Cyber Threat Analyst

Job Overview

The Air Force Special Operations Command (AFSOC) Intelligence, Surveillance, and Reconnaissance (ISR) Directorate supports and executes programs that enhance the capabilities of Air Force Special Operations Forces (AFSOF) intelligence personnel. These programs are designed to ensure intelligence personnel are equipped to deliver comprehensive and actionable intelligence services to United States Special Operations Command (USSOCOM) elements and subordinate commands. The candidate will conduct all‑source analysis and targeting to identify, monitor, and counter foreign cyber actors threatening AFSOC weapons systems, critical infrastructure, and information systems.

Produce timely, actionable cyber threat intelligence for senior decision makers and operational planners. Ideal candidates will align with Patch Plus’ guiding principles of Purpose, Proficiency, and Character, emphasizing high competence, moral integrity, and a commitment to national security.

• Identify and analyze enemy cyber threats aimed at disrupting AFSOC operations and compromising vital systems.
• Monitor threat intelligence sources (security alerts, warnings) to compile actionable threat intelligence.
• Document and analyze malicious actor TTPs; provide strategic recommendations to counter hostile cyber operations.
• Apply IC standards to analyze all-source intelligence on current and emerging threats; share analysis with AFSOC customers and partners.
• Deliver timely threat intelligence reports and briefings to inform decision makers and support operational planning.
• Produce routine intelligence assessments and cyber warning assessments for emerging threats.
• Collaborate with IC, SOF, Air Force, and joint partners to share insights and coordinate responses.

• Bachelor’s degree in cybersecurity, intelligence studies, computer science, or a relevant field.
• Graduate of the Air Force Cyber Intelligence Analyst Course (1N4X1) AFSC Awarding Course or service equivalent.
• At least three of the following certifications:
  Network+, Security+, Basic DNEA JQR, Certified Ethical Hacking, Pen Test Certification, Malware Analysis Certification.
• Minimum 5 years hands‑on experience in intelligence analysis and production within the last 12 years.
• Familiarity with MITRE ATT&CK, Cyber Kill Chain, and STRIDE threat modeling frameworks.
• Top Secret clearance with SCI eligibility.

• Experience supporting cyber threat intelligence for special operations or national intelligence missions.
• Additional certifications: CISSP, CEH, GREM, or GCIA.
• Hands‑on experience with cyber threat hunting or digital network exploitation.

• Offers contingent on successful contract bid.
• IA/Cybersecurity certifications must be held on Day 1; a 30‑day grace period may apply in limited circumstances.
• July Start

• Highly Competitive Compensation Package
• 401K Plan
• ESOP (Employee Stock Ownership Program)
• Annual Performance Bonuses
• Paid Federal Holidays (FT positions only)
• Paid Time Off (FT positions only)
• Health and Wellness Benefits
• Disability / Vision / Dental / Life Insurance
• & Much More…

Patch Plus Consulting, Inc. is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to age, ancestry, color, family or medical care leave, gender identity or expression, genetic information, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran status, race, religion, sex (including pregnancy), sexual orientation or any other characteristic protected by applicable laws, regulations and ordinances.