Threat Hunt Analyst Jr.

We are an employee-centric company that truly appreciates our team members and their value to our customers and the missions they support. We pride ourselves on being forward-leaning thinkers and fostering teams that are and continue to be technically proficient and technically capable across a comprehensive range of cyber mission areas. OneZero full-time employees receive an extremely competitive benefits package that includes health/dental/vision/life insurance plans, 401K with company matching, PTO & paid holidays, employee referral program, and educational assistance. Additional details can be found on our website at: https://www.onezerollc.com/careers/

Position Title: Threat Hunt Analyst Jr.

Location: Ashburn, VA

Clearance: Top Secret

Responsibilities

The ideal Cyber Threat Hunter is someone who is process driven, curious, and enjoys identifying patterns and anomalies in data that are not immediately obvious. The Cyber Threat Hunter will:

• Create Threat Models to better understand the CBP IT Enterprise, identify defensive gaps, and prioritize mitigations
• Author, update, and maintain SOPs, playbooks, work instructions
• Utilize Threat Intelligence and Threat Models to create threat hypotheses
• Plan and scope Threat Hunt Missions to verify threat hypotheses
• Proactively and iteratively search through systems and networks to detect advanced threats
• Analyze host, network, and application logs in addition to malware and code
• Prepare and report risk analysis and threat findings to appropriate stakeholders
• Create, recommend, and assist with development of new security content as the result of hunt missions to include signatures, alerts, workflows, and automation
• Coordinate with different teams to improve threat detection, response, and improve overall security posture of the Enterprise

Must Have One of the Following J3 Certifications Tier 2 (Response/DMA):

GCIH - Incident Handler

GCFA - Forensic Analyst

GCFE - Forensic Examiner

GREM - Reverse Engineering Malware

GISF - Security Fundamentals

"GXPN - Exploit Researcher

and Advanced Penetration Tester"

GWEB - Web Application Defender

GNFA - Network Forensic Analyst

OSCP (Certified Professional)

OSCE (Certified Expert)

OSWP (Wireless Professional)

OSEE (Exploitation Expert)

CCFP - Certified Cyber Forensics Professional

"CISSP - Certified

Information Systems Security"

CCNA Security

CCNP Security

CEH - Certified Ethical Hacker

CHFI - Computer Hacking Forensic Investigator

LPT - Licensed Penetration Tester

ECSA - EC-Council Certified Security Analyst

ENSA - EC-Council Network Security Administrator

ECIH - EC-Council Certified Incident Handler

ECSS - EC-Council Certified Security Specialist

ECES - EC-Council Certified Encryption Specialist

EnCE

Windows Forensic Examinations - FTK WFE- FTK

Computer Incident Responders Course - CIRC

Windows Forensic Examination - EnCase - Counter Intelligence (CI) - WFE-E-CI

"Forensics and Intrusions in a Windows Environment -

FIWE"

Education

BS degree in Science, Technology, Engineering, Math or related field and 3 years of prior relevant experience with a focus on CyberSecurity or Masters with 1 years of prior relevant experience.

OneZero Solutions is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status, or any other protected class.

Salary : $0