Cyber Threat Intelligence Analyst

ClearFocus Technologies, a HUBZone certified company, is located in Leesburg, VA.We specialize in cybersecurity and support multiple government and commercial clients for a variety of missions. We value our clients, integrity and employees and believe a single person can make a difference!

We are committed to attracting and retaining the best and brightest talent who desire to work with industry leading technology to stay on top of their profession. We provide an excellent benefit package which includes medical, dental, vision, paid time off, 401(k), paid professional development reimbursement and more!

We are seeking a candidate for a Cyber Intelligence Analyst opportunity that is Hybrid/ Washington, DC. All applicants must have an active TS/SCI

Description : Cyber Threat Intelligence Analysts provide source monitoring activities, cyber threat analysis and mitigation courses of action, provide the actionable intelligence used in organizational IT Asset protection, strategic cyber threat trending and situational awareness of customer leadership. The cyber intelligence analysts compile cyber threat data gathered through independent research and analysis along with Security Operations Center activity, and look at emerging technology, techniques and adversarial capabilities and tactics. On a near real-time basis, they analyze cyber threat Indications & Warning and fuse unclassified/open-source cyber threat information correlating internal activity to external indicators across many boundaries. The correlation provides insight into every stage of a potential intruder and cyber kill chain as well as other activities in Cyber Threat Intelligence.

Candidate Should be able to:

Be able to use threat models like: DHS Intrusion Detection Chain (IDC), Lockheed Martin Cyber Kill Chain, Diamond Model and MITRE ATT&CK Framework.

Demonstrate a clear understanding of common cybersecurity adversaries.

Demonstrate understanding of intelligence analysis concepts, lexicon, and tradecraft.

Have a solid foundational understand of OSINT and closed source intelligence databases.

Apply common analytical techniques.

Vet and assess Indicators of Compromise.

Cluster intrusion information to assess ongoing threats to an organization's environment.

Perform link analysis to determine correlation between disparate pieces of information.

Minimum Proficiencies:

Strong writing experience.

Intermediate to advanced skills with Microsoft excel.

Comprehensive knowledge of and experience using threat models for analyzing threat information.

Demonstrated application of analytical techniques or frameworks to create finished intelligence products.

Intrusion Set tracking and clustering.

Basic Cybersecurity foundation includes understanding of atomic indicators, networking concepts, email analysis, intrusion detection and monitoring capabilities.

Experience with Threat Intelligence Platforms (desired but not required)

LCAT Requirements:

Bachelor's Degree OR five (5) years intelligence-related experience

Experience in Cyber Intelligence concepts and implementation

Experience in cyber intrusion kill chain concepts and implementation.

Experience writing Cyber Threat Intelligence products and white papers in clear language to senior leadership.

Top Secret, SCI Clearance (active)