Job description

Key Responsibilities - Analyze cyber threat data to include malicious software reverse engineering, network traffic analysis, memory forensics, and disk forensics. - Conduct in-depth investigations of cyber intrusions, identifying attack vectors and mitigating vulnerabilities. - Develop and maintain security tools and processes to enhance cyber defense capabilities. - Collaborate with software development teams to integrate security best practices into applications and systems. - Create comprehensive reports and presentations summarizing findings and recommendations to both technical and non-technical audiences. - Stay up-to-date on the latest cyber threats, vulnerabilities, and mitigation techniques through continuous learning and professional development. - Work effectively in team environments, sharing knowledge and expertise with colleagues. - Manage and develop security solutions across multiple platforms and environments. Required Experience/Clearance - 8 years of professional experience in cybersecurity, with a focus on incident response and threat analysis. - Proven experience in analyzing technical data within cyber threat environments. - Applied knowledge of forensic, network, and malware analysis techniques. - Experience working in team environments for software development. - Proficient in using Splunk Enterprise Security. - TS clearance required to start with SCI eligibility Desired Experience - Experience with Microsoft Sentinel. - Experience with various security tools and platforms beyond Splunk. - GIAC Certifications (GMON, GCIH, GCFA, GCIA, GNFA, GCTD, GCFR) - Experience working with DataBricks, Gitlab, and Jira. - Experience in cloud security environments. - Scripting experience (Python, PowerShell, etc.) - Experience with incident response methodologies and frameworks (NIST, etc.).

Requirements