FS-ISAC

Senior Technical Analyst, Americas

Full-Time in Reston, VA - Intel

FS-ISAC OVERVIEW:

The Financial Services Information Sharing and Analysis Center (FS-ISAC) is dedicated to safeguarding the global financial system by reducing cyber risk. We serve financial institutions around the globe and in turn their customers. Headquartered in the US, with intelligence staff in six countries, FS-ISAC shares timely, relevant, and actionable intelligence. Our services are grouped around three pillars: intelligence, resilience, and security. FS-ISAC’s Global Intelligence Office (GIO) is responsible for the formal threat-sharing and analytical reporting for its members. This is a diverse, global team in a fast-paced environment.

POSITION SUMMARY:

The Senior Technical Analyst will serve the Americas region from Reston, VA (Washington, DC metro area) and report to the Americas Intelligence Officer within FS-ISAC’s GIO. Occasional travel (approximately 5%) will primarily be within the United States. All applicants must be citizens of the United States of America due to TS/SCI Security Clearance requirement. FS-ISAC is unable to sponsor work authorization or provide immigration-related support for this position. This is a hybrid position and must report to our Reston, VA headquarters, 3-4 days per week.

GENERAL RESPONSIBILITIES:

  • Conduct deep dives on specific threats, attacks/campaigns, incidents, vulnerabilities using multiple sources and proven data analytic skills to enhance members’ understanding of the threat and mitigation ability.
  • Synthesize raw telemetry data to identify patterns and unique signatures, conduct analysis on exploit kits and actors/groups’ technical capabilities against the industry, and enhance mid-to senior level leaders’ decisions on near-term threats
  • Use tools such as Elastic/Kibana, Python, VirusTotal, Censys/Shodan, and ‘DNS Forensics’ to extract, analyze, and automate workflows.
  • Produce well-written, concise, and actionable intelligence analysis reports tailored to both technical and non-technical audiences.
  • Produce actionable/operational reports and briefings for members using both sourced data and original research and analysis
  • Identify collection gaps for further targeting of significant threats, working within a multi-functional team and partners
  • Lead projects, mentor analysts, and assume responsibilities as requested.
  • Interact with FS-ISAC members in person and virtually, engaging with them on threat intelligence, analytical projects, and other technical work.
  • Support of cybersecurity and incident response missions through the investigation of non-member intelligence. Maintain playbooks for major types of threat response for standards and repeatable processes to investigate malware, vulnerabilities and respond to incidents
  • Collaborate within a global team, contributing to member-focused initiatives, such as meetings and training.

BASIC QUALIFCATIONS:

  1. At least 6 years of applicable professional experience.
  2. Active Top Secret/Sensitive Compartmented Information (TS/SCI) security clearance OR ability to obtain one under FS-ISAC sponsorship.
  3. Strong experience in threat research, with a proven ability to identify and analyze emerging cyber threats.
  4. Proficiency in Elastic/Kibana for data visualization, analysis, and monitoring.
  5. Practical experience in threat hunting, including identifying patterns and adversary behavior.
  6. Skills in data analysis to derive actionable insights from complex datasets.
  7. Experience with EclecticIQ (EIQ) or equivalent threat intelligence platforms.
  8. Proficiency in Python, including automating workflows and integrating outputs into operational processes.
  9. Expertise in writing and optimizing queries using tools such as VirusTotal and URL Scan IO.
  10. Experience with tools for analyzing NetFlow data and vulnerabilities.
  11. Exceptional writing and communication skills, with the ability to produce clear, concise, and impactful reports.
  12. Strong interpersonal skills, with the ability to perform professionally under pressure and build effective relationships.
  13. Proven ability to develop and monitor metrics to measure intelligence outcomes.

PREFERRED QUALIFICATIONS:

  • Familiarity with ‘DNS Forensics’, including IOC pivoting, link analysis, and adversary pursuit cycles.
  • Understands malware analysis, including identifying, analyzing, and mitigating malicious threats.
  • Experience using tools like DNS Coffee for IOC lookups.
  • Proficient coding ability (Java/Python/Perl) for automation and technical processes.
  • Demonstrated ability to identify patterns in threat data and optimize queries for analytical tools.
  • Familiarity with automating processes using Python and integrating outputs into workflows.
  • Leadership experience in mentoring analysts or managing deliverables.
  • Knowledge of cybersecurity frameworks, cyber threat intelligence skillsets, and Traffic Light Protocol.
  • Self-motivated and results-oriented, with strong problem-solving skills.
  • Fluency in Spanish, French, or Portuguese is a plus but not required.

WORK ENVIRONMENT:

This is a hybrid position and must report to our Reston, VA headquarters, or a Washington, D.C. Metro area government facility 3-4 days per week. Currently, the team is in-office on Mondays/Wednesdays and usually teleworks the remaining days. This is subject to change dependent upon business needs. Regardless of work location, the position requires a professional work environment, and the candidate must be able to meet the physical demands of the professional environment. Reasonable accommodation may be made to enable individuals with disabilities to perform essential functions.

FS-ISAC has reviewed this position description to ensure that essential functions and basic duties have been included. It is not intended to be construed as an exhaustive list of all functions, responsibilities, skills, and abilities. Additional functions and requirements may be assigned by supervisors as deemed appropriate. All employees must be authorized to work in the United States.

FS-ISAC provides equal employment opportunities to all employees and applicants for employment without regard to race, color, religion, sex, national origin, age, disability, or genetics. In addition to federal law requirements, FS-ISAC complies with applicable state and local laws governing nondiscrimination in employment in every location in which the company has facilities requirements, FS-ISAC complies with applicable state and local laws governing nondiscrimination in employment in every location in which the company has facilities.

%FOOTER_POWERED_BY%breezy