- Leidos (Ashburn, VA)
- …of the cyber threat landscape, including identifying and analyzing cyber threats actors and/or activities to enhance cybersecurity posture of an the organization's ... for dissemination to stakeholders regarding high priority threat campaigns, malicious actors , APTs, emerging threats, etc. + Bring a comprehensive understanding,… more
- Amazon (Arlington, VA)
- …events from log data and develop innovative approaches to identify threat actor tactics, techniques, and procedures (TTPs). - You will build custom capabilities ... to uncover threats and enable threat hunting operations at scale. - You will participate in an on-call rotation and provide ad hoc support to customers during non-business hours. A day in the life A day in the life - Query, collate, and analyze… more
- AIG (Reston, VA)
- …alerting (GuardDuty, EntraID Identity Protection, Okta ThreatInsight) + Understanding of threat actor behaviors and MITRE ATT&CK and how TTPs manifest in collected ... telemetry + Proficiency in script and automation (Python preferred) + Experience with Git and CI/CD pipelines (GitHub Actions, Jenkins) + Familiarity with YAML/JSON-based rule definitions (eg Sigma) + Ability to simulate and basic adversary behavior through… more
- Lumen (Richmond, VA)
- …Cybersecurity Emulation (ACE) exercises as sanctioned attacks utilizing real threat actor methods to determine the defensive capabilities of Lumen and provide ... security improvement recommendations. + Evaluate and integrate AI/ML tools for threat detection, behavioral analysis, and anomaly detection into Red Team operations. + Evolve Red Team capabilities to include threat emulation in cloud-native and hybrid… more
- ManTech (Herndon, VA)
- …event correlation. + Experience in analyzing malware, attack vectors, and threat actor TTPs. + 8570 compliant certifications; relevant certifications such as CISSP, ... GCIH, GCFA, GCIA, or similar are highly desirable. + Relevant certifications such as CISSP, CISM, CEH, or SIEM-specific certifications (eg, Splunk Certified Power User) are highly desirable **Preferred Qualifications:** + Previous Network Operations Center… more
- Leidos (Arlington, VA)
- …Advanced experience in developing mitigation strategies based on malware threats and actor TTPs, to include YARA and SIGMA rules experience with application ... security, network security, programming (assembly and web), obfuscation, and encryption techniques. + Experience and innovation in developing tools and guidance on analysis techniques. + Expertise in technical, executive reporting and production management… more
- CACI International (Chantilly, VA)
- …investigations that will require you to "think like an adversary" as both an external actor and an insider risk. If chosen, you will have the opportunity to work on ... highly visible projects that directly make an impact to the Nations mission. You will be a motivated, passionate leader with the ability to drive our long-term strategic goals with daily tactical objectives. You will be a critical component in taking complex… more
- Amazon (Arlington, VA)
- …and execute a comprehensive framework for detecting and addressing bad actor behavior, implementing automated monitoring systems and risk assessment protocols - ... Drive deep integration work of compliance controls with listings and remediation experiences, optimizing the interface for EPR-related data collection and validation processes - Partner with technical teams to implement automated solutions for seller… more
- Xcelerate Solutions (Vienna, VA)
- …include the processing and verification of national security threat actor nominations, data integrity/quality control, encounter management, information sharing, ... and/or multiple discipline intelligence analysis. Come join our award-winning organization and work with the most talented and brightest minds in the GovCon industry. Location: Vienna, VA Clearance: TS Responsibilities: + Providing coverage support ensuring… more
- BAE Systems (Sterling, VA)
- …in a clear and concise manner. + Ability to think like a nation-state threat actor and proactively test and exploit vulnerabilities in the system. + Ability to coach ... and mentor junior staff, particularly in the context of real-world threat simulation. **Required Certifications:** + OSCP (Offensive Security Certified Professional) + GIAC Penetration Tester (GPEN) **Preferred Education, Experience, & Skills** **Desired… more