Mandiant logo
Associate Intelligence Enablement Consultant (Remote - West Region) - Mandiant Los Angeles, CA Bookmark Share Print 442 1 1

Listing Description


Job Description

Mandiant's Intelligence Capability Development (ICD) services transform organizations from a “technology-led” mentality to an “intelligence-driven” capability.  ICD services empower and enable clients to proactively leverage and integrate CTI across various cybersecurity functions, as well as laterally across an entire organization. The successful candidate will be responsible for executing the entire CTI Lifecycle, from guiding the organizations strategic direction for CTI, establishing a robust collections and processing framework, organizing analysis best practices, instituting production requirements, and developing dissemination protocols aligned to stakeholder requirements.

  • Process, organize, analyze, and assist in contextualization of incident indicators
  • Support CTI collection, processing, and analysis
  • Support Tactical CTI analysis efforts (i.e., log analysis and threat hunting)
  • Provide static and dynamic malware analysis
  • Support customer operational stand-up calls & weekly updates
  • Develop engagement deliverables, support customer briefings
  • Investigate network and host detection and monitoring systems to advise cyber defense teams
  • Develop customers core threat intelligence capabilities and support CTI capability maturation
  • Support CTI stakeholder identification and intelligence requirements gathering
  • Support the creation and tuning of CTI standard operating procedures (SOPs)
  • Integrate CTI workflows into cyber defense functions (i.e., SOC, IR, Hunt, Risk)
  • Develop Cyber Threat Profiles based on industry, geo location, critical assets etc.
  • Map Threat Actor capabilities to organizational defenses
  • Support intelligence training course development and delivery

This position demands a balance of both strategic and tactical thinking, along with the application of technical and non-technical expertise.  The candidate must be able to learn quickly, adapt to unique situations, and demonstrate thought leadership.


Qualifications
  • 0-2 years’ experience in a dedicated intelligence practitioner role; Intel disciplines can vary but must have worked (currently or previously) in a dedicated Intel role to be considered.
  • Functional understanding of CTI methodologies and application concepts within the modern cyber security organization
  • Direct experience in the consumption, processing, and analysis of tactical (technical) CTI within an operational environment, supporting monitoring, detection, and response capabilities
  • Experience in deploying and analyzing data from technical security controls, to include web proxy, firewalls, IPS, IDS, mail content scanning appliances, enterprise antivirus solutions, network analyzers, and other host-based protection solutions
  • Knowledge of and experience with standard network logging formats, network management systems and network security monitoring systems, security information and event management, network packet analysis tools and forensic analysis tools.
  • Strong understanding and experience related to:
    • Threat Intelligence analysis and experience managing and implementing the threat intelligence lifecycle
    • Common malware variants, functionality, and basics of static and dynamic analysis
    • Common threat actor tactics, techniques, and procedures
    • Threat Intelligence Platform (TIP) usage and best practices
    • Cyber Attack Lifecycles and Threat Models
    • Cyber Security-related process development
    • Proven written and oral communication skills and ability to quickly document research and analysis
    • Experience conducting executive debriefs of deliverables and project outcomes
    • Excellent time management skills
    • Research best practices and topic analysis
  • Report writing skills, able to service Strategic, Operational and Tactical audiences

Desired skills:

  • Previous experience in a customer facing role and/or consulting expertise
  • Strong understanding of threat intelligence analysis and application, while conveying strategic outcomes to executive audiences
  • Scripting capabilities in Python and/or Bash
  • Knowledge of various operating systems

Additional Information

As a U.S. federal contractor, Mandiant has adopted a COVID-19 Vaccination Policy to comply with our obligations under applicable laws and requirements. This position may be covered under Mandiant’s COVID-19 Vaccination Policy, as required in order to support federal contracts, access company offices and/or attend in-person meetings and work events. If covered under this policy, proof of vaccination against COVID-19 may be required as a condition of hire.

At Mandiant we are committed to our #OneTeam approach combining diversity, collaboration, and excellence. All qualified applicants will receive consideration for employment without regard to race, sex, color, religion, sexual orientation, gender identity, national origin, protected veteran status, or on the basis of disability.

Minimum Salary: 71,600.00.

Final salary will be determined commensurately with cost of living, experience level, and/or any other legally permissible considerations.

Incentive Compensation: Eligibility for annual bonus subject to individual and company performance; eligibility for award of Restricted Stock Units subject to eligibility requirements, approval from Mandiant’s Compensation Committee, and vesting terms. Benefits: Whether you are just starting your career, reaching a milestone, or gearing up for retirement, we offer plans and programs to keep you happy and healthy at any stage of life. We regularly evaluate our options to make sure they’ve got everything you need. Part of what makes Mandiant great is our diverse team, and we’ve made it our priority to provide benefits that support you on your individual journey at work and at home.

Mandiant subsidized benefits include Medical, Dental, Vision, Life, and Disability Insurance. Subject to eligibility requirements, Mandiant also offers the ability to participate in 401(k), Flexible Spending Accounts, Health Savings Accounts, Dependent Care Spending Accounts, and Employee Stock Purchase Program. Mandiant also provides Paid Time Off, Flexible Paid Sick Time, and Paid Holidays.

 


Listing Details

  • Citizenship: Not Provided
  • Incentives: Not Provided

 

  • Education: Not Provided
  • Travel: Not Provided
  • Telework: Full Telecommute



About Us

NinjaJobs is a community-run job platform developed by information security professionals. Our unique approach of focusing strictly on cybersecurity positions allows us to personalize the user experience.

Our Contacts

1765 Greensboro Station Pl.
Suite 900
Tysons Corner Va 22102

(703) 594-7765