Senior Cyber Engineer(Team Lead)

Halfaker and Associates   •  

Martinsburg, WV

Industry: Technical Services

  •  

5 - 7 years

Posted 56 days ago

Job Description

Halfaker and Associates, LLC, an award winning high growth small business, creates innovative and customer-centric technology solutions in the areas ofCyber Security, Data Analytics, Software Engineering and IT Infrastructure to improve the health, security and well-being of all Americans. Our commitment to excellence and our vision to "Continue to Serve" has resulted in steady growth and an expanding client base across government agencies in the health, defense, security and intelligence sectors. Headquartered in Arlington, VA, we have employees nationwide and were recently named a 2018 Top Work Placeby the Washington Post. Please take a moment to browse through our website and learn more about what it means to serve with Halfaker.

Halfaker has an opening for a Senior Cyber Engineer(Team Lead) to join our talented, dynamic team. The key responsibilities for this position include:

  • Provide proactive APT hunting, incident response support, and advanced analytic capabilities
  • Profile and track APT actors that pose a threat in coordination with threat intelligence support teams
  • Must have a complete understanding of the MITRE ATT&CK Framework
  • Must have experience with threat hunting advanced persistence threats
  • Must have experience with Cyber Kill Chain methodology
  • Review and analyze log files from various sources such as SIEM, packet captures, and host logs to report any unusual or suspect activities
  • Utilize incident response use-case workflows to follow established and repeatable processes for triaging and escalating
  • Develop and execute custom scripts to identify host-based indicators of compromise
  • Provide targeted attack detection and analysis, including the development of custom signatures and log queries and analytics for the identification oftargeted attacks
  • Determine scope of intrusion identifying the initial point of access or source
  • Recommend remediation activities to secure the source or initial point of access of intrusion
  • Communicate effectively to all customers and stakeholders
  • Provide executive level cyber security strategic recommendations along with security engineering recommendations and custom solutions to counter adversarial activity
  • Provide advanced technical capabilities including Big Data Analytics, and Predictive Intelligence

Required Skills

  • Must have a complete understanding of the MITRE ATT&CK Framework
  • Must have experience with threat hunting advanced persistence threats
  • Must have experience with Cyber Kill Chain methodology
  • Experience with advanced cyber security tools, network topologies, intrusion detection, PKI, and secured networks
  • In depth understanding of NIST SP 800-61, US CERT and Office of Management and Budget (OMB) standards
  • Experience interpreting and implementing cyber security regulations

Required Experience

  • Bachelor's Degree
  • GIAC Certified Forensic Analyst (GCFA) certification preferred
  • GIAC Network Forensic Analyst (GNFA) certification preferred
  • Minimum of five years of significant experience performing advanced APT hunting
  • Must be able to successfully undergo a Veterans Affairs High Security Investigation (VA BI)

Halfaker and Associates, LLC, is committed to hiring and retaining a diverse workforce. We are proud to be an Equal Opportunity/ Affirmative Action Employer, making decisions without regard to race, color, religion, creed, sex, sexual orientation, gender identity, marital status, national origin, age, veteran status, disability, or any other protected class. U.S. Citizenship is required for most positions.