Cyber Intelligence Analyst with Security Clearance

JOB DESCRIPTION: This sub family is responsible for monitoring, detection, mitigation, and response to cyber incidents typically part of a Security Operations/Intelligence Center. Duties include operational Cybersecurity, infrastructure support, and mission support. Specific operational duties include but are not limited to; collecting and analyzing intelligence to correlate adversary tactics, techniques, and procedures, investigating computer and information security incidents, conducting computer forensic network and host analysis, intrusion and threat hunting support, performing penetration tests to evaluate system security, maintaining proficiency in operation tools, creating countermeasures, and identifying trends in adversary behaviors and vulnerabilities. Specific infrastructure support duties include but are not limited to; device scanning (device discovery, Operating System (OS) fingerprinting, service scanning), and passive (non-intrusive) scanning, configuration, testing, deployment and maintenance of infrastructure hardware and software. Specific mission support and full spectrum cyber duties include but are not limited to; operational planning in support of training, exercises, operations and coordination of integrated cyber operations by targeting hostile adversary activities and capabilities. Primary Responsibilities

• Supervise the collection of intelligence on events occurring both internal and external to Department of Defense networks.

• Oversee all-source intelligence support to JFHQ-DODIN operations, Cyber Protection Team (CPT) defensive missions, Command Cyber Readiness Inspections (CCRIs), and Command Cyber Operational Readiness Inspection (CCORIs).

• Enhance situational awareness, situational understanding, and identify possible relationships, trends, and adversary TTPs based on threat intelligence information.

• Direct and develop the process of open-source intelligence research in support of threat discovery or research.

• Research, analyze, corroborate, and assess vulnerability information as it relates to intelligence reporting.
• Analyze and track vulnerability disclosure program (VDP) incidents as it relates to intelligence reporting.

• Ensure JFHQ-DODIN information provided to foreign entities is compliant with federal statues and restrictions. Basic Qualifications

• Active DoD TS/SCI clearance and eligible for C/I Polygraph

• Bachelor's degree in a related discipline with 4-8 years of prior relevant education and experience; additional related years of experience is accepted in lieu of a degree.

• DoDD 8570 IAT Level II Certification (SEC+, CySA, GICSD, etc.) Preferred Qualifications

• Experience with DISA and DoD Networks.

• Demonstrated experience briefing Senior Executive Service (SES) and General Officer/Flag Officer (GO/FO) leadership.

• Experience in intelligence driven defense and/or cyber kill chain methodology.