We have an exciting opportunity for a Cyber Threat Analyst to join our team.
Key Responsibilities:
• Identifies and assesses the capabilities and activities of cyber criminals or foreign intelligence entities; produces finds to help initialize or support law enforcement and counterintelligence investigations or activities.
• Identify and develop threat signatures from all available sources
• Maintain threat indicators within the threat intelligence platform
• Implement and support standard procedures for incident response
• Interface with Business Unit Information System Security Officers and Incident Response Teams
• Implement a dynamic, advanced Risk-Based Alerting (RBA) security framework within Splunk
• Create and test detections written in advanced Splunk Programming Language (SPL)
• Perform analysis on hosts running on a variety of platforms and operating systems, to include, Microsoft Windows & Linux.
• Perform analysis of log files from a variety of sources (e.g., individual host logs, network traffic logs, firewall logs, and intrusion detection system logs) to identify possible threats to network security.
• Leverage tools including Splunk, Tanium, Firepower, Azure, GoogleCloud, SentinelOne, SESC suite as part of duties performing cyber incident response analysis.
• Act as an observer to Red Team penetration testing exercises and collaborating with Cybersecurity Operations Center (CSOC)
• Correlate event or incident data to identify specific vulnerabilities and make recommendations that enable expeditious remediation.
• Work with a diverse team of analysts in conducting incident triage, incident handling, and remediation.
Required Experience/Skills:
• 3-5 years of experience with security operations and incident response
Other Requirements:
• Candidates must either be US Citizens or Permanent Residents
• Candidates must have resided in the United States for the past 5 years
• Candidates must not have traveled outside of the United States for a combined total of 6 months or greater in the past 5 years
• This position requires successful completion of a background check, drug screen, and a credit check.
• Candidates must be local to the job location listed below
Desired Experience/Skills:
• One or more of the following Certification(s): CISSP, CISA, CISM, GIAC, RHCE.
Education: Bachelor's or Master's Degree in Computer Science, Information Systems, or other related field. Or equivalent work experience.
Benefits: Full-time employees are eligible for benefits including time-off benefits, such as vacation time and holiday pay, and insurance and other plan benefits.
Location: Morrisville, NC
About Us:
Bay State Computers, Inc. is a professional services firm and a leading provider of Information Technology (IT) services and products to the U.S. Federal Government and Industry. Bay State brings together experienced IT professionals and the latest state-of-the-art technology tools, practices, and products to support projects and task order requirements for our customers. For more information about Bay State visit our website and connect with us on LinkedIn.
Bay State Computers, Inc. is an Equal Opportunity/Affirmative Action Employer. All qualified candidates will receive consideration for this position regardless of race, color, creed, religion, national origin, age, sex, citizenship, ethnicity, veteran status, marital status, disability, or any other characteristic protected by applicable law.
