Cybersecurity Analyst -Threat Hunter

US - CA - Carlsbad Ref #1427 07-Feb-2019

Job description

Our team

We are building a world class, global cybersecurity organization to protect and defend our global networks that provide customized security services to diverse customer groups ranging from residential users to DoD customers at the tactical edge. As a member of our Carlsbad, CA based security engineering team, the candidate will have the opportunity to work with the best and brightest security engineers and analysts in a collaborative environment where continuous learning is the norm.  We have recently started and formalized our threat hunting team so this is an opportunity to help define it as part of an agile process. There is no such thing as a secure system. Our philosophy is to operate as if we are in a continuous state of compromise. It will be your job to generate hypotheses and then to prove or disprove them using advanced security tools and analytics, including orchestration and automation. The output of hunts will be the development of new capabilities (scripts, correlation searches, cyber playbooks, etc.) and security posture improvement that can be used by the security operations center to better defend and protect our networks.

What our ideal candidate looks like

Our cybersecurity organization is currently in need of a Tier 3 expert security analyst, threat hunter to join our fast-growing team. The ideal candidate will be intricately involved in planning and running both Daily and Focused Threat Hunts in a methodical manner using Cyber Threat Intelligence (CTI) and the MITRE ATT&CK framework. They will regularly evaluate alternate models via theoretical approaches to improve our threat hunt process and procedures. This is the perfect opportunity for the successful candidate to become a part of an innovative and energetic team that will work directly with our Cybersecurity Analytics (CSA) team to influence the development of our analytics tools including self-serve to support and improve our threat hunting capabilities.

The candidate has a deep understanding of cybersecurity, networking traffic analysis, intrusion detection, offensive security, statistics with the ability to script in one or more languages like Python (including Numpy, Matplotlib, Pandas DataFrame), Matlab, Mathematica, Power Shell or others. We are looking for a "Rock Star" threat hunter to lead, teach, and mentor other members on our team. Daily hunts start from reviews of asset discovery and vulnerability assessment data or network and behavioral anomalies.  Then they explores ways to identify stealthy threats that may have found their way inside our network, without being detected, using the latest CTI.   We are looking for hands-on analysts who can generate excellent hypothesis based on educated hunches, threat intelligence and detailed knowledge of our networks. The candidate will use a methodical and intelligence data driven approach to prove or disprove the hypotheses using qualitative and/or quantitative skills.

This role includes a working knowledge of statistical analysis, the ability to understand various data structures and common methods in data transformation, pattern recognition and inference skills to aid in finding threats within the noise. Additionally, it is preferable for the analyst to have a working knowledge of security appliances and professional / open source tools that support threat hunting, including understanding the analysis of competing hypotheses. The scope of this role includes researching attack patterns, threat reports, profiling attackers and their Tactics, Techniques and Procedures (TTPs) and risk/threat analyses. In this role, you will interface with many internal security teams to keep up to date with the latest attacks and defensive techniques.

We have

  • Dedicated time to perform threat hunting as a normal part of the security analysis tasking
  • A cybersecurity operations center with very talented security analysts, CTI, forensics, data scientists, infrastructure engineers and a dedicated software tools development team
  • Challenging and fast paced environment
  • A fun and energized team that promotes continuous learning and improvement
  • Red team exercises that allow analysts to hone and improve their skills as defenders
  • No shortage of attacks from APTs and the most advanced nation states
  • Ability to attend major security conferences and events, industry-leading training courses as well as Viasat's custom in-house security training
     

Requirements:

  • Bachelor's Degree in Computer Science, Engineering, Mathematics or equivalent experience using the Diamond Model and Cyber Attack Lifecycle, but preferably a Masters or Ph.D.
  • Minimum 4+ years experience.
  • Ability to think like an attacker and a detailed understanding of offensive security
  • Ability to perform threat research and profile attackers
  • Advanced critical thinking and problem solving skills with a proven ability to quickly analyze large amounts of often conflicting data and making sound decisions
  • Ability to not let your cognitive biases influence or effect your hunting, hypothesis generation or hypothesis validation
  • Proven track record of successful and innovative hunts that are completed in a timely manner
  • Experience using the Cyber Attack Lifecycle
  • Thorough understanding of how to detect lateral movement within a network and thinking outside the box to discover the signal within the noise
  • Excellent written and verbal communications skills with the ability to simplify findings to brief management and customers
  • US citizenship required with the ability to get up to a top secret security clearance

Preferences: 

  • Master's or PHD Degree in Computer Science, Engineering, or Mathematics
  • Excellent analytical skills with an understanding of statistics and probability theory
  • Ability to script in other languages and tools
  • Experience using the Diamond Model

Drive your career to Viasat where every day you know your expertise makes a difference to the company, your team and our customers!  If you are excited by this opportunity, submit your resume. It only takes a few minutes and could start you on your new path to a fulfilling career at Viasat.

To learn more about this site and other office locations, please click here!


Additional requirements

Minimum education:

BA/BS

Years of experience:

4-6 years

Travel:

Up to 10%

Citizenship:

US Citizenship Required

Clearance:

Active United States Secret Clearance

Back to search jobs

Viasat is proud to be an equal opportunity employer, seeking to create a welcoming and diverse environment. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, ancestry, physical or mental disability, medical condition, marital status, genetics, age, or veteran status or any other applicable legally protected status or characteristic.

If you would like to request an accommodation on the basis of disability for completing this on-line application, please click here.