Talent.com
serp_jobs.error_messages.no_longer_accepting
Insider Threat Analyst / Hunt Team (Springfield)

Insider Threat Analyst / Hunt Team (Springfield)

ClearanceJobsSpringfield, VA, United States
job_description.job_card.variable_hours_ago
serp_jobs.job_preview.job_type
  • serp_jobs.job_card.full_time
job_description.job_card.job_description

Insider Threat Analyst / Hunt Team

ASRC Federal is seeking experienced Insider Threat Analyst / Hunt Team supporting an Insider Threat Program (ITP) with the Department of Homeland Security. Insider Threat programs proactively identify, prevent and mitigate internal security risks. This exciting cybersecurity opportunity will allow you to put your skills and experience with analysis and leadership to identify insider threats to further the mission of the Insider Threat Program.

Responsibilities :

  • Examine, analyze, and search insider threat data to identify trends, patterns, and insights of potential insider threat indicators.
  • Provide analytical, program support services related to the operation of UAM / UEBA tool.
  • Monitor UAM platform to identify emerging requirements related to insider threat events and coordinate across the enterprise to ensure timely response.
  • Conduct further research on the UAM platform to identify patterns of concerning behavior related to a potential insider threat risk to the DHS enterprise.
  • Provide proactive insider threat-based hunting across the DHS enterprise network, leveraging methodologies and behavioral analytics to detect, investigate, and mitigate anomalous activity and policy violations indicative of malicious insider behavior.
  • Conduct continuous hunt operations across data and log sources, DHS platforms, EDR tools, and network traffic to identify patterns of insider threat behavior.
  • Identify mitigation strategies to assist the investigative team in effectively reducing insider threat risk.
  • Utilize UEBA (User and Entity Behavior Analytics) platforms and techniques to baseline user activity and detect deviations.
  • Provide timely response to critical / high UAM alerts (within 4 hours during normal business hours and provide after-hour support). Normal business hours will be defined as 6am to 10pm Monday - Friday excluding weekends and scheduled holidays. Implement corrective actions to restore normal operations and prevent recurrence. This position is expected to eventually move to shift work to meet the requirement of 24x7 operations at an undetermined later date.

Requirements :

  • Top Secret Clearance with ability to obtain DHS EOD SCI
  • Demonstrated proficiency in vast array of User Activity Monitoring Products and Platforms.
  • Excellent customer service, analytical, problem solving, and interpersonal skills.
  • Ability to work independently and function as an integral part of the team.
  • Excellent oral and written communication skills; technical and business focused, with the ability to document and describe security processes.
  • Demonstrated ability to exercise good judgment, prioritize multiple tasks, and problem solve under pressure of deadlines and resource constraints.

    • Education / Experience :

  • Bachelors degree and (6)+ years of prior relevant insider threat experience or Masters with (4)+ years of prior relevant experience. Additional years of experience with requisite certifications will be considered in lieu of degree.
  • Minimum of 4 years demonstrated knowledge of the intelligence cycle, processes, and organizations.
  • Minimum 4 years demonstrated knowledge of various research tools and procedures and methods of analyzing, compiling, reporting and disseminating intelligence data and information.
  • Minimum of 4 years demonstrated knowledge of research and analytical techniques as applied to difficult and complex assignments in security, law enforcement, and counterintelligence analysis.
  • Minimum of 4 years demonstrated knowledge of Threat Assessment & Mitigation Strategies.
  • Possess a strong analytical background.
  • Have excellent written and verbal skills with ability to deliver briefings to a diverse group of audience
  • Possess the ability to plan, coordinate, research and analyze all-source intelligence information for accuracy, timeliness, and relevance to mission.
  • Possess knowledge of current domestic and international threats to U.S. national security interests.
  • Be adept at establishing networks with relevant security, personnel, and prevention stakeholders to foster program utilization.
  • Be a self-starter capable of working independently to promote program goals.
  • Advanced knowledge of User Activity Monitoring Software (UAM) and solutions.
  • Advanced knowledge of Cybersecurity toolsets designed to support ITP mission activities.
  • Advanced Knowledge of Open-Source toolsets.
  • Working Knowledge of Insider Threat Frameworks; Pathway to Violence & Critical Pathway.

