Job Description
These candidates will become part of our clients Department of State (DoS) Diplomatic Security Cyber Mission (DSCM) program providing leading cyber and technology security experience to enable innovative, effective, and secure business processes. Our clients DSCM program encompasses technical, engineering, data analytics, cyber security, management, operational, logistical and administrative support to aid and advise DoS Cyber & Technology Security (CTS) Directorate. This includes protecting a global cyber infrastructure comprising networks, systems, information, and mobile devices all while identifying and responding to cyber risks and threats. Those supporting the program strive to leverage their expert knowledge and propose creative solutions to real-world cybersecurity challenges.
This person will be joining the Cyber Threat Analysis Divisions (DS/CTI/CTAD) Technical Analysis and Special Operations (TASO) team performs advanced cyber threat network hunting, advanced technical analyses (e.g. analysis of malicious code, network traffic, and Web log data), and forensic review of hard drives, mobile devices, and other storage media.
Performing Dynamic and static analysis of malware, or suspected malware, to determine functionality and capability.
Perform behavioral analysis through sandboxing and leveraging virtual machines to simulate enterprise environments.
Reverse engineer malware samples through the use of debugging tools.
Provide a written technical report related to the scope, nature, and characteristics of identified malicious code.
Identify malware IOCs, TTPs and recommend appropriate counter measures.
Perform advanced network threat hunting to detect malicious or suspicious behavior on Department on-premises and cloud-based networks.
Respond to security events received from CIRT and provide comprehensive findings and recommended remediation steps.
Required Skills & Experience
Bachelors Degree and a minimum required of 9 years' total cyber experience with 5 of those years being specific to Malware experience required, or high school diploma/equivalent and minimum 9 years relevant experience.
Ability to obtain Top Secret security clearance is required, can join with a Secret clearance.
Possess one of the following: GREM, CASP+ CE, CCNA, CEH, CISSP, CySA+, or GCIH.
Demonstrated experience performing static and dynamic analysis techniques.
Experience using sandbox and other simulated networked environments for analysis.
Strong critical, creative, and analytical thinking skills.
Expertise in discovering, analyzing, diagnosing, and reporting on malware events, files and network intrusion and vulnerability issues.
Can recommend sound counter measures to malware and other malicious type code and applications which exploit customer communication systems.
Experience developing technically detailed reports that translate complex technical information to non-technical audiences.
Nice to Have Skills & Experience
x
Benefit packages for this role will start on the 31st day of employment and include medical, dental, and vision insurance, as well as HSA, FSA, and DCFSA account options, and 401k retirement account access with employer matching. Employees in this role are also entitled to paid sick leave and/or other paid time off as provided by applicable law.