Principal Threat Hunter (Principal Cyber Security Analyst), NORTH LAS VEGAS, NV

NORTH LAS VEGAS, NV Mission Support and Test Services, LLC

LEARN MORE / APPLY

Overview

Mission Support and Test Services, LLC (MSTS) manages and operates the Nevada National Security Site (NNSS) for the U.S. National Nuclear Security Administration (NNSA). Our MISSION is to help ensure the security of the United States and its allies by providing high-hazard experimentation and incident response capabilities through operations, engineering, education, field, and integration services and by acting as environmental stewards to the Site’s Cold War legacy. Our VISION is to be the user site of choice for large-scale, high-hazard, national security experimentation, with premier facilities and capabilities below ground, on the ground, and in the air. (See NNSS.gov for our unique capabilities.) Our 2,750+ professional, craft, and support employees are called upon to innovate, collaborate, and deliver on some of the more difficult nuclear security challenges facing the world today. In this environment, the best ideas need to be voiced and every opinion matters. As such, MSTS places great value on Diversity, Equity, and Inclusion and is committed to a diverse and equitable workforce, with an inclusive culture that values and celebrates the diversity of our people, talents, ideas, and perspectives.

MSTS offers our full-time employees highly competitive salaries and benefits packages including medical, dental, and vision; both a pension and a 401k; paid time off and 96 hours of paid holidays; relocation (if located more than 75 miles from work location); tuition assistance and reimbursement; and more.

MSTS is a limited liability company consisting of Honeywell International Inc. (Honeywell), Jacobs Engineering Group Inc. (Jacobs), and HII Nuclear Inc.

Responsibilities

MSTS is seeking an experienced candidate for a Principal Threat Hunting Analyst. The position is responsible managing threat hunting activities across the enterprise. Support and perform all phases of incident response life cycle: preparation, analysis, containment, eradication, remediation, recovery, and post-incident activity. Ensure all incident response processes and associated threat hunting techniques are well-defined, documented, tested, and managed. Evaluation of threat intel to determine potential evolving threats to the enterprise and adapt/improve threat hunting and detection techniques accordingly. Conduct forensics: host-based disk and memory as well as network; analyze to determine root cause and impact. Development of use cases mapped to common frameworks (e.g., MITRE ATT&K) for detecting new/evolving threats, including supporting content for security tools.

Key Responsibilities

Develop and manage an enterprise threat hunting program. Support and perform all phases of the incident response life cycle: preparation, analysis, containment, eradication, remediation, recovery and post-incident activity.

Manage programs and oversee processes in support of cyber threat intelligence analysis.

Mentor and train junior analysts and assist with prioritizing and completion of tasks.

Identify and prioritize cyber threats using open and closed source research into suspicious activity to collect and analyze information on adversary behavior.

Maintain awareness of trends and risks that can affect the organization as it relates to the intersection between geopolitics, third-party risk, and the cyber threat landscape.

Create and deliver a range of written and verbal products that arm cyber defense teams with actionable intelligence and provide organizational leaders with curated information that influences risk-based decision-making.

Review current Cyber Security threat information and assists the Threat Evaluation Team with mitigating vulnerabilities identified.

Collaborate with other outside Cyber Security interests such as Counterintelligence, other DOE sites, US CERT, and law enforcement.

Assist with data calls, FISMA reporting, compliance scanning and reporting, continuous monitoring, and compiling reports for auditors.

Perform other duties assigned by Management.

Qualifications

Bachelor’s degree or equivalent training and experience in a computer-related field and at least 8 years of related experience.

Experience with structured analytic techniques (e.g., Diamond Model, Cyber Kill Chain) as well as a proven understanding of the MITRE ATT&CK framework.

Experience with the utilization of Open-Source Intelligence (OSINT) as well as closed intelligence sources.

Experience analyzing raw data points from technical security controls, to include web proxy, firewalls, IPS, IDS, enterprise antivirus solutions, etc.

Experience with engineering security detections and response technology integration (SOAR & SIEM), as well as Threat Intelligence Platform (TIP) product ingestion to improve proactive security measures.

Experience with link analysis tools.

Familiarity with the fundamentals of agile project management.

Familiar with compliance frameworks, security best practices, and product security baselines.

Experience using configuration management tools in a production environment.

Strong IT background, including networking fundamentals and systems. Able to demonstrate thorough understanding of basic principles, theories, standards, practices, protocols, and procedures used in Cyber Security.

Possess considerable organization and project management skills.

Ability to maintain strict confidentiality.

Ability to communicate effectively in English, both verbally and in writing, sufficient to communicate with coworkers, customers, write clear and concise reports, gather information, and collect information.

Ability to use multiple electronic devices including standard office machines, cellular phones, and security appliances.

General understanding of cybersecurity controls used to mitigate vulnerabilities.

Preferred Qualifications:

Certified Information Systems Security Professional (CISSP)

GIAC Security Essentials (GSEC)

GIAC Cyber Threat Intelligence (GCTI)

GIAC Certified Forensic Analyst (GCFA)

The primary work location will be at the Losee Road facility located in North Las Vegas, Nevada.

Work schedule will be 4/10’s Monday through Thursday (subject to change).

Pre-placement physical examination, which includes a drug screen, is required. MSTS maintains a substance abuse policy that includes random drug testing.

