Scope of Work:
The Threat Intelligence Engineer will help lead the design, development and implementation a cyber threat intelligence program that is capable of supporting multiple entities and stakeholders. The ideal candidate will have 5+ years of progressive experience that demonstrates their ability to meet the Role Requirements listed below.
Strong knowledge of cyber threat intelligence frameworks, languages, and models such as ATT&CK, STIX/TAXII, and attribution models.
Subject matter experience in several of the following areas: cybersecurity operations, network security monitoring, host security monitoring, malware analysis, adversary hunting, modern adversary methodologies, all source intelligence analysis, analytical methodologies, confidence-based assessments, and writing analytical reports.
Previous experience presenting technical analysis in written products and briefings for multiple stakeholders across a variety of technical knowledge and capabilities.
Ability to apply formal intelligence analysis methods, develop hypothesis, and prove/disprove relationships.
Experience with research and analysis, including search tools, devices, and open source intelligence gathering.
Previous experience with analyzing large and unstructured data sets to identify trends and anomalies indicative of malicious cyber activities.
Experience with threat intelligence platforms (e.g. XSOAR TIP, MISP)
Experience with security orchestration automation and response tools and incident response platforms (e.g., XSOAR, TheHive)
Must have demonstrated proficiency and strength in verbal, written, presentation, and communications skills
Degree in related technical field of study, especially cyber threat intelligence, data science and/or cybersecurity
Ability to develop new ideas and techniques that advance the state of the practice for cyber threat intelligence.
Experience with formal analytic frameworks
Experience integrating cyber threat intelligence data into cybersecurity operations
Experience with cybersecurity operations processes and tools and working with cybersecurity datasets to inform incident response and/or hunt operations using cyber threat intelligence.
Demonstrated history of successful execution involving the above Role Requirements.
Demonstrated history of developing work programs, processes, and procedures that provide cyber threat analysis solutions. Preferred experience with governmental organizations.
Ability to think strategically about technical and operational challenges within a SOC, threat intelligence program and experience developing roadmaps and implementation plans for moving that organization forward using cyber threat intelligence outcomes.
They are not considering junior candidates at this time. The candidate will need to be operational starting day one on the job. MISP, STIX/TAXI, MineMeld, SOAR are not just suggestions, they are requirements
Computer Consultants International, Inc.
Why Work Here?Computer Consultants International, Inc. (CCI) is an IT Consulting Firm with more than 20 years experience providing effective, expert-level services in industries such as Construction, Technology, Finance, Healthcare, and Government. CCI focuses on building long-term relationships while completing projects from design to delivery. People are CCI's key component for success. Recruiting utmost-quality individuals for our clients, CCI fields a workforce of individuals who are selected not only because of their technical qualifications but also for their achievements as substantial, contributing human beings. In government work and in the commercial market, high standards of ethics and accountability are critical. Therefore our people are chosen for their integrity and ability to maintain relationships, as well as expertise in their field. To learn more about CCI, visit us online at www.cci-worldwide.com.
Privately held, Never had a layoff in 20 years, Great team, Great customers, great CEO!