Cleared Threat Intelligence Analyst - 1386482

December 08, 2022 - Columbia, MD


  • The Cyber Intelligence Analyst should be an independent, critical thinker skilled in the intelligence process and able to satisfy intelligence requirements under tight deadlines
  • Required: Bachelor’s degree in IT, Computer Science, Intelligence or equivalent
  • 5+ years of cybersecurity, threat intelligence or IT experience; 2+ years of experience in operational or tactical cyber threat analysis; experience can include one or more of the following cyber-security functions: * Cyber Threat Intelligence, Threat Hunting, System Administration, Intrusion Detection/Prevention, Monitoring, Incident Response, Digital Forensics, Vulnerability Management
  • Active TS/SCI
  • Prior experience as a technical cyber threat intelligence (or related) subject matter expert that has worked across organizational boundaries to analyze cyber threats
  • Knowledge of advanced cyber threats, threat vectors, attacker methodology to include, tools, tactics, and procedures and how they tie into the Cyber Kill Chain or ATT&CK framework, Diamond Model etc
  • Experience in malware detection and analysis using static and dynamic malware analysis methods
  • Knowledge of how malicious code operates and how technical vulnerabilities are exploited with premium threat intelligence tooling and/or open-source intelligence techniques
  • Experienced in developing network and host-based signatures such as Snort, Yara and ClamAV to identify specific malware
  • Experience building and maintaining relationships with intelligence partners
  • Experience with disseminating information in accordance with TLP classification and handling protocols, to intelligence partners through the appropriate mechanisms


  • The Cyber Intelligence Analyst will work on moderate to high complexity assignments where analysis requires an in-depth evaluation of variable factors
  • Work closely with US Government organizations in support of threat intelligence efforts
  • The Cyber Intelligence Analyst will be part of the Threat Intelligence & Interdiction Talos team
  • The Cyber Intelligence Analyst will provide decision making support and work on moderate to highly complex assignments requiring technical expertise
  • Generate tailored and actionable products based on analyzed threat campaigns, external and customer driven events and incidents
  • Collaborate with technical and threat intelligence analysts to provide indications and warnings, and contribute to predictive analysis of malicious activity
  • Develop analytical hypotheses, prove (or disprove) those hypotheses through research; communicate that information to stakeholders both verbally and in writing
  • Review and analyze internal, open source, and dark web datasets to find threat information and use it to provide value
  • Apply knowledge of current cyber threats and the associated tactics, techniques, and procedures used to infiltrate computer networks
  • Provide accurate and priority driven analysis on cyber activity/threats, and present complex operational/technical topics to senior managers, customers and stakeholders
  • Establish and maintain excellent working relationships/partnerships with the Cisco Talos Incident Response and support teams throughout the organization, as well as different business segments
  • Produce intelligence products at the Strategic, Operational, and Tactical level for audiences with diverse technological backgrounds
  • Conduct detailed technical analysis supported by industry accepted threat intelligence analytical frameworks, tools, and standards
  • Create and evaluate trend/correlation analysis for scenario forecasting at both the tactical and operational level
  • Develop and refine cyber-threat intelligence collection and analysis processes
  • Provide expertise and recommend relevant remediation and countermeasures during incident response efforts
  • Provide security risk mitigation methods and compensating controls to help drive remediation efforts for customers
  • Collect and analyze artifacts including malicious executables, scripts, documents, and packet captures
  • Generate presentations that illustrate research through visualizations, charts, graphs, infographics, and evidence capture for senior leadership
  • Provide input for the development of objectives, key results, and program metrics
  • Exhibit strong critical thinking and problem-solving skills with sound judgement
  • Maintain or develop professional contacts in the various communities in support of operations

Why Cisco

At Cisco, each person brings their unique talents to work as a team and make a difference. Yes, our technology changes the way the world works, lives, plays, and learns, but our edge comes from our people. Our People Are The Heart of Cisco.

Cisco is proud to be an Affirmative Action and Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, sexual orientation, national origin, genetic information, age, disability, veteran status, or any other legally protected basis.

We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodation.

We see inclusion and diversity as essential to fueling the power of connection. Learn about inclusion and collaboration in action at Cisco. Diversity, Inclusion and Collaboration at Cisco.

Benefits and Perks

We strive to keep our teams happy and healthy. Many roles have the option to be Remote or Hybrid. Cisco provides competitive pay, excellent medical, dental and vision coverage, 401(k) match, 20 days of paid time off plus holidays, support for parents and paid time to volunteer. View the benefits overview. Benefits and Perks - Cisco.

Join us! #WeAreCisco

Cisco Covid-19 Vaccination Requirements

The health and safety of Cisco’s employees, customers, and partners is a top priority. Our goal is to protect and mitigate the spread of COVID-19 infection for strong business resiliency during the pandemic. Therefore, Cisco may require new hires to be fully vaccinated against COVID-19 if the role requires business-related travel, meeting with customers/partners (including visiting third-party sites on behalf of Cisco), attending trade events, and Cisco office entry, unless otherwise prohibited by applicable law, and in countries where COVID-19 vaccination is legally required. The company will consider legally required accommodations/exceptions for medical, religious, and other reasons as per the requirements of the role and in accordance with applicable law. Additional information will be provided to candidates about the requirements and accommodation process at the offer time based on region.

Clicking APPLY will direct you away from