CACI International Technical Cyber Intel Analyst (BA 477) in Linthicum, Maryland
Technical Cyber Intel Analyst (BA 477)
Job Category: Information Technology
Time Type: Full time
Minimum Clearance Required to Start: Secret
Employee Type: Regular
Percentage of Travel Required: Up to 10%
Type of Travel: Local
The DoD-Defense Industrial Base Collaborative Information Sharing Environment (DCISE)—DCISE is the operational hub for DoD’s Defense Industrial Base (DIB) Cybersecurity Program, focused on protecting intellectual property and safeguarding DoD content residing on or transiting contractor unclassified networks. DCISE develops and shares actionable threat products, performs cyber analysis and diagnostics, and provides remediation consults for DIB Partners. The successful Cyber Intel Analyst candidate will support the Analytics Division (AD). AD conducts cyber analysis on information submitted by DIB Partners, the DoD and other USG-related reporting to provide a complete understanding of known or potential threats to unclassified DoD information on or transiting DIB systems and networks. This position supports the Tactical Operations Branch that daily functions are related to processing of voluntary and mandatory incident reports as well as Malware Analysis, Customer Response Form (CRF), CRF Supplements, and Partner Engagement. This analyst position is responsible for processing and analyzing indicator of compromise (IOC) based incident reports, coupled with data enrichment via OSINT, and creating the CRF threat product for our Partners and USG Stakeholders.
13 years of professional experience without a degree; or 5 years of professional experience with a Bachelors degree from an accredited college in a related discipline, or equivalent experience/combined education; or 3 years of professional experience with a related Masters degree; or no experience required with a related PhD or JD. Consideration should always be given for the level of specific domain expertise.
• Demonstrated experience authoring various types of technical cyber threat products tailored to computer network defenders
• Experience performing cyber threat analysis based on Indicators of Compromise (IOCs)
• Experience performing open source analysis for cyber event correlation, data enrichment, and threat hunting
• Familiarity with analytical approaches or methodologies such as Diamond Model of Intrusion Analysis, Cyber Kill Chain, Mitre ATT&CK framework
• Knowledge of Advanced Persistent Threat (APT) cyber activity with an understanding of common intrusion set tactics, techniques, and procedures (TTPs)
• Demonstrated motivation to maintain awareness of current cybersecurity and threat intelligence news and trends
• Technical skills proficiency in network defense operations (SIEM, firewalls, IDS/IPS, Proxies)
• Ability to create and deliver in-depth briefings of reported cyber targeting, trends, and technology, to include attack vector, technique, and mitigation
*MUST HAVE ACTIVE SECRET CLEARANCE
• Certifications: CEH, GCTI, GOSI, OSCP, GCED, GDAT, GDSA, GRID, GEVA, GPEN, GXPN
• Technical Skills proficiency in basic malware analysis or digital computer forensics
• Proficiency with Microsoft Excel and Microsoft PowerPoint to filter, calculate, and display data to make analysis more efficient
What We Can Offer You:
We’ve been named a Best Place to Work by the Washington Post.
Our employees value the flexibility at CACI that allows them to balance quality work and their personal lives.
We offer competitive benefits and learning and development opportunities.
We are mission-oriented and ever vigilant in aligning our solutions with the nation’s highest priorities.
For over 55 years, the principles of CACI’s unique, character-based culture have been the driving force behind our success.
Company Overview: At CACI, you will have the opportunity to make an immediate impact by providing information solutions and services in support of national security missions and government transformation for Intelligence, Defense, and Federal Civilian customers. CACI is an Equal Opportunity Employer – Females/Minorities/Protected Veterans/Individuals with Disabilities.
As required by Executive Order 14042, Federal contractor employees are required to be fully vaccinated against COVID-19 by December 8, 2021 regardless of the employee’s duty location or work arrangement (e.g., telework, remote work, etc.), subject to such exceptions as required by law. If selected, you will be required to be vaccinated against COVID-19 and submit documentation of proof of vaccination before starting employment with CACI.