CYBER VULNERABILITY ANALYST (PEN TESTING/RED TEAM)

Job Description

Company: EOA Technologies LLC

Location: Fort Meade, US

About the position

EOA Technologies is seeking a Cyber Vulnerability Analyst with Penetration Testing/Red Team experience and a deep understanding of adversary tactics, techniques, and procedures (TTPs) and ability to identify system vulnerabilities in order to communicate defensive recommendations to other analysts.

Responsibilities
• Ability to understand data in various formats to extract and enrich information to enhance its value.
• Experience with XKS creating general queries, fingerprinting, and identifying atypical events.
• Experience with Elastic/Splunk/ or other Security Information and Event Management (SIEM) experience creating visualizations and dashboards.
• Understanding of TCP/IP communication protocols and packet flows based on IP traffic; analysis of Packet Capture (PCAP) traffic in Wireshark
• Familiarity writing signatures in Zeek and/or Snort
• Ability to work with development teams and articulate requirements/enhancements to secure capabilities and tools.
• Ability to perform log file analysis including creating threat intelligence reports that indicate findings, mitigations, and confidence.
• Experience fanning advanced analytics, network diagrams, and other forms of associated knowledge to further understand systems, networks, environments, and adversaries.
• Experience working with IC mission cybersecurity analysts on understanding the adversary and developing mission specific TTPs.
• Document findings, create detailed reports, and present results to technical and non-technical stakeholders.
• Excellent written and verbal communication skills for both technical and non-technical audiences.

Requirements
• Possess an active TS/SCI with Polygraph security clearance
• Must have a Bachelor’s Degree in computer science, information systems, network forensics or other data analysis roles.
• Seven (7+) years’ experience working in the areas of intelligence, information security, network forensics, insider threat or security operations.
• Experience with penetration testing | Red Team background.

Nice-to-haves
• Relevant certifications (e.g., GCTI, OSCP, GIAC, CEH, CRT) are not required but are a plus.

Source: Teal