ASSIGNMENT DESCRIPTION: This position is located in Springfield, VA. Purpose of this position is to serve as a CI Cyber Officer, performing CI Cyber Threat Analyst in support of National Geospatial-Intelligence Agency (NGA), Office of Counterintelligence (SIC).
JOB SUMMARY: CI Cyber Threat Analyst will produce on average per annum, 36 weekly threat reports, 8 monthly threat reports, three quarterly threat reports, and one annual threat study for each specific focus area. In addition, each analyst will average 6 reports of inquiry (ROI) and or requests for information (RFI) and publish or contribute to 9 Intelligence Information Reports (IIR). Finally, each analyst will produce on average, 48 weekly status reports. Reports will conform to the information below.
DUTIES:
- Produce weekly, monthly, quarterly, and annual actionable Technical CI (Cyber /TSCM/TEMPEST) threat reports in collaboration with teammates. NGA partners with Intelligence Community (IC) peers, as necessary.
- Produce CI Information Reports and IIRs from data collected and reported by either the Technical CI team or the NGA cyber security personnel.
- Perform inquiries of anomalous activity using automated investigative tools (For example: M3, Palantir, TAC, ARCSIGHT, RSA Security Analytics, CCD, QLIX, TIDE or Criss Cross.
- Provide Technical CI advice and expertise in support of CI inquiries, operations and issues.
- Develop leads by detecting anomalous activity, conducting open source and classified research, and liaison with internal and external partners.
- Conduct research, evaluate collection, and perform analysis on Technical CI intelligence topics of interest to leadership, analysis, and customers.
- Demonstrate ab ability to draw high-quality, appropriate and objective conclusions from information in a timely manner.
- Research, analyze, and synthesize All-Source data to identify patterns, commonalities, and linkage.
- Demonstrate current subject matter expertise on Technical CI issues, threats and trends. (For example: Cyber threats and Technical Surveillance threats.)
- Demonstrate and master the ability to self-edit and produce clearly written, properly sourced and grammatically correct intelligence products that adhere to established style guide and template standards.
- Demonstrate proficiency in use of bottom-line up-front (BLUF) writing.
- Display an ability to collaboratewith internal NGA and external IC/Cyber community members.
- Coordinate CI Cyber activities originating from Enterprise Incident Response Events.
- Conduct liaison between CI Office and Cyber Security Operations Center (CSOC)
- Perform threat analysis, threat forecasts, threat alerts, and recommend countermeasures.
SKILLS AND EXPERIENCE:
REQUIRED: Shall possess a minimum of 7 years Threat Analysis experience of which at least 5 of those include Technical Analysis experience or cyber investigations. Shall possess a Bachelor’s degree in any discipline.
DESIRED: Be a credentialed graduate of an accredited federal or DoD CI training academy. Possess a Bachelor’s degree in Science, Technology, Engineering or Mathematics discipline. Possess post-graduate degree in Science, Technology, Engineering or Mathematics disciplines. Demonstrated experience with foreign adversaries’ security and intelligence services, terrorist organizations, and threats posed to the US Government.
ADDITIONAL JOB REQUIREMENT:
Minimum Clearance Required: Top Secret security clearance with access to Sensitive Compartmented Information (TS/SCI).