Tier 3 Cyber Threat Intelligence Analyst
Share
Job Location:
Washington DC, WA - USA
Monthly Salary:
$ 107900 - 195050
Posted on:
19 hours ago
Vacancies:
1 Vacancy
Job Summary
Leidos is seeking a Tier 3 Cyber Threat Intelligence Analyst to join our team on a highly visible cyber security single-award IDIQ vehicle that provides Network Operations Security Operations (NOSC) support cyber analysis and application development.
Department of Homeland Security (DHS) NOSC Support Services is a US Government program responsible to monitor detect analyze mitigate and respond to cyber threats and adversarial activity on the DHS Enterprise. DHS NOSC has primary responsibility for monitoring and responding to security events and incidents detected at the Trusted Internet Connection (TIC) and Policy Enforcement Point (PEP) and is responsible for directing and coordinating detection and response activities performed by each Component SOC. Direction and coordination are achieved through a shared DHS incident tracking system and other means of coordination and communication.
The Cyber Threat Intel Analyst will need a strong cyber security background with experience with the following: Identify track and investigate high priority threat campaigns malicious actors with the interest capability and TTPs (Techniques Tactics and Procedures).
Bring a comprehensive understanding analyzing and tracking the cyber threat landscape including identifying and analyzing cyber threats actors APT TTPs and/or activities to enhance cybersecurity posture of the organizations IT operating environment.
Basic Qualifications
- The candidate must currently possess a Top Secret/SCI Clearance.
- BS in IT related field and 8-12 years experience in an IT field or MS in IT related field and 8 years experience in an IT Field with a minimum of 7 years of experience as a Tier III senior cyber security analyst performing intelligence analysis collection management and technical analysis.
- Two years of recent experience with host-based and network-based security monitoring solutions and to include security content recommendation or development (host based and network signatures).
- Maintain and drive the development of new reports of Cyber Threat Intelligence analysis to peers management and customer teams for purposes of situational awareness and making threat intelligence actionable.
- Provide support to the Network Operations Security Center during incident response and threat hunting activities that include cyber threat analysis support research recommending relevant remediation and mitigation.
- Conduct trending and correlation of various cyber intelligence sources for the purposes of indicator collection shifts in TTPs attribution and establish countermeasures to increase cyber resiliency.
- Host-based and network-based forensics related to the identification of advanced cyber threat activities intrusion detection incident response malware analysis and security content development (e.g. signatures rules etc.); and cyber threat intelligence.
- Deep understanding of the cyber Pyramid of Pain Cyber Kill Chain MITRE ATT&CK and the Diamond Model. Analysts should be able to conduct in-depth research into threat actors tools infrastructure and TTPs using these frameworks.
- Ability to correlate and enrich data from intelligence sources with internal logs alerts and incident data from Splunk and Analyst1 to drive threat hunting and detection initiatives.
- Strong written and oral communication skills.
Preferred Qualifications
Must have at least one of the following certifications:
- Must have one of the following certifications: CASP CE CCNP-Security CISA CISSP (or Associate) GCED GCIH CCSP
Additionally preferred certifications held:
- SANS GCTI
- Previous DOD IC or Law Enforcement Intelligence or Counterintelligence Training/Experience.
- Knowledge of Structured Analytic Technique
- Developing scripts to support cyber threat detection that outputs results in a variety of formats such as VB scripts Python C HTML XML or other types most appropriate for the task.
- Proficient in one more of the following computer languages Python Bash Visual Basic or PowerShell to support cyber threat detection or reporting.
- Working familiarity with additional tools such as CrowdStrike Falcon Tanium Proofpoint TAP and Zscaler.
If youre looking for comfort keep scrolling. At Leidos we outthink outbuild and outpace the status quo because the mission demands it. Were not hiring followers. Were recruiting the ones who disrupt provoke and refuse to fail. Step 10 is ancient history. Were already at step 30 and moving faster than anyone else dares.
Original Posting:
January 23 2026For U.S. Positions: While subject to change based on business needs Leidos reasonably anticipates that this job requisition will remain open for at least 3 days with an anticipated close date of no earlier than 3 days after the original posting date as listed above.
Pay Range:
Pay Range $107900.00 - $195050.00The Leidos pay range for this job level is a general guideline onlyand not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job education experience knowledge skills and abilities as well as internal equity alignment with market data applicable bargaining agreement (if any) or other law.
Required Experience:
IC
Key Skills
- All-Source Intelligence
- Military Intelligence
- GIS
- ICD Coding
- Intelligence Experience
- Military Experience
- Analysis Skills
- Microsoft Powerpoint
- Joint Operations
- Intelligence Analysis
- Leadership Experience
- Writing Skills
About Company
Leidos is an innovation company rapidly addressing the world's most vexing challenges in national security and health. Our 47,000 employees collaborate to create smarter technology solutions for customers in these critical markets.
