Insider Threat Program Team CISA Analyst

Overview

The Digital Modernization Sector at Leidos is hiring a Hunt Analyst to support the HEITS Contract as part of the DHS Insider Threat Program (ITP) supporting the Cybersecurity and Infrastructure Security Agency (CISA). This role will use advanced analytics, monitoring, and data correlation to identify and mitigate insider threats to the DHS and CISA missions.

• Review, analyze, and search insider threat data to identify trends, patterns, and indicators.
• Provide analytical and program support services related to the UAM/UEBA tool and monitor the platform to identify emerging insider threat requirements.
• Identify and triage critical/high risk UAM alerts related to potential insider threat risk to the DHS enterprise.
• Leverage methodologies and behavioral analytics to detect, investigate, and mitigate anomalous activity and policy violations indicative of malicious insider behavior.
• Provide timely response to critical/high UAM alerts (within 4 hours during normal business hours and after-hour support). Normal business hours are defined as 6am to 10pm Monday – Friday excluding weekends and scheduled holidays. Implement corrective actions to restore normal operations and prevent recurrence.
• Author and produce written analytical and threat reporting to address and mitigate insider threat matters.
• Conduct routine liaison with DHS and CISA counterparts to deter, detect, and mitigate insider threat activity.

• Bachelor’s degree and (12)+ years of prior relevant insider threat experience or Master’s with (10)+ years of prior relevant experience. Additional years of experience with requisite certifications will be considered in lieu of degree.
• Minimum of 10 years demonstrated knowledge of the intelligence cycle, processes, and organizations.
• Minimum of 10 years demonstrated knowledge of various research tools and procedures and methods of analyzing, compiling, reporting, and disseminating intelligence data and information.
• Minimum of 10 years demonstrated knowledge of research and analytical techniques as applied to difficult and complex assignments in security, law enforcement, and counterintelligence analysis.
• Possess a strong analytical background.
• Possess strong critical thinking skills.
• Have excellent written and verbal skills with the ability to deliver briefings/written products and reports to a diverse group of audiences.
• Possess the ability to plan, coordinate, research, and analyze all-source intelligence information for accuracy, timeliness, and relevance to mission.
• Possess knowledge of current domestic and international threats to U.S. national security interests. Be adept at establishing networks with relevant security, personnel, and prevention stakeholders to foster program utilization.
• Be a self-starter capable of working independently to promote program goals.
• Working knowledge of User Activity Monitoring Software (UAM) and solutions.
• Working knowledge of Cybersecurity toolsets designed to support ITP mission activities.
• Working knowledge of Open-Source toolsets.
• Working knowledge of Insider Threat Frameworks;
  Pathway to Violence & Critical Pathway.
• Current TS/SCI and must be a U.S. Citizen.
• Ability to obtain DHS EOD SCI and willingness to undergo CI Polygraph.

• Master’s degree from an accredited college or university in Criminal Justice, Homeland Security, Cyber Security, or a related field.
• Proven experience (10+ years) in Intelligence Analysis.
• Experience with User Activity Monitoring products and platforms.
• Certified Counter-Insider Threat Professional – Fundamentals (CCITP‑F).
• Certified Counter-Insider Threat Professional – Analysis (CCITP‑A).
• Completion of Center for Development of Security Excellence (CDSE) Insider Threat Detection Analysis Course (ITDAC).
• Completion of Workplace Assessment of Violence Risk (WAVR‑21) Workshop.
• Completion of Center for Development of Security Excellence (CDSE) Curriculums; INT
  311.CU/INT
  312.CU/CI201.CU.

All qualified applicants will receive consideration for employment without regard to sex, race, ethnicity, age, national origin, citizenship, religion, physical or mental disability, medical condition, genetic information, pregnancy, family structure, marital status, ancestry, domestic partner status, sexual orientation, gender identity or expression, veteran or military status, or any other basis prohibited by law. Leidos will also consider for employment qualified applicants with criminal histories consistent with relevant laws.