NIH - Cyber Hunter
cFocus Software Incorporated · Bethesda, MD · 2 wk ago
RemoteRemoteEducationFull-time
Qualifications
- Public Trust Clearance
- B.S. in Computer Science, Information Technology, or a related field
- 4+ years conducting threat hunting or advanced cybersecurity investigations
- Experience supporting Security Operations Centers (SOC)
- Experience conducting incident response investigations
- Experience utilizing Cyber Threat Intelligence
- Experience analyzing malware and advanced threats
- Experience with MITRE ATT&CK Framework
- Knowledge of NIST SP 800-61 and NIST SP 800-86
- Ability to obtain and maintain NIH suitability/background investigation
- Active GCIA, GCIH, GREM, CySA+, CISSP, CEH, Security+, or SC-200
Duties
- Perform proactive enterprise threat hunting across NIH managed systems
- Identify Indicators of Compromise (IOCs) and Indicators of Attack (IOAs)
- Conduct hypothesis-driven threat hunting utilizing MITRE ATT&CK methodologies
- Detect Advanced Persistent Threat (APT) activity before operational impact occurs
- Perform behavioral analysis across enterprise endpoints, servers, cloud environments, and networks
- Develop new hunting methodologies based upon emerging threats