Minimum qualifications:
Bachelor's degree or equivalent practical experience.
7 years of experience working in a government or military environment, leveraging and developing CTI for network, host and log analysis, to enable the detection and response to cyber threats.
Experience in leveraging CTI to describe, track and develop new intelligence on advanced persistent threats.
Experience in conducting or supporting incident response and investigations within enterprise environments.
Preferred qualifications:
Experience in SOC operations, threat hunting, detection engineering and SOC workflow optimization.
Experience in network intrusion detection system (IDS) monitoring, endpoint detection and response (EDR) solutions, SIEM and security orchestration, automation, and response (SOAR) integration, and managing and contributing CTI into a threat intelligence platform.
Understanding of core cyber security concepts, common enterprise IT infrastructure components, operating system internals and networking.