    • Desired Skills and Qualifications :

  • Master's degree from an accredited college or university in Information Technology, computer science, engineering, or related field
  • Experience with EverFox High Speed Guard Platform
  • Proven experience (10+ years) in Intelligence Analysis
  • Experience with User Activity Monitoring products and platforms
  • Proven experience (4+ years) in Threat Assessment & Mitigation
  • Certified Counter-Insider Threat Professional - Fundamentals (CCITP-F)
  • Certified Counter-Insider Threat Professional - Analysis (CCITP-A)
  • Completion of Center for Development of Security Excellence (CDSE) Insider Threat Detection Analysis Course (ITDAC)
  • Completion of Workplace Assessment of Violence Risk (WAVR-21) Workshop
  • Completion of Center for Development of Security Excellence (CDSE) Curriculums; INT311.CU / INT312.CU / CI201.CU

    • ASRC Federal and its Subsidiaries are Equal Opportunity employers. All qualified applicants will receive consideration for employment without regard to race, gender, color, age, sexual orientation, gender identification, national origin, religion, marital status, ancestry, citizenship, disability, protected veteran status, or any other factor prohibited by applicable law.

    serp_jobs.job_alerts.create_a_job

    Insider • Springfield, VA, United States

    Job_description.internal_linking.related_jobs
    Threat Assessment Team Lead

    Threat Assessment Team Lead

    K2 Group, Inc.Arlington, VA, US
    serp_jobs.job_card.full_time
    serp_jobs.filters_job_card.quick_apply
    This is a contingent opportunity Threat Assessment Team Lead is responsible for the pre-assessment coordination requirements and providing installation support for the development and public...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_30
    Senior Cyber Intrusion Detection Analyst

    Senior Cyber Intrusion Detection Analyst

    Vets HiredWashington, D.C., District of Columbia, United States
    serp_jobs.job_card.full_time
    serp_jobs.filters_job_card.quick_apply
    A Senior Cyber Intrusion Detection Analyst is needed to provide advanced incident response and monitoring support.This is a hybrid position based in Washington, D. Saturday & Sunday, Friday 11pm7am,...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_30
    Cyber Defense Threat Hunting Analyst

    Cyber Defense Threat Hunting Analyst

    Resource Management Concepts, Inc.Quantico, VA, US
    serp_jobs.job_card.full_time
    serp_jobs.filters_job_card.quick_apply
    Resource Management Concepts, Inc.RMC) provides high-quality, professional services to government and commercial sectors. Our mission is to deliver exceptional management and technology solutions su...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_variable_days
    • serp_jobs.job_card.promoted
    Threat Assessment Team Lead

    Threat Assessment Team Lead

    Clearance JobsWashington, DC, US
    serp_jobs.job_card.full_time
    This is a contingent opportunity.The Threat Assessment Team Lead is responsible for the pre-assessment coordination requirements and providing installation support for the development and publicati...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_30
    Senior Threat Hunter

    Senior Threat Hunter

    cFocus Software IncorporatedWashington, DC, US
    serp_jobs.job_card.full_time
    serp_jobs.filters_job_card.quick_apply
    Focus Software seeks a Threat Hunter to support the Administrative Offices of the United States Courts (AOUSC) in Washington, DC. This position will require 4 days a week onsite at the Thurgood Mars...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_30
    • serp_jobs.job_card.promoted
    Cyber Threat Hunter

    Cyber Threat Hunter

    Leidos IncAshburn, VA, United States
    serp_jobs.job_card.full_time
    Leidos is seeking a highly motivated and experienced.This role supports the Department of Homeland Security's mission to protect its enterprise-wide information systems from cyber threats through p...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_variable_days
    Crypto Threat Analyst

    Crypto Threat Analyst

    EllipticWashington, Washington DC, US
    serp_jobs.job_card.full_time
    serp_jobs.filters_job_card.quick_apply
    Join a global team of dedicated professionals at the forefront of combating crypto-enabled financial crime.This is a unique opportunity to apply your research and analytical skills as part of a col...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_variable_days
    • serp_jobs.job_card.promoted
    Threat Intelligence Lead

    Threat Intelligence Lead

    CanonicalWashington, DC, United States
    serp_jobs.job_card.full_time
    Be among the first 25 applicants.The Threat Intelligence Lead will own Canonical's threat intelligence strategy and execution, including understanding of which cyber threat actors are targeting Can...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_30
    • serp_jobs.job_card.promoted
    Member of Compliance, Transaction Monitoring

    Member of Compliance, Transaction Monitoring

    Anchorage DigitalWashington, DC, US
    serp_jobs.job_card.full_time
    Member Of Compliance, Transaction Monitoring.At Anchorage Digital, we are building the world's most advanced digital asset platform for institutions to participate in crypto.Anchorage Digital is a ...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_variable_days
    • serp_jobs.job_card.promoted
    Insider Threat Program Investigative Team Analyst

