What are the responsibilities and job description for the Threat I & W Analyst position at Elluminates Software?
Threat I&W Analyst
Introduction
Elluminates Software provides innovation for Federal customers, including AI-driven SaaS, Cloud and On-Prem transformation, and advanced Infrastructure Automation.
We have worked closely with the industry to innovate and collaborate on solutions with national and global technology platform impact for over twenty years.
Job Description
Elluminates Software is currently seeking an experienced Threat I&W Analyst to become part of the Department of State (DoS) Diplomatic Security Cyber Mission (DSCM) program providing leading cyber and technology security experience to enable innovative, effective and secure business processes.
Duties And Responsibilities
Clearance: active Top Secret security clearance with SCI eligibility
Location: Rosslyn, VA
Shift: Normal Business Hours - Flexible for occasional telework
Type of Travel: up to 10% travel to foreign and domestic locations
Introduction
Elluminates Software provides innovation for Federal customers, including AI-driven SaaS, Cloud and On-Prem transformation, and advanced Infrastructure Automation.
We have worked closely with the industry to innovate and collaborate on solutions with national and global technology platform impact for over twenty years.
Job Description
Elluminates Software is currently seeking an experienced Threat I&W Analyst to become part of the Department of State (DoS) Diplomatic Security Cyber Mission (DSCM) program providing leading cyber and technology security experience to enable innovative, effective and secure business processes.
Duties And Responsibilities
- Be a key part of the Indications and Warnings team.
- Leverage open-source, proprietary/vendor, and classified reporting to closely track advanced persistent threat actor activity.
- Perform pattern, trend, and behavior analysis, as well as other specialized analysis techniques to identify malicious cyber threat activity targeting DOS information, systems and personnel.
- Maintain records to catalog and track malicious cyber threat activity targeting DOS information, systems and personnel.
- Identify Indicators of Compromise (IOCs) present on an Enterprise network through the use of a SIEM and other security tools and logs.
- Liaise with members of the Intelligence Community (IC).
- Acts as the fusion analysis cell within Cyber Threat Analysis Division (CTAD).
- Provide presentations to a variety of technical and non-technical audiences pertaining to cyber threats.
- Experience with Splunk SIEM.
- Experience leveraging the MITRE ATT&CK matrix or other threat models (e.g. Lockheed Martin Kill Chain, Diamond Model).
- Knowledge or experience tracking advanced persistent threats (APTs).
- Knowledge or experience pivoting from IOCs to identify related infrastructure.
- Demonstrated excellent written communication skills with the ability to communicate technical topics in an analytic fashion. Excellent verbal communication skills, especially in being able to brief individual as well as large groups ranging from the working to executive level.
- Ability to work independently as well as with a team of other analysts.
- Active U.S. Passport and the ability to travel up to two weeks at a time, both foreign and domestically.
- Possess ONE of the following certifications:
- A CE, Network CE, CCNA, CCNP, Sec .
- A Bachelor’s degree and 5 years of relevant experience. An additional 4 years of experience may be substituted in lieu of the degree requirement.
Clearance: active Top Secret security clearance with SCI eligibility
Location: Rosslyn, VA
Shift: Normal Business Hours - Flexible for occasional telework
Type of Travel: up to 10% travel to foreign and domestic locations