Must possess a valid driver’s license.

MSTS is required by DOE directive to conduct a pre-employment drug test and background review that includes checks of personal references, credit, law enforcement records, and employment/education verifications. Applicants offered employment with MSTS are also subject to a federal background investigation to meet the requirements for access to classified information or matter if the duties of the position require a DOE security clearance. Substance abuse or illegal drug use, falsification of information, criminal activity, serious misconduct or other indicators of untrustworthiness can cause a clearance to be denied or terminated by DOE, resulting in the inability to perform the duties assigned and subsequent termination of employment. In addition, Applicants for employment must be able to obtain and maintain a DOE Q-level security clearance, which requires U.S. citizenship, at least 18 years of age. ReferenceDOE Order 472.2 (https://www.directives.doe.gov/directives-documents/400-series/0472.2-BOrder-chg1-pgchg) , “Personnel Security”. If you hold more than one citizenship (i.e., of the U.S. and another country), your ability to obtain a security clearance may be impacted.

Department of Energy Q Clearance (position will be cleared to this level). Reviews and tests for the absence of any illegal drug as defined in10 CFR Part 707.4 (http://www.ecfr.gov/cgi-bin/text-idx?SID=14b1c770db022992d237769fbe9fc519&mc=true&node=se10.4.707 14&rgn=div8) , “Workplace Substance Abuse Programs at DOE Sites,” will be conducted. Applicant selected will be subject to a Federal background investigation, required to participate in subsequent reinvestigations, and must meet the eligibility requirements for access to classified matter. Successful completion of a counterintelligence evaluation, which may include a counterintelligence-scope polygraph examination, may also be required. Reference10 CFR Part 709 (http://www.ecfr.gov/cgi-bin/text-idx?tpl=/ecfrbrowse/Title10/10cfr709 main_02.tpl) , “Counterintelligence Evaluation Program.”

MSTS is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, veteran status or other characteristics protected by law. MSTS is a background screening, drug-free workplace.

Annual salary range for this position is: $113,276.80 – $172,744.00.

Starting salary is determined based on the position market value, the individual candidate education and experience and internal equity.

Posted Date1 month ago(11/14/2024 11:17 AM)

Job ID2024-7898

of Openings1

CategoryInformation Technology

TypeFull-Time

Location : CityNorth Las Vegas

Location : State/Province (Full Name)Nevada

S:SKCYB-CYBER-THREAT SKCYB

LEARN MORE / APPLY

Mission Support and Test Services, LLC

BillGoldenJobs.com Jobs Careers

Job Hiring / NORTH LAS VEGAS, NV / Principal Threat Hunter (Principal Cyber Security Analyst) / Mission Support and Test Services, LLC >> APPLY/LEARN MORE >> https://de.jobsyn.org/0d536d1810ec4464b282336aa94fbaaf8003 >> #job #jobs #hiring #BGJobs   

+++++++++++++++
? Looking for more jobs like this? Find more at CareerOneStop, sponsored by the U.S. Department of Labor Employment and Training Administration.
+++++++++++++++

US Work-eligible

NORTH LAS VEGAS, NV

Share:

More Posts

BillGoldenJobs.com Bill Golden

Onsite Russian Interpreter / LOUISVILLE KY

US Work-eligible … We currently have a need for Onsite Russian Interpreters in the Louisville, Kentucky area who have a sincere desire to use their language skills to help people and are passionate about what they do. … Propio Language Services / Louisville, KY 17/11/2024 12:10:45 PMSKLNGRUS

BillGoldenJobs.com Bill Golden

Russian Language Cataloger, WASHINGTON DC

US Work Eligible … responsible for cataloging our collection of books in the Russian language for a major federal library. Proven experience in transliteration. Strong knowledge of cataloging standards, including but not limited to RDA, AACR2, LCSH, LCC and MARC21, BIBCO and NACO. … Library Systems & Services / DC_WASHINGTON

BillGoldenJobs.com by IntelligenceCareers.com

Russian Language Analyst / FORT MEADE MD

TS/SCI with Poly … Scanning, sorting/categorizing foreign language written and verbal materials to recover essential elements of information … Huntington Ingalls Industries / Authorized to work in USA / MD_FORT MEADE

BillGoldenJobs.com by IntelligenceCareers.com

Russian Linguist, OSINT – CAT III / Hampton,Virginia

TS/SCI Security Clearance … Linguists will provide foreign language interpretation and translation/transcription services to support userCounter-Intelligence/Human Intelligence (CI/HUMINT), Signals Intelligence (SIGINT), and Open-Source Intelligence (OSINT) requirements and other high priority tasks supporting real world operations pursuant to the mission. … Global Dimensions, LLC.

Send Us A Message

Principal Threat Hunter (Principal Cyber Security Analyst), NORTH LAS VEGAS, NV

US Work-eligible ... Mission Support and Test Services, LLC / NORTH LAS VEGAS, NV North Las Vegas, NV , , SKINT, SKCYB, 18/12/2024 2:32:33 AMSKCYBTHREAT
BillGoldenJobs.com

BillGoldenJobs is an IntelligenceCareers.com website
~~~ Focused on information-centric careers across all industries ~~~
Search Jobs / Hot Job Indexes / About