Description
This position will remain open until filled - Apply on-line at www.wfec.com
A Senior Cyber Threat Analyst in the IT Infrastructure Department is open for placement. This position could be filled at a Cyber Threat Analyst or Senior Cyber Threat Analyst level based on the applicant's education and experience, see the Qualifications section for additional requirements.
SUMMARY - Senior Cyber Threat Analyst: Under the general supervision of the Supervisor, IT Infrastructure, the incumbent performs all aspects of a cyber threat analyst to assist in the defense of WFEC cyber systems and operations. At times, the incumbent will participate/lead exercises and continue obtaining advanced knowledge of Linux, Windows, networking, and information security. The incumbent will possess and exercise a basic understanding of common programming languages, such as C, C++, Java, and other scripting languages (Perl, Python, etc.).
SUMMARY - Cyber Threat Analyst: Under the direct supervision of the Supervisor, IT Infrastructure, the incumbent will participate in professional and on-the-job training to ensure continuing education certifications as needed. The incumbent will work towards basic knowledge of Linux, Windows, networking, and information security. The incumbent will perform risk, vulnerability, and security assessments at WFEC.
ESSENTIAL DUTIES AND RESPONSIBILITIES - include the following; other duties may be assigned. Curate and triage intelligence from multiple sources. Communicate with the Security Operations Team with timely and relevant TTPs, IOCs, and context. Generate reports for management based on data, information, and intelligence derived from analysis. Develop assessments based on cyber intelligence and report recommendations and/or findings to management. Clearly articulate complex concepts both verbally and in writing. Maintain a strong understanding of intelligence surrounding geo-political events and report on correlated activity to management. Act as a liaison between information sharing groups, law enforcement, and intelligence communities. Gather, sort, filter, and analyze raw data into actionable intelligence. Lead threat hunting and root cause analysis on events and misconfigurations. Perform threat research and attribution. Understand the MITRE ATT&ACK, Cyber Kill Chain, and other frameworks. Support collection of intelligence and telemetry information. Reviews logs, configurations, rule sets, user accounts, account groups, and network traffic for adherence to policy/procedure. Work with other cyber security team members to detect, respond, and remediate any events that occur. Tests and implements IDS/IPS rule sets and signatures. Performs network traffic analysis when anomalous traffic needs to be investigated. Assists in conducting incident response and forensic investigations. Analyzes network infrastructure rule sets manually and uses software tools to ensure proper security posture for compliance. Writes reports and briefings related to specific information security issues. Tickets and tracks operational issues related to the security posture of cyber assets which are in scope for this group. Participates in exercises that test policies, procedures, and skills which are required by business and critical operations. Participates in in-house, regulatory, and industry teams including working groups, committees, incident response teams, and business continuity teams as required.
COMPETENCIES: To perform the job successfully, an individual should demonstrate the following competencies:
Analysis/Design: Synthesizes complex or diverse information; collects and researches data; uses experience to complement data; designs workflows and procedures; generates creative solutions; translates concepts and information into images; uses feedback to modify designs; applies design principles; demonstrates attention to detail.
Problem Solving: Identifies and resolves problems in a timely manner; Gathers and analyzes information skillfully; Develops alternative solutions; Works well in group problem solving situations; Uses reason even when dealing with emotional topics.
Professional Knowledge: Generates creative solutions; translates concepts and information into applications; uses feedback to modify recommendations; pursues training and development opportunities; strives to continuously build knowledge and skills; shares expertise with others.
Oral and Written Communication: Speaks clearly and persuasively in positive or negative situations; listens and gets clarification; responds well to questions; demonstrates group presentation skills; participates in meetings; writes clearly and informatively; varies writing style to meet needs; presents numerical data effectively; able to read and interpret written information.
Teamwork: Balances team and individual responsibilities; exhibits objectivity and openness to others' views; gives and welcomes feedback; able to build morale and group commitments to goals and objectives; supports everyone's efforts to succeed.
Planning/Organizing: Prioritizes and plans work activities; uses time efficiently; sets goals and objectives; develops realistic action plans.
Project Management: Develops project plans; coordinates projects effectively; communicates changes and progress; completes projects on time and budget; manages project team activities.
Adaptability: Adapts to changes in the work environment; manages competing demands; changes approach or method to best fit the situation; able to deal with frequent change, delays or unexpected outcomes.
