Cyber Analyst
About the role
Leidos has a new and exciting opportunity for a Mid-Level Defensive Cyber Software Developer in our National Security Sector's (NSS) Cyber & Analytics Business Area (CABA).
Our talented team is at the forefront in Security Engineering, Computer Network Operations (CNO), Mission Software, Analytical Methods and Modeling, Signals Intelligence (SIGINT), and Cryptographic Key Management.
Responsibilities
- Perform Threat Intelligence Integration and Research reporting on detection gaps within our problem set while staying current on TTPs, vulnerabilities, and SOC technologies
- Perform Detection Engineering & Tuning analyzing false positives/negatives and providing feedback to developers so they can tweak detection algorithms for accuracy and operational relevance
- Bridge the gap between defensive operations and software engineering by conducting training sessions and walkthroughs using simulated SOC scenarios
- Participate in sprint planning and product roadmap discussions to ensure the "operator perspective" is baked into software requirements
- Provide input on UI/UX for analyst efficiency and reduce cognitive load during high-stress alerts
Requirements
- Bachelor’s Degree in cybersecurity or similar degree and 4- 8 years of relevant experience. Will consider experience in lieu of a degree
- Minimum 4+ years of professional experience in Cyber Security
- Minimum 2+ years of professional experience as a SOC operator
- Intermediate to Expert knowledge of Linux
- A good understanding of networking – protocols at all layers of the networking stack and network architecture accompanied with various tooling needed for network analysis such as Wireshark
- Intermediate to Expert knowledge of host-based forensics, telemetry generation, and low-level artifacts (like memory, processes, and network packet analysis)
- Moderate ability to produce scripts for testing
Qualifications
- Must be a US Citizen and be able to obtain a TS/SCI security clearance
Preferred Qualifications
- Experience analyzing low-level system artifacts, memory forensics, or firmware/embedded system security
- Familiarity with the MITRE ATT&CK framework and mapping telemetry to specific adversary behaviors
- Experience working in an Agile/Scrum development environment alongside software engineers
- GIAC Certified Detection Engineer (GCDE)
- GIAC Certified Forensic Analyst (GCFA) / GIAC Network Forensic Analyst (GNFA)
- FOR572: Advance Network Forensics
Benefits
At Leidos, we offer competitive benefits, including Paid Time Off, 11 paid Holidays, 401K with a 6% company match and immediate vesting, Flexible Schedules, Discounted Stock Purchase Plans, Technical Upskilling, Education and Training Support, Parental Paid Leave, and much more.
Pay
Pay Range $87,100.00 - $157,450.00
Schedule
This is a full-time position with the Leidos Cyber Electromagnetic Activity (CEMA) team that is based in Huntsville, Alabama, and will require the candidate to be able to obtain and maintain a TS/SCI Clearance.