Intermediate Cyber Analytics Engineer

MITRE Corporation - McLean, VA

posted 25 days ago

Full-time - Mid Level
McLean, VA
Professional, Scientific, and Technical Services

About the position

The Intermediate Cyber Analytics Engineer at MITRE plays a crucial role in enhancing the organization's cybersecurity capabilities. This position is part of the Defensive Innovation Group within the InfoSec department, focusing on preventing, detecting, and responding to cyber threats. The engineer will implement new capabilities, develop detection methods, and leverage automation and machine learning to improve the efficiency and effectiveness of cybersecurity operations.

Responsibilities

  • Implement new capabilities to enhance MITRE InfoSec's ability to prevent, detect, and respond to cyber threats
  • Contribute to brainstorming and design of such capabilities
  • Develop detections from cloud, server, endpoint, and network data to detect signs of intrusion
  • Use automation platforms to enhance detection and accelerate response to cyber threats
  • Automate daily tasks to improve SOC's efficiency and effectiveness
  • Leverage machine learning to detect new and novel attacks
  • Work both individually and as part of a team

Requirements

  • Typically requires a Bachelor's degree and a minimum of 2 years of related experience; or an advanced degree with relevant experience who can immediately contribute at this job step; or equivalent combination of related education and work experience
  • 2+ years of related experience in defensive cybersecurity operations, cyber incident response, detection engineering, or defensive cyber capability development
  • Proficiency in Python or comparable modern programming language
  • Eligible for Secret clearance (current clearance not required)

Nice-to-haves

  • Master of Science (or equivalent experience) in Cybersecurity, Software Engineering, Computer Science, Computer Engineering, or related engineering disciplines
  • 4+ years of related experience in defensive cybersecurity operations, cyber incident response, detection engineering, or defensive cyber capability development
  • Active Secret clearance
  • Experience developing on Splunk platform
  • Experience designing and implementing cloud detection engineering or incident response capabilities
  • Experience implementing Security, Orchestration, Automation and Response (SOAR) playbooks
  • Experience designing and performing cyber hunts using MITRE ATT&CK framework and/or cyber threat intelligence reports
  • Experience performing cyber incident response on one of more platforms, including Windows, MacOS, Linux, Amazon AWS, or Microsoft Azure
  • Cloud Development experience
  • Amazon Web Services, Azure, M365
  • Interfacing with cloud services via API
  • Deploying capabilities on IaaS, PaaS, or SaaS platforms
  • Machine Learning/Artificial Intelligence experience
  • Use of ML/AI tools or libraries, e.g. PyTorch, Pandas, Scikit-learn, TensorFlow, or Splunk MLTK
  • Development of ML-based detections or analytics
  • Strong written and verbal communication skills; effective technical presentation skills

Benefits

  • Competitive benefits
  • Exceptional professional development opportunities
  • Culture of innovation that embraces diversity, inclusion, flexibility, collaboration, and career growth

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service