Jobs
>
Washington, D.C.

    Information Security Analyst - Washington, United States - Computer World Services

    Computer World Services
    Computer World Services Washington, United States

    1 week ago

    Default job background
    Full time
    Description
    Job Description

    The Threat Hunt (TH) Lead oversees a team responsible for proactively assessing data collected from various cyber defense tools to analyze events within organizational environments for identifying and mitigating threats.

    This role requires a deep understanding of cyber threats, advanced persistent threats (APTs), and the ability to leverage a variety of tools and techniques to hunt for indicators of compromise (IOCs) and adversary tactics, techniques, and procedures (TTPs).

    Key Tasks and Responsibilities

    • Actively hunt for indicators of compromise (IOCs) and advanced persistent threats (APT) Tactics, Techniques, and Procedures (TTPs) in the network and on hosts using tools such as Azure Sentinel, PowerBI, Tenable, and M365 Defender.
    • Analyze threat actor activity, identify intrusions, create detections, and track campaigns.
    • Analyze collected data to identify trends in the security environment.
    • Escalate threat and IOC details to the Cybersecurity team for implementing additional security controls.
    • Leverage Microsoft Sentinel security information and event (SIEM) tool and other monitoring tools for security monitoring and proactive threat hunting.
    • Utilize threat intelligence and open-source cybersecurity outlets to enhance TH operations.
    • Develop and implement playbooks and automation objects for threat hunting capabilities.
    • Manage security-related events/incidents using CUSTOMER and DHS ticketing systems.
    • Utilize CUSTOMER Security Orchestration and Automated Response (SOAR) tool for automating threat hunting and incident handling.
    • Research emerging threats and publish internal Threat Briefs.
    • Create reports and presentations on research and findings.
    • Recommend mitigation strategies based on IOCs and adversarial TTPs.
    • Collaborate with SOC and Cyber Security teams on research results.
    • Participate in DHS SOC status calls and working group meetings.
    • Support ad hoc meetings requiring TH expertise.
    • Update threat hunting status reports and act as backup briefer to Government at ITCSP weekly staff meetings.
    • Develop and maintain TH repository of findings and SOPs.
    • Support incident response efforts in collaboration with Cybersecurity and IT support teams.
    • Interface with DHS SOC and other agencies or companies as needed.
    • Provide threat hunting status reports to stakeholders.
    • Support efforts to advance the maturity level of threat hunting capabilities of the CUSTOMER SOC based on the DHS defined Maturity Model.
    • Support annual self-assessment of threat hunting capabilities against the DHS CSP maturity model.
    • Support threat hunting aspects of formal DHS CSP assessments and cybersecurity tabletop exercises.
    Education & Experience

    • Bachelor's degree (preferred).
    • Minimum 10 years of overall IT experience.
    • 5 years of experience in a lead role managing a Security Operations Center or Threat Hunting team.
    • 3 years of experience performing proactive threat hunting duties.
    • 3 years of experience leveraging SIEM and SOAR products (Microsoft Sentinel preferred) for threat hunting duties.
    • Knowledge of intelligence frameworks, processes, and cyber intelligence/information repositories.
    • Understanding of cyber operations concepts, terminology, principles, capabilities, and limitations.
    • Ability to synthesize complex information and communicate analysis effectively.
    • Independent work capability and creative problem-solving skills.
    • Strong representation skills in intra- and inter-agency meetings and with external partners.
    Certifications

    • At least one of relevant industry certifications such as GCTI (Global Information Assurance Certification [GIAC] Cyber Threat Intelligence), GCFA (GIAC Certified Forensic Analyst), GNFA (GIAC Network Forensic Analyst), GIAC Security Expert (GSE), or equivalent.
    Security Clearance

    • Candidate must be a US Citizen.
    • DHS Customer will perform and adjudicate customer background investigation prior to work start.
    • Candidate must be eligibility for potential Top Secret or Top Secret with SCI.
    • Active Top Secret Clearance (Preferred).
    Other (Travel, Work Environment, DoD 8570 Requirements, Administrative Notes, etc.)

