Cyber Threat Intelligence Lead

MANTECH seeks a motivated, career and customer-oriented Cyber Threat Intelligence Lead to join our team in Ashburn, VA.

The ultimate purpose of this role is to provide the disciplined leadership and structural organization necessary to rapidly implement critical, high-impact security solutions that directly protect the Nation's digital borders while ensuring continuous, compliant contract delivery for 24x7x365 network, cyber, and cloud services.

Responsibilities include but are not limited to:

• Establishing and enforcing Cyber Threat Intelligence (CTI) support standards, including monitoring activities and developing cyber threat analysis.
• Leading the technical analysis of sophisticated threats, identifying the valid Indicators of Compromise (IOCs) and driving the attribution of Advanced Persistent Threats (APTs).
• Collecting and analyzing both unclassified and classified sources of information for both foreign and domestic cyber threats.
• Assisting with the dissemination of cyber threat information to senior management and key stakeholders (e.g., USIC, DoD, Law Enforcement).
• Driving the development of scripts to support cyber threat detection (e.g., Python, C++).

Minimum Qualifications:

• Bachelor's degree in computer science, engineering, information technology, or cybersecurity (or five years of relevant work experience in lieu of a degree).
• Seven (7+) years of experience as a Tier III senior cyber security analyst performing intelligence analysis, collection management, and technical analysis.
• Five (5+) years of hands-on experience (with experience in the last two years) including host-based and network-based security monitoring.
• Experience in developing scripts (VB scripts, Python, C++, HTML, XML) to support threat detection.

Preferred/Desired Qualifications:

• Any of the following certifications: GIAC Certified Threat Intelligence (GCTI), GIAC Reverse Engineering Malware (GREM) or GIAC Certified Intrusion Analyst (GCIA).

Clearance Requirements:

• Must have a current/ active TS/SCI clearance.
• Must be able to obtain and maintain a CBP BI (Background Investigation)

Physical Requirements:

• Must be able to be in a stationary position more than 50% of the time
• Must be able to communicate, converse, and exchange information with peers and senior personnel
• Constantly operates a computer and other office productivity machinery, such as a computer
• The person in this position frequently communicates with co-workers, management, and customers, which may involve delivering presentations. Must be able to exchange accurate information in these situations
• The person in this position needs to occasionally move about inside the office to access file cabinets, office machinery, etc.