Annapolis Junction, Maryland, United States Of America
Date Posted:
2023-06-14
Country:
United States of America
Location:
MD231: 306 Sentinel Drive Suite100 AJ 306 Sentinel Drive Suite 100, Annapolis Junction, MD, 20701 USA
Position Role Type:
Hybrid
Raytheon Technologies Corporation
Raytheon Technologies Corporation is an Aerospace and Defense company that provides advanced systems and services for commercial, military and government customers worldwide. It comprises four industry-leading businesses – Collins Aerospace Systems, Pratt & Whitney, Raytheon Intelligence & Space and Raytheon Missiles & Defense. Its 195,000 employees enable the company to operate at the edge of known science as they imagine and deliver solutions that push the boundaries in quantum physics, electric propulsion, directed energy, hypersonics, avionics and cybersecurity. The company, formed in 2020 through the combination of Raytheon Company and the United Technologies Corporation aerospace businesses, is headquartered in Waltham, Massachusetts.
To realize our full potential, Raytheon Technologies is committed to creating a company where all employees are respected, valued and supported in the pursuit of their goals. We know companies that embrace diversity in all its forms not only deliver stronger business results, but also become a force for good, fueling stronger business performance and greater opportunity for employees, partners, investors and communities to succeed.
The following position is to join our Corporate or Research Center Team:
Role Overview
RTX Cyber Defense is seeking a dynamic individual to join our Cyber Threat Intelligence team as a Senior Cyber Threat Intelligence Analyst. The successful candidate will need to be able to work in a fast-paced environment, planning, coordinating, and executing intelligence collection and analysis operations to provide operationally actionable intelligence in support of RTX cyber defenses. This candidate will focus on working with the intelligence community’s cyber collaboration center and promoting information sharing exchange.
Responsibilities:
Serve as a senior Cyber Threat Intelligence analyst, produce timely threat reporting and briefings, and providing technical support to other functions and teams within Cyber Defense.
Work closely with an intelligence community information sharing center in providing and facilitating the exchange of technical data.
Use premium Threat Intelligence tooling to enrich indicators of compromise and pivot to additional adversarial infrastructure and tooling.
Analyze large and unstructured data sets to identify trends and anomalies indicative of malicious activities.
Perform deep dive analysis of malicious artifacts.
Provide situational awareness on the current threat landscape and the techniques, tactics and procedures associated with specific threats.
Pursue actionable intelligence on current threats.
Brief executive level leadership and write analytical technical reports.
Basic Qualifications:
The preferred candidate must have Cyber Threat Intelligence experience and intelligence community background.
Current US Security Clearance (TS/SCI)
Provide three days a week (or more) in-person attendance at an intelligence community information sharing center and ability to be flexible and attend on short notice.
Experience working in a cybersecurity environment (security operations, monitoring, incident response, etc.).
Ability to be on-site at least three days a week near Annapolis Junction, Maryland
Preferred Qualifications:
Sound understanding of network protocols, security tools, and cyber technologies.
Experience delivering polished written and oral briefings on complex cyber topics with little-to-no notice.
Strong ability to manage indicators of compromise and enrich them through premium and open-source tooling.
The preferred candidate should have an understanding of the threats that target defense industrial firms and experience operationalizing the Cyber Kill Chain, Mitre ATT&CK, and Diamond Model.
Deep experience with networking and OSI model, such as ports, protocols, RFC standards, abuse, and exploitation
Nice to Have:
Scripting/coding experience a plus: Python, Go, Java, Javascript, SQL, MySQL, STIX/TAXII, MITRE ATT&CK.
Familiarity with EDR, SOAR, SIEM, Threat Intelligence Platforms, and visualization tools.
Well-developed research skills using internet open source and proprietary sources.
Experience with cyber threat hunting and content development.
Familiarity with the current cyber threat landscape, and the various actors involved, is strongly desired.
Certifications desired but not required: CISSP, CISM, CEH, Security+, CCNA or greater, SANS certifications.
Experience investigating malicious activity involving state-sponsored threat actors.
Experience investigating, pivoting, and actioning technical indicators such as Domains, IP addresses, Hashes.
Education:
Typically requires a University Degree and a minimum 10 years of experience, or an Advanced Degree and a minimum 8 years experience.
Location:
Hybrid – This position will be located near Annapolis Junction, Maryland. On-site presence will be required three days a week, and possible notice on-site meetings.
Required Status:
US Citizen required.
Current TS/SCI Clearance required.
RTX is An Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or veteran status, age or any other federally protected class.
Privacy Policy and Terms:
Click on this link to read the Policy and Terms
Explore Location
Apply
Save this job
RTX Corporate Headquarters / Equal Opportunity Employer / JBRTX-01631697
JBRTX
Top Secret SSBI SCI, CLZTS, SKINT, SKCYB, JBRTX SKUUU, MD_ANNAPOLIS JUNCTION MD_MARYLAND ZC20755 ZC207Z
