- 
        ICS/SCADA Cyber Analyst
- Parsons Corporation (Annapolis Junction, MD)
- 
             In a world of possibilities, pursue one with endless opportunities. Imagine Next! At Parsons, you can imagine a career where you thrive, work with exceptional people, and be yourself. Guided by our leadership vision of valuing people, embracing agility, and fostering growth, we cultivate an innovative culture that empowers you to achieve your full potential. Unleash your talent and redefine what’s possible. Job Description: Parsons is looking for a Cyber Threat Analyst with subject matter expertise in industrial control systems and critical infrastructure (ICS/SCADA) to join our team. In this role you will be focused on conducting continuous research on emerging threats and threat actor activity to identify and assess the capabilities and activities of cyber criminals and/ or foreign intelligence entities. You will work as part of a team that analyzes data and prioritizes vulnerabilities with the goal to prevent and eradicate threats to critical U.S. systems. What Required Skills You'll Bring: + Must have a Bachelor’s Degreen in computer science, international relations, information security, or a related field. Master’s Degree is preferred but not required. + Seven (7) years’ experience working in the areas of intelligence, information security, network forensics or insider threat with focus on Industrial Control Systems/Supervisory Control and Data Acquisition (ICS/SCADA) systems. + Subject matter expertise understanding the unique components, protocols, and architectures of ICS/SCADA systems. + Ability to understand data in various formats to extract and enrich information to enhance its value. + Experience working with development teams to articulate requirements/enhancements to capabilities and tools. + Experience with XKS creating general queries, fingerprinting, and identifying atypical events. + Experience with Elastic/Splunk/ or other Security Information and Event Management (SIEM) experience creating visualizations and dashboards. + Understanding of TCP/IP communication protocols and packet flows based on IP traffic; analysis of Packet Capture (PCAP) traffic in Wireshark + Familiarity writing signatures in Zeek and/or Snort + 5+ years of experience: + Working within a cybersecurity mission environment using tools and capabilities to generate threat intelligence. This includes working with cybersecurity analyst teams in more than one mission space to perform data analysis with a deep understanding of adversary tradecraft. + Independently performing software engineering functions that directly align/integrate into the mission cybersecurity architecture and capabilities with overall understanding of the design, data flow, and interfaces. + Independently creating cybersecurity mission specific and tailored tradecraft (e.g. fingerprints, signatures, indicators etc.) + Creating log file analysis including creating threat intelligence reports that indicate findings, mitigations, and confidence. + Performing network communications and traffic analysis as well as analysis across disparate data sets to discover and inform cyber operations. + Performing advanced queries at scale including knowledge of a diverse range of data sources (e.g. open source, intelligence, partner) to enhance and enrich reporting as well as forming advanced analytics and network diagrams. + Implementing best practices for knowledge management and applying techniques to create automated solutions in support of the cybersecurity analytic mission. + U.S. Citizenship + Active TS/SCI security clearance with polygraph Security Clearance Requirement: An active Top Secret SCI w/Polygraph security clearance is required for this position. This position is part of our Federal Solutions team. The Federal Solutions segment delivers resources to our US government customers that ensure the success of missions around the globe. Our intelligent employees drive the state of the art as they provide services and solutions in the areas of defense, security, intelligence, infrastructure, and environmental. We promote a culture of excellence and close-knit teams that take pride in delivering, protecting, and sustaining our nation's most critical assets, from Earth to cyberspace. Throughout the company, our people are anticipating what’s next to deliver the solutions our customers need now. Salary Range: $155,600.00 - $280,100.00 We value our employees and want our employees to take care of their overall wellbeing, which is why we offer best-in-class benefits such as medical, dental, vision, paid time off, 401(k), life insurance, flexible work schedules, and holidays to fit your busy lifestyle! Parsons is an equal opportunity employer, and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability, veteran status or any other protected status. We truly invest and care about our employee’s wellbeing and provide endless growth opportunities as the sky is the limit, so aim for the stars! Imagine next and join the Parsons quest—APPLY TODAY! Parsons is aware of fraudulent recruitment practices. To learn more about recruitment fraud and how to report it, please refer to https://www.parsons.com/fraudulent-recruitment/ . About Us Parsons is a digitally enabled solutions provider focused on the defense, security, and infrastructure markets. With nearly 75 years of experience, Parsons is uniquely qualified to deliver cyber/converged security, technology-based intellectual property, and other innovative services to federal, regional, and local government agencies, as well as to private industrial customers worldwide. Parsons is an equal opportunity, drug-free employer committed to diversity in the workplace. Minority/Female/Disabled/Protected Veteran/LGBTQ+. For more about Parsons, visit parsons.com and follow us on Facebook, Twitter, LinkedIn, and YouTube. 
 
 
-