Logo
ATG

Insider Threat Analyst journeyman

ATG, Fort Belvoir, Virginia, United States, 22060


Job Location: Fort Belvoir, VA Job Category: Engineering Clearance:

TS/SCI CI Polygraph

Athena Technology Group, Inc. is a Service-Disabled Veteran-Owned Small Business (SDVOSB) focused on Information Technology and Communications consulting, system engineering, integration, deployment, and operation of state of the art command and control and information systems that deliver a critical network-centric solution to the warfighter. With a proven track record of technical support to our customers, we are looking for innovative industry professionals to join our team.

JOB DESCRIPTION: ATG is currently seeking an insider threat analyst to work with a small team of data analysts to monitor and detect security events, and identify unusual and malicious activity on an enterprise IT system for the Department of Defense. This position is for a sold and funded full- time, salaried employee and will assist in supporting the Headquarters, Department of the Army (HQDA) G-6 in evaluating threat landscapes (internal and external), thoroughly reviewing targeted events, and creatively developing SIEM tool content to enhance capabilities.

REQUIRED SKILLS AND EXPERIENCE:

5+ years of experience in cybersecurity 3+ years of experience using data analytics tools to query big data and derive meaningful business and/or threat intelligence products 2+ years of experience with SIEM Tool query language (e.g. Splunk Enterprise, etc.) and regex. Thorough understanding of insider threat indicators and malicious use cases on an Enterprise IT system Ability to translate and document analyst activities into repeatable processes Deep experience translating business requirements and process into low-friction automation and high-impact systems B.S. degree in computer science, computer engineering, or other technical discipline or equivalent work experience. DOD 8570 IAT II certification (CCNA Security, CySA+, GICSP, GSEC, Security+ CE, CND, or SSCP)

Preferred Education PREFERRED SKILLS AND EXPERIENCE: SIEM tool certification Threat hunting, incident response or penetration testing experience or certification(s) Experience working in a Cybersecurity Operations Center. Engineering or architecture experience with enterprise SIEM tools Engineering or architecture experience with Commercial Cloud services Technical writing and detailed documentation of networks, systems, applications, and personnel procedures.

SECURITY CLEARANCE: US Citizenship and an active DoD TOP SECRET/SCI Clearance are required for the position.