, including those with disabilities. If you require a reasonable accommodation to participate in any part of the hiring process, please contact Only by ensuring that everyone's voice is heard are we empowered to be bold, do great things, and make the world a better place.
