Job Location: Fort Belvoir, VA
Job Category: Engineering
Clearance: TS/SCI CI Polygraph
Athena Technology Group, Inc. is a Service-Disabled Veteran-Owned Small Business (SDVOSB) focused on Information Technology and Communications consulting, system engineering, integration, deployment, and operation of state of the art command and control and information systems that deliver a critical network-centric solution to the warfighter. With a proven track record of technical support to our customers, we are looking for innovative industry professionals to join our team.
JOB DESCRIPTION:
ATG is currently seeking an insider threat analyst to work with a small team
of data analysts to monitor and detect security events, and identify unusual and malicious activity on
an enterprise IT system for the Department of Defense. This position is for a sold and funded full-
time, salaried employee and will assist in supporting the Headquarters, Department of the Army
(HQDA) G-6 in evaluating threat landscapes (internal and external), thoroughly reviewing targeted
events, and creatively developing SIEM tool content to enhance capabilities.
REQUIRED SKILLS AND EXPERIENCE:
5+ years of experience in cybersecurity
3+ years of experience using data analytics tools to query big data and derive meaningful business
and/or threat intelligence products
2+ years of experience with SIEM Tool query language (e.g. Splunk Enterprise, etc.) and regex.
Thorough understanding of insider threat indicators and malicious use cases on an Enterprise IT
system
Ability to translate and document analyst activities into repeatable processes
Deep experience translating business requirements and process into low-friction automation and
high-impact systems
B.S. degree in computer science, computer engineering, or other technical discipline or equivalent
work experience.
DOD 8570 IAT II certification (CCNA Security, CySA+, GICSP, GSEC, Security+ CE, CND, or SSCP)
Preferred Education
PREFERRED SKILLS AND EXPERIENCE:
SIEM tool certification
Threat hunting, incident response or penetration testing experience or certification(s)
Experience working in a Cybersecurity Operations Center.
Engineering or architecture experience with enterprise SIEM tools
Engineering or architecture experience with Commercial Cloud services
Technical writing and detailed documentation of networks, systems, applications, and personnel procedures.
SECURITY CLEARANCE: US Citizenship and an active DoD TOP SECRET/SCI Clearance are
required for the position.