Booz Allen Hamilton Cyber Defense Analyst, Senior in Herndon, Virginia

Cyber Defense Analyst, SeniorinHerndon, VAatBooz Allen Hamilton Inc.

Date Posted:12/6/2018

ApplyApplyNot ready to Apply?

×Join Our Talent Network

Join us. The world can’t wait.

The Booz Allen Talent Network is your opportunity hub—a chance to learn about what we do, how we do it, and how you can help.

Tell us what interests you. We’ll send you:

  • Job alerts that match your passions

  • Details about relevant upcoming events

  • Information about our work in the news

  • And more

Empower change with us. Start by joining the Network.

Privacy Policy

Cookie Policy

Terms and Conditions

  • {{ err }}

Thanks for joining our Talent Network, {{vm.userName}}

This service is currently unavailable. Please try again at a later time.


By joining our Talent Network you have not officially applied to a position.

By joining our Talent Network you have not officially applied to a position.

Thanks for joining our Talent Network, {{ vm.userName }}

By joining our Talent Network you have not officially applied to a position. To apply for this position, please click the continue button.


Redirect in {{vm.counter}}

Share With:

Job Snapshot

  • Employee Type:


  • Location:

Herndon, VA

  • Job Type:

Strategy - Planning

  • Experience:

Not Specified

  • Date Posted:


About Us

At Booz Allen, we harness our collective ingenuity to solve our clients’ toughest management and technology problems. We work with governments, Fortune 500 corporations, and not-for-profits around the globe, in industries ranging from defense to health, energy to international development. We believe there is no product, code, or strategy that can create progress—only people can. That’s why for more than 100 years we’ve empowered our team: over 24,000 dreamers, drivers, and doers who work together to change the world .

Job DescriptionJob Number: R0043851

Cyber Defense Analyst, Senior

Key Role:

Monitor, analyze, detect, and respond to Cyber events and incidents. Support dynamic Cyber defense and deliver operational effects, including intrusion detection and prevention, situational awareness, and data spillage. Maintain responsibility for a secure Cyber environment through configuration management, administration, and response actions. Configure and analyze network defense systems, including IDS/IPS, SIEM, and firewalls. Provide work leadership and technical training for junior Cyber defense operators.

Basic Qualifications:

-5+ years of experience with Cyber network defense analysis, Tier I and II security event monitoring and analysis, or Cyber threat hunting

-Experience on a Cyber defense operations team performing the hunting of advanced adversaries, log analysis using Splunk or similar tools, and malware analysis

-Experience with performing Netflow and packet capture analysis

-Experience with Windows file system and registry, and *NIX operating systems and command line tools

-Experience with managing Cyber defense operations teams, projects, and workstreams

-Knowledge of typical behaviors of both malware and malware authors and how common protocols and applications work at the network level, including DNS, HTTP, and SMB

-Ability to obtain a security clearance

-BA or BS degree

Additional Qualifications:

-Experience with using and writing custom signatures for IDS

-Experience with SIEM security alert logic and how it is applied to the analysis of raw logs and creation of new SIEM dashboards and alerts

-Experience with scripting or programming, including Perl, Python, C, C++, C#, Java, Bash/Shell, or batch

-Security+, Certified Ethical Hacker (CEH), Splunk Certified Power User, or Splunk Certified Administrator Certification


Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information.

We’re an EOE that empowers our people—no matter their race, color, religion, sex, gender identity, sexual orientation, national origin, disability, or veteran status—to fearlessly drive change.

#LI-AH1, CB15, CJ1, DH1, GD15, MPPC, SIG2017