    • Local travel within 50-mile radius of Washington, DC may be required.
    • Work location in Washington DC with Telework/Remote work authorized at Customer discretion.
    Computer World Services is an affirmative action and equal employment opportunity employer.

    Current employees and/or qualified applicants will receive consideration for employment without regard to race, color, religion, sex, disability, age, sexual orientation, gender identity, national origin, disability, protected veteran status, genetic information or any other characteristic protected by local, state, or federal laws, rules, or regulations.


    Computer World Services is committed to the full inclusion of all qualified individuals. As part of this commitment, Computer World Services will ensure that individuals with disabilities (IWD) are provided reasonable accommodations. If reasonable accommodation is needed to participate in the job application or interview process, to perform essential job functions, and/or to receive other benefits and privileges of employment, please contact Aaron McClellan in Human Resources at or
  • Gen3 Technology Consulting

    Security Analyst

    2 days ago

    Gen3 Technology Consulting Washington, United States

    Job Description · Job DescriptionAbout Us: · Gen3 Technology Consulting is an SBA-certified Woman-Owned Small Business (WOSB) providing a diverse set of technology services and solutions to federal and commercial clients. Founded in 2017, Gen3 leverages over 25 years of informat ...

  • Soft Tech Consulting, Inc

    Cyber Security Analyst

    1 week ago

    Soft Tech Consulting, Inc Washington, United States

    Overview · Soft Tech Consulting is seeking a highly motivated, self-directed individual to fill the role of a Cyber Security Analyst . This is an exciting opportunity to work with a team responsible for IT Security Risk and Compliance by providing direct support to the Informat ...

  • ManTech

    Personnel Security Analyst

    2 weeks ago

    ManTech Washington, United States Full time

    Secure our Nation, Ignite your Future · Become an integral part of a diverse team while working at an Industry Leading Organization, where our employees come first. At ManTech, you'll help protect our national security while working on innovative projects that offer opportunities ...

  • SAIC

    Senior Security Analyst

    2 weeks ago

    SAIC Washington, United States

    Description · SAIC Office of Security is currently seeking Senior Security Analyst to support the Washington, DC 80 M Street Location Operations. · Duties and Responsibilities: · Self-Inspections/Government Inspections as required · Maintaining compliance with corporate and gove ...

  • Leidos

    IT Security Analyst

    5 days ago

    Leidos Arlington, United States

    Leidos has a current job opportunity for a Cyber Security Analyst on the DISA GSMO-II program in the Washington DC Area. · Position Summary: · This position provides 24x7 cybersecurity monitoring and analysis services for Department of Defense networks above the SECRET level. Thi ...

  • CloudShape

    Application Security Analyst

    2 days ago

    CloudShape Washington, United States

    Job Description · Job DescriptionApplication Security Analyst · Location: Remote · Citizenship required: Yes · Clearance Type: Secret · Telecommute: Yes · Travel Required: No · Positions Available: · At Cloudshape our employees have incredible opportunities to work in helping or ...

  • PPT Solutions, Inc.

    Cyber Security Analyst

    2 weeks ago

    PPT Solutions, Inc. Washington, United States

    Job Description · Job DescriptionSalary: · PPT Solutions, Inc. is seeking a Cyber Security Analyst in the National Capital Region. The qualified applicant will provide objective expertise for cyber tabletop exercises and specialized skills to supporting projects related to cyber ...

  • DAN Solutions

    Security Incident Analyst

    4 weeks ago

    DAN Solutions Washington, United States

    Job Description · Job DescriptionREQUIRES AN EXISTING/ACTIVE TS/SCI WITH CI POLYGRAPH - NO REMOTE WORK, MUST WORK ON SITE · Job Description · The Security Incident Analyst (SIA) is responsible for the mitigation of security incidents on DIA information systems. The SIA investigat ...

  • Computer World Services (CWS)Corporation

    Information Security Analyst

    1 week ago

    Computer World Services (CWS)Corporation Washington DC, United States

    The Threat Hunt (TH) Lead oversees a team responsible for proactively assessing data collected from various cyber defense tools to analyze events within organizational environments for identifying and mitigating threats. This role requires a deep understanding of cyber threats, a ...