Customer Service: Manages difficult or emotional customer situations; responds promptly to customer needs; solicits customer feedback to improve service; responds to requests for service and assistance; meets commitments to customers.
Cost Consciousness: Works within approved budget; develops and implements cost saving measures; conserves organizational resources.
QUALIFICATIONS: To perform this job successfully, an individual must be able to perform each essential duty satisfactorily. The requirements listed below are representative of the education, experience, knowledge, skills, abilities, and behaviors required. At the option of the hiring official a candidate will be placed in one of these levels based on the qualification requirements.
Education and Experience:
Senior Cyber Threat Analyst - ($92,816 - $145,479): Requires a Bachelor's degree in a related field, five (5) years of directly related experience in information security, cyber threat analysis, signals intelligence, or other cyber security related experience, and have, or be able to obtain, a CISSP certification. Extensive knowledge of cyber threat analysis, excellent written and oral communication skills, networking, as well as proven experience with security technologies and intelligence analysis, is preferred. Industry specific certifications may be substituted for experience at the rate of one (1) year experience for each certification. Directly related experience may be substituted for education at the rate of two (2) years of experience for one (1) year of education.
Cyber Threat Analyst - ($75,894 - $116,486): A Bachelor's degree in a related field is required. Basic knowledge of cyber security and networking, excellent written and oral communication skills, is preferred. Must have, or be able to obtain, a Security+ certification. Directly related experience may be substituted for education at the rate of two (2) years of experience for one (1) year of education.
Language Skills: Ability to read, analyze and interpret general business periodicals, professional journals, technical procedures or governmental regulations. Ability to write reports, business correspondence and procedure manuals. Ability to effectively present information and respond to questions from groups of employees, managers, clients or customers.
Mathematical Skills: Ability to work with mathematical concepts such as probability and statistical inference, fundamentals of plane and solid geometry, trigonometry, calculus and differential equations. Ability to apply concepts such as fractions, percentages, ratios and proportions to practical situations.
Reasoning Ability: Ability to solve practical problems and deal with a variety of concrete variables in situations where only limited standardization exists. Ability to interpret a variety of instructions furnished in written, oral, diagram, or schedule form.
Computer Skills: In addition to the qualifications listed above, knowledge and experience using Microsoft Office products is required.
CERTIFICATES, LICENSES, REGISTRATIONS - Senior Cyber Threat Analyst: Requires a current driver's license. Comptia Security +, CISSP, GIAC, CEH or Engineer-level Operating System certifications is desirable. Must be able to attain CISSP within eighteen (18) months of hire.
CERTIFICATES, LICENSES, REGISTRATIONS - Cyber Threat Analyst: Requires a current driver's license. Comptia Security +, CISSP, GIAC, CEH or Engineer-level Operating System certifications is desirable. Must be able to attain Comptia Security+ within eighteen (18) months of hire.
WORK SCHEDULE REQUIREMENTS: Normally works a weekday schedule, but may be required to work evenings, holidays or weekends. May be required to travel on short notice. On-call nights and weekends will be required for response to anomalous issues.
PHYSICAL DEMANDS: The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions. While performing the duties of this job, the employee is regularly required to sit and talk or hear. The employee is frequently required to use hands to finger, handle, or feel and reach with hands and arms. The employee is occasionally required to stand and walk. The employee must occasionally lift and/or move up to 50 pounds. Specific vision abilities required by this job include close vision, distance vision and color vision.
WORK ENVIRONMENT: The work environment characteristics described here are representative of those an employee encounters while performing the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions. While performing the duties of this job, the employee will be subject to moderate outdoor weather conditions. The noise level in the work environment is usually quiet. In accordance with WFEC Administrative Procedure 805-Alcohol and Drug-Free Workplace this position is classified as "safety sensitive".
MUST MEET ALL PHYSICAL AND ENVIRONMENTAL REQUIREMENTS
WFEC IS AN EQUAL OPPORTUNITY PROVIDER AND EMPLOYER
MINORITIES, FEMALES, DISABILITY, AND
VETS ARE ENCOURAGED TO APPLY
EOE/AA/M/F/DISABILITY/VETS
Apply on company website
Find Connections via Linkedin
