Experience:
Not specified
Concerned about your lack of experience? Learn More...
Employment Type:
Not Specified
Posted:
9/13/2019
Job Category:
IT / MIS
Industry:
Aerospace & Aeronautics
Sr Cyber Threat Ops Tech II - Threat Hunter
(This job is no longer available)
Raytheon Company | Richardson, TX
loading
loading
School
Major
Grad Date
 
 

Not sure what types of jobs you are interested in?


Explore Jobs
Based on Your Education

Follow This Company
Share

Job Description

Global Business Services (GBS) IT Security has an opening for a Cyber Threat Hunting Analyst. Work in a fast-paced collaborative environment analyzing threat intelligence, proactively detecting, and responding to advanced threats that will lead to successful computer network defense.

The successful candidate will be an experienced information security practitioner that will proactively search for cyber threats to find malicious actors in the Raytheon’s network that may go undetected by conventional network security monitoring or defenses. This person will be a key contributor to a team of experienced threat intelligence analysts and cyber incident responders.

Job Description:

  • Proactively drive threat hunting and analysis
  • Leverage threat intelligence resources to research threats, vulnerabilities, and intelligence on various attackers and attack infrastructure
  • Utilize SIEM platform to identify threats, determine attack vector, scope of activity, and risk and compile/report findings into a sharable report
  • Work with other Cyber Threat Operations teams to identify threats, develop cyber defenses, and perform advanced network and host analysis in the event of a compromise
  • Recommend system tuning/customization and data collection improvements
  • Improve and expand the team’s threat intelligence, hunting and response toolset
  • Support the team in conducting Advanced Persistent Threat (APT) analysis and investigation
  • Provide support in the detection, response, mitigation, and reporting of cyber security incidents affecting enterprise and subsidiary networks
  • Assist in the education of staff on cyber threat hunting
  • Collaborate with other groups within IT Security and the business Units

Required Skills:
  • Minimum 6+ years operational experience as a Cyber Threat Hunter and a Bachelor’s degree or equivalent combination of work experience in the cyber area and schooling/certifications in lieu of degree
  • Advanced experience of current threats, vulnerabilities, attack trends, and Advanced Persistent Threat (APT)
  • Familiarity with: Netflow, DNS, IDS/IPS, Proxy, Mail, PCAP and Windows Logs
  • Working knowledge of networking concepts and web technologies.
  • Knowledge of TCP/IP protocols and data communications schemes.
  • Prefer familiarity with packet analysis to include:
    • HTTP Headers & Status codes
    • SMTP Traffic & Status codes
    • FTP Traffic & Status Codes
    • DNS Queries
    • PKI Certificate Exchange
  • Problem solving/critical thinking capabilities in complex environments.
  • Self-driven and fully accountable for independent effort performed as part of a geographically dispersed virtual team supporting a high OPTEMPO mission.
  • Proficiency in the use and production of visualization charts, link analysis diagrams, and database queries.
  • Excellent social, verbal, and written communication skills, with demonstrated ability to effectively present analytical data to a variety of technical and non-technical audiences.
  • Ability and willingness to share on-call responsibilities, and work non-standard hours.
  • Travel (up to 25%) when required.
  • This position requires the eligibility to obtain a U.S. security clearance. Except in rare circumstances, only U.S. citizens are eligible for a security clearance.
This position requires either a U.S. Person or a Non-U.S. Person who is eligible to obtain any required Export Authorization.

Desired Skills:
  • Understanding of intelligence cycle, Cyber Kill Chain, and Diamond Model.
  • Experience developing and implementing IDS / IPS signatures and URL / IP blocks
  • Scripting languages such as Python, Perl, and PowerShell
  • One or more of the following industry certifications:
  • GIAC Certified Incident Handler (GCIH)
  • Certified Information Systems Security Professional (CISSP)
  • GIAC Certified Intrusion Analyst (GCIA)
  • GIAC Network Forensics Analysts (GNFA)
  • GIAC Reverse Engineering Malware (GREM)
  • Certified Ethical Hacker (CEH)


Required Education:
Bachelor's degree in Computer Science, Computer Engineering, Information Technology or related discipline or equivalent combination of work experience in cyber arena and schooling/certification in lieu of degree

147910BR 147910

Raytheon is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, creed, sex, sexual orientation, gender identity, national origin, disability, or protected Veteran status.

Advertisement

About Raytheon Company

Raytheon Company is a technology and innovation leader specializing in defense, civil government and cybersecurity markets throughout the world. With a history of innovation spanning 92 years, Raytheon provides state-of-the-art electronics, mission systems integration and other capabilities in the areas of sensing; effects; and command, control, communications and intelligence systems; as well as a broad range of mission support services

 
Advertisement Advertisement