  • DIGITALSPEC

    Cloud Security Analyst

    1 week ago

    DIGITALSPEC Washington, United States

    Job Description · Job DescriptionBecome an integral part of a diverse team. Currently, DIGITALSPEC is seeking an experienced, motivated, career and customer-oriented Cloud Security Analyst to join our team. · Location: Washington, DC Clearance: US Citizens and TOP Secret Clearanc ...

  • Global Engineering & Technology, Inc. (GET)

    Systems Security Analyst

    3 days ago

    Global Engineering & Technology, Inc. (GET) Washington, United States

    Job Description · Job DescriptionSecurity Clearance: · This position requires a current DOE Q or DoD Top Secret / SCI security clearance.In its majority, work will be performed remotely, from the employee's place of residence. Pre-planned travel to Oak Ridge, Tennessee, or Amaril ...

  • TWO95 International, Inc

    Sr Cloud Security Analyst

    6 days ago

    TWO95 International, Inc Washington, United States

    Title – Sr Cloud Security Analyst · Position – 6 – 12 + Months Contract (Must be willing to be hired as FTE with our client) · Location – : Hybrid – DC Metro Will be required to report in the office a few times a week · Rate - $Open /hr++ (Negotiable based on the experience) · R ...

  • T-Rex Solutions

    Cloud Security Analyst

    3 days ago

    T-Rex Solutions Washington, United States

    Job Description · Job DescriptionT-Rex Solutions is looking to select a Cloud Security Analyst to support the US Department of the Treasury TCloud enterprise cloud development effort. This effort aims to facilitate holistic multi-cloud solutions to meet the Department of Treasury ...

  • ManTech

    Junior Personnel Security Analyst

    2 weeks ago

    ManTech Washington, United States Full time

    Secure our Nation, Ignite your Future · Become an integral part of a diverse team while working at an Industry Leading Organization, where our employees come first. At ManTech, you'll help protect our national security while working on innovative projects that offer opportunities ...

  • Peraton

    Senior Security Threat Analyst

    1 day ago

    Peraton Washington, United States Full time

    Responsibilities · Responsibilities include, but are not limited to: · • Identify and investigate vulnerabilities, asses exploit potential, and document findings and remedies for presentation to facilitate mitigations oncustomer systems · • Perform daily cyber threat research and ...

  • Booz Allen Hamilton

    Security Operations Analyst, Senior

    2 weeks ago

    Booz Allen Hamilton Washington, United States Full time

    Security Operations Analyst, SeniorKey Role: · Respond and resolve cyber security incidents, and proactively prevent reoccurrence of these incidents. Apply leading-edge principles, theories, and concepts. Contribute to the development of new principles and concepts. Work on unusu ...

  • Booz Allen Hamilton

    Security Operations Analyst, Mid

    2 weeks ago

    Booz Allen Hamilton Washington, United States

    Security Operations Analyst, MidKey Role: · Responds to and resolves cyber security incidents. Participate in cyber incident response investigations requiring forensic, malware, and log analysis. Analyzes forensic images and triage datasets to identify indicators of compromise, l ...

  • ManTech

    Senior Security Policy Analyst

    1 week ago

    ManTech Washington, United States Full time

    Secure our Nation, Ignite your Future · Become an integral part of a diverse team while working at an Industry Leading Organization, where our employees come first. At ManTech International Corporation, you'll help protect our national security while working on innovative project ...

  • SAIC

    SAP Security Analyst

    1 week ago

    SAIC Arlington, United States

    Description · SAIC is seeking a SAP Security Analyst to provide comprehensive security support services for the R&E Special Access Program Central Office (SAPCO) and various program management offices across OUSD(R&E). The role demands proficiency in program protection and securi ...

  • Booz Allen Hamilton

    Security Operations Analyst, Mid

    2 weeks ago

    Booz Allen Hamilton Washington, United States Full time

    Security Operations Analyst, MidKey Role: · Respond and resolve cyber security incidents and proactively prevent reoccurrence of these incidents. Apply leading-edge principles, theories, and concepts. Contribute to the development of new principles and concepts. Work on unusually ...