Malware Analyst

The Cyber Threat Analysis (CTA) is a predictive and pre-emptive service that searches for IOCs or threats to protect NASA's external border and all IT assets before an incident occurs. In response to ongoing Agency cyber incident investigations and increased requirements for agency-wide technical incident response and forensic capabilities, the NASA SOC, CTA team provides specialized expertise in vulnerability, threat, and malware analysis with a focus on Advanced Persistent Threats (APT).

• In the event an incident is discovered during hunt activities, perform cyber defense incident triage, to include determining scope and potential impact, identifying the specific vulnerability, and making recommendations for remediation
• Perform event correlation using information gathered from a variety of sources within the enterprise to gain situational awareness and determine the effectiveness of an observed attack
• Provide detection, identification, and alerting of possible attacks/intrusions, anomalous activities, and misuse activities and distinguish these incidents and events from benign activities
• Determine tactics, techniques, and procedures for intrusion sets and recommend computing environment vulnerability corrections
• Perform analysis of log files from a variety of sources to identify possible advanced persistent threats on NASA systems and networks
• Perform analysis on NASA systems and networks to identify possible exploitation activitiesSupport the integration of data collected by the SOC and other NASA incident responders and cyber analysts for detecting and monitoring for cyber intrusions and threats
• Prepare detailed reports, assessments, presentations, and briefings on cybersecurity incidents, the results of analyses and recommendations

Requirements

An active Secret clearance is required for this position. Candidates who do not meet this requirement will not be considered.

Technical Areas of Expertise:

• Industry standard malware analysis tools and techniques
• Knowledge of Advanced Persistant Threats (APT)
• Understand how to collect and analyze intrusion artifacts (e.g., source code, malware, Trojans) and report recommend incident mitigations
• Endpoint threat detection, protection, and response solutions, such as anti-virus/antimalware, etc.

Qualifications:

• Bachelors degree in a related field or equivalent experience is required
• One or more DoD 8570.01-M Cyber Certifications
• 7+ years of professional experience in similar role

Benefits

Joining Avint is a win-win proposition! You will feel the personal touch of a small business and receive BIG business benefits. From competitive salaries, full health, and generous PTO and Federal Holidays. Additionally, we encourage every Avint employee to further their professional development. To assist you in achieving your goals, we offer reimbursement for courses, exams, and tuition. Interested in a class, conference, program, or degree? Avint will invest in YOU and your professional development!

Avint is committed to hiring and retaining a diverse workforce. We are proud to be an Equal Opportunity and Affirmative Action Employer, making decisions without regard to race, color, religion, creed, sex, sexual orientation, gender identity, marital status, national origin, age, veteran status, disability, or any other protected class.