View Our Website View All Jobs

Cyber Threat Analyst

The Cyber Threat Analyst fuses multiple intelligence disciplines to assess cyber threat capabilities of current and emerging threats to drive insight to inform policymakers/operators.  Conducts research and evaluates technical and all-source intelligence to develop in-depth analysis and assessment on threats to systems, critical networks and critical infrastructure. Analyzes technical and intelligence information to provide cyber threat indicators/indications, warnings, and trends.  Synthesizes and places intelligence information into context; draws insights about the possible implications.  Conducts all-source research to determine adversary capability and intent.  Prepares assessments and cyber threat profiles of current events based on collection and research using classified and open source information sources and understanding of the attackers' motivation, language, organization, and social behaviors, thereby helping organizations become more proactive in their security posture and defense.  Performs all-source intelligence analyses of cyber activities to identify attributes of interest (their tactics, techniques, and procedures [TTPs], motives, and capabilities).  Performs post-event analysis, and produces technical intelligence reports for users, senior officials, and other customers and as representative cases.  Supports all aspects of the intelligence lifecycle (e.g., plan, collect, evaluate, assess, report).


  • Performs threat intelligence activities to proactively detect, identify, respond to, and defeat advanced persistent threats (APTs);
  • Analyze reconnaissance and intrusions attempts utilizing raw technical data;
  • Reconstructs intrusion tactics, techniques, and procedures to identify potential threat actors and nation-state organizations;
  • Identifies, extracts, and leverages intelligence from known or suspected APT intrusions;
  • Builds profiles of both current and potential adversary groups;
  • Utilizes intelligence to proactively defend against and respond to potential and future intrusions;
  • Collaborates with third parties on cyber intelligence matters;
  • Analyzes, identifies, and extracts information from spear-phishing emails;
  • Analyzes, identifies, and extracts information from malicious PDF attachments;
  • Analyzes, identifies, and extracts information from malware;
  • Analyzes, identifies, and extracts information from malicious source code and scripts;
  • Identifies and builds profiles of adversary reconnaissance and exploitation techniques, tactics, and procedures (TTPs);
  • Analyzes and determines technical indicators of compromise (IOC's);
  • Collects information from low-level technical sources (ex. packet captures, TCP/UDP traffic flows, firewall or proxy logs;
  • Specifies and authors IDS signatures (e.g., Snort), proxy or firewall rulesets, anti-virus settings, email filter configurations, and other defensive solutions; and
  • Conducts analysis of network and host data in support of intrusion analysis or enterprise level information security operations.
  • Performs other duties as assigned

Qualifications/Education Requirements:

  • Possesses a Secret security clearance.
  • Threat Analyst 5 possesses at least 9 years of commensurate experience
  • Minimum Education: B.A. or B.S. Degree in Computer Science, Engineering, Business or a related field.
  • Certifications such as CISSP, CEH, GCIA, GCIH, CCNA/CCNP, CCSP, MCSE, IDP and SIEM training and similar technologies


Read More

Apply for this position

Apply with Indeed
Attach resume as .pdf, .doc, or .docx (limit 2MB) or Paste resume

Paste your resume here or Attach resume file

To comply with government Equal Employment Opportunity / Affirmative Action reporting regulations, we are requesting (but NOT requiring) that you enter this personal data. This information will not be used in connection with any employment decisions, and will be used solely as permitted by state and federal law. Your voluntary cooperation would be appreciated. Learn more.
Veteran/Disability status