Job Summary- Seeking an Intrusion Analyst responsible for identifying, analyzing, and responding to malicious or unauthorized activity across enterprise and mission networks
- This position performs advanced network analysis, anomaly detection, threat identification, and investigative activities using data collected from multiple security, network, and intelligence sources
- The analyst evaluates indicators of compromise (IOCs), identifies adversary tactics, techniques, and procedures (TTPs), and develops actionable intelligence to support cyber defense operations
- Working closely with cybersecurity, threat hunting, and incident response teams, the Intrusion Analyst helps detect, assess, and mitigate threats to mission-critical systems and networks
Primary Responsibilities- Perform deep network traffic analysis to identify suspicious, malicious, or unauthorized activity across enterprise and mission environments
- Analyze network anomalies, security events, logs, alerts, and other data sources to detect potential cyber threats and indicators of compromise (IOCs)
- Investigate security incidents and support cyber threat analysis activities to determine scope, impact, and potential mitigation strategies
- Correlate data from multiple sources to identify attack patterns, adversary behaviors, and emerging threats
- Evaluate network communications, protocols, and traffic flows to identify malicious activity and unauthorized access attempts.
- Support threat hunting activities through proactive analysis of network and system data
- Develop analytic reports, threat assessments, and recommendations to support operational decision-making and cyber defense efforts
- Collaborate with incident response, cyber operations, engineering, and intelligence teams to improve threat detection and mitigation capabilities
- Document findings, methodologies, and investigative results in accordance with organizational standards and operational requirements
- Maintain awareness of evolving cyber threats, attack techniques, vulnerabilities, and adversary TTPs
Required Qualifications- Must have active Top Secret/SCI clearance with NSA Full Scope Polygraph
- Master's degree with 6 years of relevant experience, Bachelor's degree with 8 years of relevant experience, or Associate's degree with 10 years of in-depth relevant experience that is clearly related to the position
- Experience performing network traffic analysis, intrusion detection, or cyber threat analysis activities
- Strong understanding of TCP/IP networking, network protocols, and network security principles
- Experience analyzing security logs, alerts, packet captures, and other network data sources
- Knowledge of indicators of compromise (IOCs), adversary tactics, techniques, and procedures (TTPs), and cyber threat methodologies
- Ability to analyze large datasets and correlate information from multiple sources to identify threats and anomalous activity
- Strong analytical, problem-solving, and investigative skills
- Experience documenting findings and communicating technical information to diverse audiences
Desired Qualifications- Experience supporting cybersecurity incident response activities
- Knowledge of Cyber Network Operations (CNO) concepts and methodologies
Exempt hourly position. 11 paid holidays, minimum of 3 weeks PTO, company sponsored group medical plan, company paid dental, vision, life insurance, and STD/LTD plans. Salary is dependent upon the candidate's experience and qualifications.
The pay range for this role is:
130,000 - 180,000 USD per year (Ft. Meade MD)
