Cyber Threat Engineer, Senior with Security Clearance

Booz Allen Hamilton

  • Fort Meade, MD
  • Permanent
  • Full-time
  • 1 month ago
Job Number: R0085643 Cyber Threat Engineer, Senior
Key Role: Analyze the current state capabilities of a client's counter threat process and technology, including focusing on the instrumentation, telemetry, and fidelity surrounding early attack sensing and warning (ASW). Map tactics, techniques, and procedures (TTPs) to specific actor sets and enumerate specific priority intelligence requirements (PIRs) threat actors are pursuing against the client. Gather and review all pertinent client threat and intelligence-related processes, procedures, and capabilities. Conduct process observations of resources and the use of existing capabilities, as required. Evaluate the client's high value target (HVT) and high value program (HVP) in relation to ASW and threat doctrine. Map, visualize, and prioritize threat actor courses of action (COA). Basic Qualifications: -6+ years of experience with analytic and technical guidance in all source analysis, fusion, and visualization of intelligence supporting Cyber operations -Experience with Cobalt Strike, Core Impact, Pro, Metasploit Pro, Burp Suite Pro, or Kali Linux -Experience with the Assured Compliance Assessment Solution (ACAS) -Experience with administering and troubleshooting two or more major Linux platforms, including Ubuntu and Red Hat -Experience with Windows environments and Active Directory concepts -Experience with programming using one or more of the following: Perl, Python, Ruby, Bash, C or C++, C#, or Java, including scripting and editing existing code -Experience with using multiple command and control channels, including DNS and HTTPS -TS/SCI clearance -BA or BS degree -IAT Level II Certification Additional Qualifications: -Experience with assembly languages, including x86 or reverse engineering -Experience with physical security assessments, including the use of proxmark3 or similar proximity card spoofing or copying device -Experience with phishing and other social engineering tactics -Experience with customizing Cobalt Strike -Experience with obfuscation and multiple methods of payload delivery, including executable and scripting files and customizing payloads and deployment techniques to avoid detection by Antivirus (AV) and Endpoint Detection and Response (EDR) solutions Clearance:
Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information; TS/SCI clearance is required. We're an EOE that empowers our people-no matter their race, color, religion, sex, gender identity, sexual orientation, national origin, disability, veteran status, or other protected characteristic-to fearlessly drive change. CMD