This position will serve as a Cybersecurity Analyst within our Malware and Cyber Threats Program. This Analyst will directly support one of our major healthcare clients conducting research into the latest network cyber threats involving malware, botnets, viruses, cyber threat actors/groups, mobile vulnerabilities, honeypots and new emerging threats. The candidate should have in-depth knowledge of networking, security governance, risk, vulnerability management, lifecycle/remediation, minimum security baselines, and the ability to apply these concepts within their work environment. This role will work collaboratively with other intelligence analysts, technical analysts, private industry partners and federal law enforcement officials.
As a Cybersecurity Analyst you will use your skills and talents as you:
- Research healthcare focused Advanced Persistent Threat (APT) groups and cyber threat actor(s) activity, intrusion set tactics, techniques, and procedures (TTPs).
- Bring a thorough understanding and tracking of the healthcare cyber threat landscape, including identifying and analyzing cyber threats actors, APT TTPs and/or activities to enhance cybersecurity posture of an the organization’s IT operating environment.
- Create signatures within internal IT tools and appliances on known and unknown malware families and malicious traffic.
- Identify, track and investigate threat campaigns, malicious actors with the interest, capability and TTPs (Techniques, Tactics and Procedures).
- Research, analyze and report new vulnerabilities like zero day, CVEs and other network vulnerabilities.
- Collaborate with malware analysts in a lab environment to determine if unknown files (i.e. malware or ransomware) would be blocked by security controls.
- Analyze and aggregate data into appropriate systems and datasets.
- Identify and coordinate cases for cross-sector collaboration within the organization.
- Bring a thorough understanding of how to apply intelligence to reduce risk for this healthcare client.
- Provide actionable intelligence which can be used to prepare a counter strategy and reduce risk for the client.
- Research tools from the intelligence community to run against the network to identify IOCs for the client.
You will need to have:
- Be legally authorized to work in the U.S. and be eligible for a U.S. Government security clearance.
- 2-3 years of threat intelligence experience providing actionable intelligence resulting in the development of appropriate countermeasures, bonus if prior healthcare focused experience.
- Capability to review and evaluate large volumes of data in support of strategic, operational or tactical operations to reduce, mitigate and contain security threats.
- Strong understanding of Microsoft and Linux OS and networking and firewall infrastructure.
- Experience with endpoint protection and vulnerability scanning tools.
- Thorough understanding of the security industry and knowledge in identifying credible threats and malware and ransomware techniques relative to current and emerging vulnerabilities.
- Strong communication (written and verbal) with the ability to brief/communicate information in a concise, effective manner to a wide range of audiences.
- Detail oriented with strong time management skills in order to meet deadlines, complete tasks and respond to partner needs.
- Strong critical thinking/problem solving skills with the ability to exhibit sound judgment.