Monday, March 20, 2017

Cyber Threat Analyst

Position: Cyber Threat Analyst
Location: Franklin Lakes, NJ
Duration: 12 Months
 
 
Responsibilities: 
The Cyber Threat Intelligence team is a core function of Security Operations and is responsible for continually improving the security posture of the organization through analysis of vulnerability and threat data, engaging key stakeholders with actionable intelligence. The Analyst proactively engages in the collection, analysis, and generation of operational and strategic intelligence. Key stakeholders are engaged with actionable intelligence to deliver insights and countermeasures, reducing risk and anticipating attacks. The Analyst will also proactively engage in threat hunting activities and the collection and generation of tactical intelligence to uncover attacks not detected with traditional signature or rule based methods.
 
Qualifications:
•3-5 year experience in cyber threat hunting or analysis
•Knowledge of attack methods, network/endpoint forensic analysis, and malware analysis.
•Specialized knowledge of threat actors and campaigns related to healthcare industry.
• Experience analyzing host or network intrusions based on forensic artifacts.
•Understanding of intelligence techniques such as Analysis of Competing Hypothesis and mitigation of cognitive bias.
•Experience with writing or using detection logic and threat detection strategies, including endpoint or network signatures.
•Ability to automate various aspects of security monitoring or analysis using Python.
 
Education:
GIAC Certified Forensic Analyst (GCFA) or GIAC Network Forensic Analyst (GNFA), or equivalent
•Bachelor’s degree in Computer Science or Cybersecurity (from a designated National Center of Academic Excellence in Information Assurance/Cyber Defense)
 
 
Position2:
 
Details:
Position: Vulnerability Risk Analyst
Location: Franklin Lakes, NJ
Duration: 12 Months
  
Responsibilities: 
The Cyber Threat Intelligence team is a core function of Security Operations and is responsible for continually improving the security posture of BD through analysis of vulnerability and threat data, engaging key stakeholders with actionable intelligence. The Vulnerability Risk Analyst oversees the assessment of systems and networks, and identifies where those systems/networks deviate from acceptable configurations or local policy. Remediation activities are coordinated with stakeholders and reported on overall attack surface and diagnostic metrics. The analyst also measures effectiveness of BD’s security architecture against known vulnerabilities, modeling potential threats and their impact.
 
Qualifications:
•3-5 year experience in vulnerability scanning and risk management
Ethical hacking principles, general attack stages; specific operational impacts of cybersecurity lapses.
•Experience with risk management processes such as methods for assessing and mitigating risk.
•Prior experience performing vulnerability scans using Qualys or similar enterprise scanning technology
 
Education:
•Certified in Risk and Information Systems Control (CRISC), Certified Ethical Hacking (CEH), GIAC Penetration Tester (GPEN), or equivalent
•Bachelor’s degree in Computer Science or Cybersecurity (from a designated National Center of Academic Excellence in Information Assurance/Cyber Defense.