ASSIGNMENT DESCRIPTION: This position is located in Springfield, VA. Purpose of this position is to serve as a CI Cyber Officer, performing CI Cyber Technical Analyst in support of National Geospatial-Intelligence Agency (NGA), Office of Counterintelligence (SIC).
JOB SUMMARY: CI Cyber Technical Analyst will ensure all required reports are complete with minimal errors and that all processes, activities, and reports are conducted with in established time frames. The Team Chief will also ensure analysts are trained in and follow the current standard operating procedures.
DUTIES:
- Support team members in completing forensics reports. CI Cyber Inquiries, and monthly, quarterly, and annual CI Cyber Threat reports. Support includes, but is not limited to, written and technical analysis that contributes to the understanding of a particular threat or situation.
- Identify, analyze, define, and coordinate user, customer and stakeholder needs and translate them into technical requirements.
- Detect anomalous activity through network data analysis.
- Develop custom scripts/programs for automated cyber analytical tools.
- Record best practices, lessons-learned, processes and procedures, and other pertinent quality topics in appropriate formats.
- Evaluate Intrusion Detection, incident tickets, event and log analysis, security change tracking and other network security systems and devices.
- Provide written reports based on findings.
- Perform work without applicable direction and exercising considerable latitude un the determination of technical objectives of assignments.
- Participate in special projects as required.
- Assist in the development and delivery of malware threat awareness products and briefings.
- Participate in technical meetings and working groups to address issues related to malware threats and vulnerabilities.
- Collaborate with customers and team members consisting of computer security and CI investigators and forensic analysts and other internal and external organization to facilitate a premier malware program.
- Thoroughly investigate instances of malicious code to determine attack vector, payload, potential origin, and determine extent of damage and data exfiltration.
- Develop analysis and make recommendations for the purchase of software that will mitigate malware intrusions.
- Identify risks to computer systems and make recommendations for corrective actions.
- Coordinate CI Cyber activities originating from Enterprise Incident Response Events.
- Conduct liaison between CI Office and CSOC.
- Perform threat analysis, threat forecasts, threat alerts, and recommend countermeasures.
SKILLS AND EXPERIENCE:
REQUIRED: Shall possess a minimum of 11years Top network analysis experience. Shall possess a Bachelor’s degree in any discipline.
DESIRED: Be a credentialed graduate of an accredited federal or DoD CI training academy. Possess a DoD Cyber Crimes Investigator certification. Possess a Bachelor’s degree in Science, Technology, Engineering or Mathematics discipline. Possess post-graduate degree in Science, Technology, Engineering or Mathematics disciplines. Demonstrated experience with malware analysis. Demonstrated experience with foreign adversaries’ security and intelligence services, terrorist organizations, and threats posed to the US Government.
ADDITIONAL JOB REQUIREMENT:
Minimum Clearance Required: Top Secret security clearance with access to Sensitive Compartmented Information (TS/SCI).