Are you someone concerned with the security of our nation? Are you driven to protect and serve? Are you skilled in cyber defense? Then SSI is the place for you. We are ensuring our nation's security in a partnership with the Department of Homeland Security. Our partnership focuses on the DHS Security Operations Center (SOC) Support Services Program where we provide around the clock cyber support focusing on some our nation's toughest threats.
Cyber Threat Hunter Lead
Location: Leesburg, VA - Remote
Shift: Regular Days (non-shift work)
Sharp Solutions has an immediate need for a talented Cyber Threat Hunter Team Lead to join our team on this highly visible cyber security single-award IDIQ vehicle that provides enterprise security operations center (SOC) support, cyber analysis, application development, and a 24x7x365 support staff.
Duties will include investigating computer and information security incidents to determine extent of compromise to information and automated information systems, providing computer forensic and intrusion support to high technology investigations in the form of computer evidence seizure, computer forensic analysis, data recovery, and network assessments, researching and maintaining proficiency in tools, techniques, countermeasures, and trends in computer network vulnerabilities, data hiding and network security and encryption.
Work with customer to understand and obtain the scope and requirements of the request. Provide guidance and direction to team members.
Create Threat Models to better understand the DHS IT Enterprise, identify defensive gaps, and prioritize mitigations
Author, update, and maintain SOPs, playbooks, work instructions
Utilize Threat Intelligence and Threat Models to create threat hypotheses
Plan and scope Threat Hunt Missions to verify threat hypotheses
Proactively and iteratively search through systems and networks to detect advanced threats
Analyze host, network, and application logs in addition to malware and code
Prepare and report risk analysis and threat findings to appropriate stakeholders
Create, recommend, and assist with development of new security content as the result of hunt missions to include signatures, alerts, workflows, and automation.
Coordinate with different teams to improve threat detection, response, and improve overall security posture of the Enterprise.
Certifications- must have one of the following:
The candidate must possess an active TS/SCI Clearance. In addition to clearance requirement, all DHS personnel must obtain an EOD. BS degree in Science, Technology, Engineering, Math or related field and 8+ years of prior relevant experience with a focus
|SANS GCIH (GIAC Certified Incident Handler)
SANS GCFA (GIAC Certified Forensic Analyst)
SANS GCIA (GIAC Certified Intrustion Analyst)
SANS GNFA (GIAC Network Forensic Analyst)
SANS GWAPT (GIAC Web Application Pentester)
SANS GPEN (GIAC Penetration Tester)
Offensive Security Certified Professional (OSCP)
SSi is an equal opportunity employer regardless of race, color, religion, creed, sex, marital status, national origin, disability, age, veteran status, on-the-job injury, sexual orientation, political affiliation or belief. Employment decisions are made without consideration of these or any other factors that employers are prohibited by law from considering. Any discriminatory action can be a cause for disciplinary action. SSi also prohibits discrimination against individuals with disabilities and will reasonably accommodate applicants with a disability, upon request, and will also ensure reasonable accommodation for emplo