Malware Analyst
Houston, Texas, United States
The Cyber Threat Analysis (CTA) is a predictive and pre-emptive service that searches for IOCs or threats to protect NASA's external border and all IT assets before an incident occurs. In response to ongoing Agency cyber incident investigations and increased requirements for agency-wide technical incident response and forensic capabilities, the NASA SOC, CTA team provides specialized expertise in vulnerability, threat, and malware analysis with a focus on Advanced Persistent Threats (APT).
- In the event an incident is discovered during hunt activities, perform cyber defense incident triage, to include determining scope and potential impact, identifying the specific vulnerability, and making recommendations for remediation
- Perform event correlation using information gathered from a variety of sources within the enterprise to gain situational awareness and determine the effectiveness of an observed attack
- Provide detection, identification, and alerting of possible attacks/intrusions, anomalous activities, and misuse activities and distinguish these incidents and events from benign activities
- Determine tactics, techniques, and procedures for intrusion sets and recommend computing environment vulnerability corrections
- Perform analysis of log files from a variety of sources to identify possible advanced persistent threats on NASA systems and networks
- Perform analysis on NASA systems and networks to identify possible exploitation activitiesSupport the integration of data collected by the SOC and other NASA incident responders and cyber analysts for detecting and monitoring for cyber intrusions and threats
- Prepare detailed reports, assessments, presentations, and briefings on cybersecurity incidents, the results of analyses and recommendations
Requirements
An active Secret clearance is required for this position. Candidates who do not meet this requirement will not be considered.
Technical Areas of Expertise:
- Industry standard malware analysis tools and techniques
- Knowledge of Advanced Persistant Threats (APT)
- Understand how to collect and analyze intrusion artifacts (e.g., source code, malware, Trojans) and report recommend incident mitigations
- Endpoint threat detection, protection, and response solutions, such as anti-virus/antimalware, etc.
Qualifications:
- Bachelors degree in a related field or equivalent experience is required
- One or more DoD 8570.01-M Cyber Certifications
- 7+ years of professional experience in similar role
Benefits
Joining Avint is a win-win proposition! You will feel the personal touch of a small business and receive BIG business benefits. From competitive salaries, full health, and generous PTO and Federal Holidays. Additionally, we encourage every Avint employee to further their professional development. To assist you in achieving your goals, we offer reimbursement for courses, exams, and tuition. Interested in a class, conference, program, or degree? Avint will invest in YOU and your professional development!
Avint is committed to hiring and retaining a diverse workforce. We are proud to be an Equal Opportunity and Affirmative Action Employer, making decisions without regard to race, color, religion, creed, sex, sexual orientation, gender identity, marital status, national origin, age, veteran status, disability, or any other protected class.
Tags: APT Clearance Cyber defense DoD DoDD 8570 Incident response Log files Malware Monitoring Threat detection
Perks/benefits: Career development Health care Team events
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Security Operations Engineer jobs
- Open Staff Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Information Security Specialist jobs
- Open Manager Pentest H/F jobs
- Open Senior Cyber Security Engineer jobs
- Open Senior Information Security Analyst jobs
- Open Cyber Security Specialist jobs
- Open Product Security Engineer jobs
- Open Principal Security Engineer jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Cybersecurity Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open IT Security Analyst jobs
- Open Consultant SOC / CERT H/F jobs
- Open Cybersecurity Consultant jobs
- Open Chief Information Security Officer jobs
- Open Senior Information Security Engineer jobs
- Open Security Specialist jobs
- Open Cybersecurity Specialist jobs
- Open Senior Penetration Tester jobs
- Open Sr. Security Engineer jobs
- Open Security Researcher jobs
- Open Senior Security Architect jobs
- Open IT Security Engineer jobs
- Open CISM-related jobs
- Open ISO 27001-related jobs
- Open Network security-related jobs
- Open Application security-related jobs
- Open Windows-related jobs
- Open Agile-related jobs
- Open Pentesting-related jobs
- Open Vulnerability management-related jobs
- Open GCP-related jobs
- Open Analytics-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open DevOps-related jobs
- Open Security assessment-related jobs
- Open Kubernetes-related jobs
- Open Security Clearance-related jobs
- Open Malware-related jobs
- Open CI/CD-related jobs
- Open IDS-related jobs
- Open DevSecOps-related jobs
- Open CEH-related jobs