- Ft. Meade, Maryland, United States
- Full-time
Company Description
FireEye is the leader in intelligence-led security-as-a-service. Working as a seamless, scalable extension of customer security operations, FireEye offers a single platform that blends innovative security technologies, nation-state grade threat intelligence, and world-renowned Mandiant consulting. With this approach, FireEye eliminates the complexity and burden of cyber security for organizations struggling to prepare for, prevent, and respond to cyber attacks. FireEye has over 7,000 customers across 67 countries, including more than 45 percent of the Forbes Global 2000.
Job Description
If you have a strong background in analysis and are looking to be at the forefront of technical threat intelligence tracking, then we want to hear from you! The successful candidate should be an independent, critical thinker skilled in using data to solve analytic problems and adept in satisfying intelligence requirements under tight deadlines. The analyst's work will be used to provide guidance, resources, and solutions for forward deployed analysts who are who are on-site with domestic and international customers.
Responsibilities:
- Will track advanced persistent threats and report on their tools, techniques, and procedures (TTPs) of attacker's motivations, industry and attacker trends
- Provides master-level support for Intelligence activities, initiatives, and projects
- Serves as expert resource for other staff to draw on as needed
- Provides expert technical advice to the Program Manager
- Maintain continuity of cyber threat actors, cyber personas, and organizations to support attribution
- Provide expert guidance and cyber threat indicators and warnings and support to networks
- Will utilize all available tools, data and resources to deliver customized intel
- Correlate intelligence, to develop deeper understandings of tracked threat activity
- Present operational, tactical and strategic intelligence about threat groups, the methodologies they use, and the motivations behind their activity
- Work with customers to determine their intelligence needs and requirements
- Research, evaluate, analyze, integrate, and interpret information from multiple intelligence sources and fuse into a finished product
- Convey both verbally and in writing the importance of findings for a variety of audiences
- Prepare and deliver briefings and reports to the client's executives, security team, or fellow analysts
- Analyze the origins, pathways, and methodologies of malicious cyber activities to attribute, model and predict future intrusions
- Ability to work with little direct oversight
- Develop and maintain Threat Briefing Assessments at various classification levels
Qualifications
Requirements:
- TS/SCI clearance required with eligibility to obtain a Poly in the future.
- Required Certs: DoD 8570 IAT Level II
- BA/BA 10+ Years, or MA/MS 6+ Years, or PhD 2+ Years
- Degree or experience waivers may be available for specialized, unique experience of value to the client
- Possesses master-level knowledge and expertise in one or more key areas of Intelligence Support -- Intel Ops, ACE, Targeting, JISE, Collections and Analysis, G2X, and/or exercises and training
- Experience in an analytical role of either network forensics analyst, intelligence threat analyst, or security engineer/ consultant
- Experience in investigative or incident response environments
- Has worked in a customer-facing environment
- Exceptional oral and written communication skills
- Excellent communication and presentation skills with the ability to present to a variety of internal audiences including senior executives
- Excellent organizational and leadership skills
- Outstanding communication and interpersonal abilities
- Proven track record of successfully managing and executing on short term and long-term projects
- Strong leadership skills with the ability to prioritize and execute in a methodical and disciplined manner
- Ability to set and manage expectations with senior stake-holders and team members
- Demonstrated ability to manage customer relationships
Technical Qualifications:
- Experience in evaluating forensic reports of electronic media, packet capture, log data, and network devices in support of intrusion analysis or enterprise level information security operations
- Excellent knowledge of security solutions and technologies, including: Windows, Linux, Network architecture / implementation / configuration
- Experience conducting analysis of firewall technologies, proxy technologies, anti-virus, or spam and spyware solutions (Gateway and SaaS)
- Experience in working with threat modeling systems
Additional Qualifications:
- Malware/security experience and experience with FireEye products, highly desired
- Program management or business experience
Additional Information
All qualified applicants will receive consideration for employment without regard to race, sex, color, religion, sexual orientation, gender identity, national origin, protected veteran status, or on the basis of disability.