    Insider Threat Program Investigative Team Analyst

    Leidos IncWashington, DC, United States
    serp_jobs.job_card.full_time
    The Digital Modernization Sector at Leidos currently has an opening for a UAM Investigative Team Analyst supporting the HEITS Contract as part of the Department of Homeland Security (DHS) Insider T...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_variable_days
    • serp_jobs.job_card.promoted
    Join Our Talent Network Counter Threat Finance Analyst (Washington, DC)

    Join Our Talent Network Counter Threat Finance Analyst (Washington, DC)

    AmentumWashington, DC, US
    serp_jobs.job_card.full_time
    Counter Threat Finance Analyst (Washington, DC).Amentum is a global leader in advanced engineering and innovative technology solutions, trusted by the United States and its allies to address their ...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_30
    • serp_jobs.job_card.promoted
    Open-Source Intelligence (OSINT) Analyst - Team Lead

    Open-Source Intelligence (OSINT) Analyst - Team Lead

    Xcelerate SolutionsQuantico, VA, US
    serp_jobs.job_card.full_time
    Open-Source Intelligence (OSINT) Analyst - Team Lead.Xcelerate Solutions is seeking an OSINT Analyst Lead assessing contractor compliance with the physical security requirements of sensitive Arms, ...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_variable_days
    • serp_jobs.job_card.promoted
    Cyber Threat Hunt Analyst

    Cyber Threat Hunt Analyst

    Leidos IncAshburn, VA, United States
    serp_jobs.job_card.full_time
    Department of Homeland Security (DHS), Customs and Border Protection (CBP) Security Operations Center (SOC) is a U.Government program responsible to prevent, identify, contain and eradicate cyber t...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_30
    • serp_jobs.job_card.promoted
    Principal Cyber Threat Hunter

    Principal Cyber Threat Hunter

    Leidos IncAdelphi, MD, United States
    serp_jobs.job_card.full_time
    The Leidos Digital Modernization group has a career opportunity for a.This position will support a large Department of Defense (DOD) Cyber Security Service Providers (CSSP) and is responsible for p...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_30
    • serp_jobs.job_card.promoted
    Cyber Security Deception / Threat Hunter (Arlington)

    Cyber Security Deception / Threat Hunter (Arlington)

    AGR, LLCArlington, VA, US
    serp_jobs.job_card.full_time +1
    We are currently seeking an experienced.Senior Cyber Security Deception Engineer / Threat Hunter.Department of State (DoS) Diplomatic Security Cyber Mission (DSCM) program providing leading cyber and...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_variable_days
    • serp_jobs.job_card.promoted
    Cyber Threat Analysis Division Task Lead

    Cyber Threat Analysis Division Task Lead

    Clearance JobsArlington, VA, US
    serp_jobs.job_card.full_time
    Seize your opportunity to make a personal impact as a Project / Task Manager supporting our program.GDIT is your place to make meaningful contributions to challenging projects and grow a rewarding ca...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_30
    • serp_jobs.job_card.promoted
    Insider Threat & Cyber Forensics SME

    Insider Threat & Cyber Forensics SME

    Leidos IncAshburn, VA, United States
    serp_jobs.job_card.full_time
    Department of Homeland Security (DHS), Customs and Border Protection (CBP) Security Operations Center (SOC) is a U.Government program responsible to prevent, identify, contain and eradicate cyber t...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_30
    • serp_jobs.job_card.promoted
    Global Threat Analyst

    Global Threat Analyst

    GoogleWashington, DC, US
    serp_jobs.job_card.full_time
    Security is at the core of Google's design and development process : it is built into the DNA of our products.The same is true of our offices. You're an expert who shares our seriousness about securi...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_variable_days
    • serp_jobs.job_card.new
    Cyber Threat Operations Analyst

    Cyber Threat Operations Analyst

    UmbraArlington, VA, US
    serp_jobs.job_card.full_time +1
    serp_jobs.filters_job_card.quick_apply
    Umbra is an American space technology company delivering advanced systems, from sensors to spacecraft, that empower customers worldwide with unmatched access to critical information from space.Our ...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_variable_hours
    • serp_jobs.job_card.promoted
    Targeting Analyst

    Targeting Analyst

    Leidos IncMcLean, VA, United States
    serp_jobs.job_card.full_time
    National Security Sector's (NSS) Cyber & Analytics Business Area (CABA).Our talented team is at the forefront in Security Engineering, Computer Network Operations (CNO), Mission Software, Analytica...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_30