Tyto Athene, LLC
Job Description
Tyto Athene is searching for an Insider Threat Analyst
to triage anomalous event data and analyze insider threat program datasets to conduct threat analysis.
Responsibilities:
Conduct comprehensive all-source analysis in support of the insider threat mission Triage anomalous event data Access network monitoring, data analytics, and other tools; integrate available information, decipher underlying trends and anomalies; and discern obscure patterns found in the datasets Produce all source analytic products in support of the insider threat mission Aggregate, analyze, and evaluate available program data sources to evaluate insider threat risk Extract and organize data to build metrics, reports, case studies, and trend reports Conduct risk assessments and present findings to a variety of audiences, including very senior decision-makers, written and oral presentations Conduct research to support ongoing analytic efforts Prepare and produce situational awareness and warning reports related to insider threat Assist in the preparation and production of analytical reports identifying areas for efficiencies in the production process Provide editing and quality control of program products Review insider threat information in support of meeting program mission requirements and timelines Provide recommendations to contractor and government leadership on ways to improve the insider threat program Required
Bachelor's degree in computer science, Information Technology, or related field and 8 years of relevant experience or a Master's degree and 4 years. Minimum three (3) years of general experience and two (2) years of cyber experience Strong natural aptitude for analytical problem-solving Understanding of insider threat program missions Basic familiarity with risk-scoring concepts and some exposure to data analytics tools/programs Knowledge of the following:
User Activity Monitoring (UAM) or User and Entity Behavior Analytics (UEBA)tools SIEM Operation Understanding of how exploits work and appear within network traffic Intrusion detection technology Awareness and understanding of popular attack tools and malware Ability to communicate effectively the actual status of an insider threat incident, attack, or other issue Awareness of tradecraft used by nation state APT actors
Extremely motivated self-starter with strong written and verbal communication skills, and the ability to create technical reports on analytic findings Ability to exercise discretion and confidentiality while performing in highly sensitive roles and missions Ability to learn rapidly and begin contributing positively within a cohesive team environment
Desired:
Experience as an insider threat analyst is ideal Experience with operational security, including security operations center (SOC) Knowledge of the TCP/IP networking, operating systems, and cybersecurity technologies
Clearance:
Active Secret clearancerequired
Certification: DoD 8570 IAM/IAT Level II certification. This will change to a DoD 8140 equivalent once a DISA 8140 policy is released.
Location: This is an on-site role with expectations of being on the client site in Arlington, VA five days a week.
Additional Information
After several strategic acquisitions in 2021, Tyto Athene has experienced enormous opportunity and growth. Aside from being the leading provider of mission-focused IT and Cyber services and solutions to critical U.S. government agencies, Tyto is well-positioned to meet the growing demand for network modernization requirements across the federal enterprise.
Our employees are the key to the innovation that has made Tyto a success. We provide an environment that is geared to reward potential, innovation, and teamwork. If you would like to unleash your creativity and your careerit's time to join Team Tyto!
Tyto Athene is searching for an Insider Threat Analyst
to triage anomalous event data and analyze insider threat program datasets to conduct threat analysis.
Responsibilities:
Conduct comprehensive all-source analysis in support of the insider threat mission Triage anomalous event data Access network monitoring, data analytics, and other tools; integrate available information, decipher underlying trends and anomalies; and discern obscure patterns found in the datasets Produce all source analytic products in support of the insider threat mission Aggregate, analyze, and evaluate available program data sources to evaluate insider threat risk Extract and organize data to build metrics, reports, case studies, and trend reports Conduct risk assessments and present findings to a variety of audiences, including very senior decision-makers, written and oral presentations Conduct research to support ongoing analytic efforts Prepare and produce situational awareness and warning reports related to insider threat Assist in the preparation and production of analytical reports identifying areas for efficiencies in the production process Provide editing and quality control of program products Review insider threat information in support of meeting program mission requirements and timelines Provide recommendations to contractor and government leadership on ways to improve the insider threat program Required
Bachelor's degree in computer science, Information Technology, or related field and 8 years of relevant experience or a Master's degree and 4 years. Minimum three (3) years of general experience and two (2) years of cyber experience Strong natural aptitude for analytical problem-solving Understanding of insider threat program missions Basic familiarity with risk-scoring concepts and some exposure to data analytics tools/programs Knowledge of the following:
User Activity Monitoring (UAM) or User and Entity Behavior Analytics (UEBA)tools SIEM Operation Understanding of how exploits work and appear within network traffic Intrusion detection technology Awareness and understanding of popular attack tools and malware Ability to communicate effectively the actual status of an insider threat incident, attack, or other issue Awareness of tradecraft used by nation state APT actors
Extremely motivated self-starter with strong written and verbal communication skills, and the ability to create technical reports on analytic findings Ability to exercise discretion and confidentiality while performing in highly sensitive roles and missions Ability to learn rapidly and begin contributing positively within a cohesive team environment
Desired:
Experience as an insider threat analyst is ideal Experience with operational security, including security operations center (SOC) Knowledge of the TCP/IP networking, operating systems, and cybersecurity technologies
Clearance:
Active Secret clearancerequired
Certification: DoD 8570 IAM/IAT Level II certification. This will change to a DoD 8140 equivalent once a DISA 8140 policy is released.
Location: This is an on-site role with expectations of being on the client site in Arlington, VA five days a week.
Additional Information
After several strategic acquisitions in 2021, Tyto Athene has experienced enormous opportunity and growth. Aside from being the leading provider of mission-focused IT and Cyber services and solutions to critical U.S. government agencies, Tyto is well-positioned to meet the growing demand for network modernization requirements across the federal enterprise.
Our employees are the key to the innovation that has made Tyto a success. We provide an environment that is geared to reward potential, innovation, and teamwork. If you would like to unleash your creativity and your careerit's time to join Team Tyto!