Intelligence Specialist (Threat/DCO) - Level 3

About us: Mission Driven, Employee Focused  At CTI, you’ll be at the center of an award-winning corporate culture, breaking technological barriers and solving real-world problems for our federal government customers. We are committed to hiring the best of the best, and in return, we offer a world-class, truly unique employee experience that is rare within our industry.  If you’re a technical changemaker with a passion for Cyber Operations, Cloud and Data Analytics, or Engineering, we’re looking for you! Love what you do AND where you work - alongside a supportive, innovative team of like-minded individuals. After all, we know that your best work happens when you live your best life, and we do everything we can to make that possible. Are you ready for your best career move? Intel Agency polygraph is strongly preferred.
Due to federal contract requirements, United States citizenship and an active TS/SCI security clearance is required for the position.
Description:CTI is seeking an experienced TS/SCI polygraph cleared Intelligence Specialist to join our team in the Annapolis Junction area.The qualifications (required):·         Must be a US Citizen·         Must have TS/SCI clearance w/ active polygraph·         Bachelor's degree or higher in Computer Science, Software Engineering, or Computer Engineering from an accredited college or university and six (06) years of experience in the degree fields.·         Must have twelve (12) years of experience as a Threat Analyst with experience in both Host analysis and Network analysis. ·         Must have twelve (12) years of experience in Offensive Cyber Operations as an Interactive Operator on-Network (ION) or Exploitation Analyst (EA).·         Individual should meet DODM 8570.01 IAT Level III position requirements: Global Information Assurance Certification (GIAC), Certified Forensics Analyst (GCFA) Certification or GIAC, Certified Intrusion Analyst (GCIA) Certification with ten (10) years of experience in both Host analysis and Network analysis. ·         Two (02) years of experience as an instructor in threat analysis or three (03) years of experience in a leadership position, with four (04) or more direct reports, in an organization such as a Security Operations Center, a Cyber Emergency Response Team, a Cyber Protection Team/Blue Team or a Red Team/Cyber Mission Team.·         Provide input into DCO mission products such as pre-mission planning briefs, situation reports, post mission documentation, after action reports and lessons learned at the conclusion of events such as operations, exercises, and training.·         Demonstrated experience training and developing subordinates on foundational areas such as network and host analysis, JQR, Mission qualification, and KSA’s related to their assigned work role.·         Demonstrated Experience in the following: Correlation of data from multiple sources, including host, network, user, and intelligence reports to uncover threats.·         Experience with collection, aggregation, and interpretation of log data from various sources.·         Experience with Configuration, management, and optimization of Network Intrusion Detection Systems and Host-based Intrusion Detection Systems to include fine-tuning security rule sets for tools such as Suricata, Snort, Yara, and Sigma.·         Experience with Deep packet inspection and identification of malicious traffic using packet analysis tools, such as Wireshark or Network Miner.·         Experience with Threat hunting to identify advanced persistent threats and zero-day vulnerabilities using various threat hunting methodologies.·         Experience with Integration and management of SIEM and SOAR platforms, such as Elastic, Splunk, Sentinel, and other open-source or government provided solutions.The benefits package:
• Affordable healthcare options with 80% employer paid premium PLUS a company-funded HSA• Dental insurance with 100% employer paid premium• Vision with 80% employer paid premium• Employer paid Life insurance 100%• Employer paid Short-term and Long-term disability 100% • Annual training, continued education, and professional memberships reimbursement• Unlimited access to Red Hat Enterprise Linux and AWS training and accreditation• Annual reimbursement for technology i.e. phones, computers, printers, etc.• 401(k) with company match up to 5% with 100% immediate vesting (after 90 days of employment)
The environment and perks:
• Professional development investment and paid time off for training• Contract and work locations in Maryland, Virginia, Colorado, Texas, Utah, California, Florida and Hawaii.• Team building events throughout the year such as Destination Family Events, Holiday Party, Monthly Get-Togethers• Leadership Team engagement and mentorship• Performance Recognition Program• Complimentary branded apparel
Don't see a job opening that's the perfect fit? Apply to our General Position to join our talent pool for consideration for future opportunities.
Know someone else who may be a good fit? Refer them through the CTI External Referral Program and you could receive a one-time referral bonus of up to $10,000! Email cti-staffing@cti-md.com for more information.
Constellation Technologies is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, religion, creed, color, national origin, ancestry, sex (including pregnancy, childbirth, breastfeeding, or medical conditions related to pregnancy, childbirth, or breastfeeding), age, medical condition, marital or domestic partner status, sexual orientation, gender, gender identity, gender expression and transgender status, mental disability or physical disability, genetic information, military or veteran status, citizenship, low-income status or any other status or characteristic protected by applicable law. Job applicants can submit questions about CTI’s equal employment opportunity policy to cti-hr@cti-md.com.