Job Information
Amentum Criminal Intelligence Analyst (Cyber Threat Intel) in Boston, Massachusetts
ROLES AND RESPONSIBILITIES
The Cyberthreat Intelligence Analyst’s responsibilities will include strategic intelligence analysis to provide an overall picture of the intent and capabilities of malicious cyber actors, as well as the tools, tactics, techniques, and procedures (TTPs) that malicious actors utilize. This position will primarily focus on identifying trends, patterns, and emerging risks and threats, and provide senior leaders in local, state, federal and private sector organizations with both strategic and tactical cyber-related intelligence that furthers their critical understanding of the cyber threat environment. In addition to strategic requirements, responsibilities will also include tactical analysis of cyber indicators, to include, but not limited to, Internet Protocol (IP) addresses, domains, hashes, and log files. Tactical intelligence will be provided in support of law enforcement investigations, and to inform cybersecurity decision making and planning efforts throughout the Metro Boston Region. Cyberthreat Intelligence Analyst will be required to:
Provide actionable strategic intelligence to partners regarding new cyber trends and patterns, TTPs, tools, or actors
Produce daily, monthly, and/or ad-hoc, actionable intelligence products on emerging cyber incidents, risks, threats, events, or trends, in accordance with intelligence community standards
Perform analysis of raw, primary, and secondary data derived from various sources
Gather, analyze, and categorize cyber threat indicators
Produce reports and briefs identifying significant or suspicious cyber-related events
Coordinate with appropriate personnel, organizations, and units, including but not limited to Federal, State and Local Police Computer Crimes Units; city and state Chief Information Security Officers (CISOs), state and/or local Information Technology departments; the Federal Bureau of Investigation (FBI); U.S Department of Homeland Security Office of Intelligence and Analysis (I&A), Cybersecurity and Infrastructure Security Agency (CISA), the U.S. Secret Service (USSS); the owners and operators of Critical Infrastructure (CI), the Multi-State Information Sharing and Analysis Center (MS-ISAC), and other Information Sharing and Analysis Organizations (ISAOs)
Assist with cyber-related assessments and provide actionable recommendations regarding cybersecurity measures for partner entities
Work alongside federal, state, and local agencies in addressing threats posed by terrorists, nation-states, and other cyber criminals conducting cyber attacks
Work with other Fusion Center staff to ensure that developments in cyber, computer, and network security, and law enforcement investigative capabilities are analyzed and shared during non-cyber focused intelligence production
Assist other law enforcement agencies or officers with cyber matters
Monitor a variety of classified, sensitive, partner, and open source reporting for cyber information relevant to partners and/or the Fusion Center domain
Serve on cyber working groups and Incident Response Teams, as appropriate
REQUIRED QUALIFICATIONS
Education: High School Diploma / GED Minimum
Relevant Experience: Eleven (11) years’ experience with a high school diploma / GED or six (6) years’ experience with a bachelor’s degree or four (4) years’ experience with a master’s degree
Candidates are required to pass a background check, to include a drug test, with the Boston Police Department as a condition of employment and must be able to obtain and maintain a national security clearance at the Top Secret level.
DESIRED SKILLS & KNOWLEDGE
Strong understanding of privacy, civil rights and civil liberties issues as they pertain to the intelligence cycle within local law enforcement and an intelligence fusion center environment
Master's degree in intelligence analysis, computer science, information technology, information assurance, or a related field
At least 2 years of experience as an Intelligence Analyst within in a local, state or federal law enforcement agency and/or state/major urban area fusion center and/or U.S. Military
Basic knowledge of Operating Systems to include Windows, LINUX, UNIX, Mac OS, iOS, and Android
Working knowledge of various security methodologies, processes, and hardware; including firewalls, intrusion detection systems (IDS) and intrusion prevention systems (IPS), as well as computer communication networks, protocols, and analysis (e.g. TCP/IP)
Knowledge of cybercrime tactics, techniques, and procedures (TTPs) to include: website defacements, cross-site scripting (XSS), Structured Query Language (SQL) injection (SQLi) attacks, denial of service (DoS) attacks
Basic knowledge of various computer forensic methodologies and related tools to include FTK and Helix
Knowledge and experience with methodologies such as indicator pivoting and sandboxing malware
Knowledge of state, local, and federal laws and regulations regarding cybercrime
Strong analytical and problem-solving skills
Excellent oral and written communication skills, including the ability to clearly articulate technical cyber matters to a variety of audiences
Ability to work well within a team environment
Ability to maintain focus under pressure
Experience writing intelligence assessments for intelligence community or law enforcement consumers
ABOUT THE BRIC
The BRIC is staffed and managed by the Boston Police Department’s Bureau of Intelligence & Analysis. As a major urban area fusion center, the mission of the BRIC is to reduce crime and prevent acts of terrorism throughout the Metro Boston Homeland Security Region by serving as the central point for the collection, synthesis, analysis, and dissemination of strategic and tactical intelligence to law enforcement, intelligence, first responder and private sector partners; and to assist the Federal Government as a partner for national security.
Amentum is proud to be an Equal Opportunity Employer. Our hiring practices provide equal opportunity for employment without regard to race, religion, color, sex, gender, national origin, age, United States military veteran’s status, ancestry, sexual orientation, gender identity, marital status, family structure, medical condition including genetic characteristics or information, veteran status, or mental or physical disability so long as the essential functions of the job can be performed with or without reasonable accommodation, or any other protected category under federal, state, or local law. Learn more about your rights under Federal EEO laws and supplemental language at EEO including Disability/Protected Veterans (https://www.dol.gov/agencies/ofccp/posters) and Labor Laws Posters (https://protect-us.mimecast.com/s/MI5TC2kqOqsOBPMVfnZ32U) .