Data Exploiter with Security Clearance

Acclaim Technical Services, founded in 2000, is a leading language and intelligence services company supporting a wide range of U.S. Federal agencies. We are an Employee Stock Ownership Plan (ESOP) company, which is uncommon within our business sector. We see this as a significant strength, and it shows: ATS is consistently ranked as a top workplace among DC area firms and continues to grow. We are actively hiring a Data Exploiter with TS/SCI clearance and polygraph in Chantilly, VA area. JOB DESCRIPTION
A qualified Data Exploiter reviews, manipulates, triages, and analyzes large datasets. Candidate
is responsible for supporting operational and analytical requirements. Activities include detailed
log analysis, network traffic monitoring, and vulnerability risk assessment. The individual will be
expected to conduct assessments of software tools and systems to identify vulnerabilities, and
work with internal and external technical stakeholders to identify solutions to enrich analysis.
Able to follow the entire targeting life cycle by engaging in data exploitation of requirements
collection, data analysis, summary and documentation, and actionable information
dissemination. KEY RESPONSIBILITIES
Provide data exploitation support to the customer.
Assist with attribution efforts related to cyber activity.
Use a variety of tools and methods to extract information of foreign intelligence
counterintelligence and targeting value from digital data.
Create a range of products that inform operations, drive targeting and collection
contribute to intelligence products, and support multiple customer needs.
Work with a team to analyze existing software applications and tools, and recommend
new technologies and methodologies to improve team performance.
Write and update technical documentation such as user manuals, system
documentation, training materials, processes and procedures.
Collaborate cross-functionally with data scientists, engineers, developers, targeters, and
analysts.
Provide recommendations for continuous improvement.
Work alongside other team members to sustain and advance our organization’s
capabilities. EDUCATION AND EXPERIENCE
Bachelors degree in Computer Science, Information Technology, or other related
discipline, or equivalent combination of education, technical certifications, training, and
work/military experience. REQUIRED QUALIFICATIONS
Demonstrated experience writing python scripts.
Experience conducting network traffic analysis.
Knowledge of different types of intrusion activity.
Prepare a range of tailored products that embody and explain findings
Ability to sift through large amounts of unstructured data for key data points (i.e.
metadata and artifacts).
Demonstrated knowledge of incident response, containment, and mitigation
Knowledge of common cyber-attack methods.
Demonstrated experience conducting detailed log analysis and system monitoring to
understand system status, detect system breaches, and identify other system
anomalies.
Demonstrated experience performing vulnerability identification, risk analysis, and
remediation.
Ability to triage, review, identify, and correlate items of interest from numerous all source
datasets.
Ability to evaluate worldwide security events to assess system impact and/or risk (eg
zero day exploits, hardware failures, and/or cyber-attacks).
Ability to identify and document information that can fill critical gaps.
Create new methodologies / algorithms for data analysis and correlation.
Create entity / object profiles and derived data sets that enable future opportunities and
analytical efforts.
Experience with technical collection abilities. DESIRED QUALIFICATIONS
Strong understanding of VPNs, VLANs, and TCP/IP.
Experience with Linux operating systems.
Experience with OS hardening using tools such as CIS-CAT.
Ability to working independently with minimal supervision.
Experience with navigating an enterprise security accreditation process.
Demonstrated experience and understanding of network monitoring tools (eg Splunk
WSUS, Snare, Wireshark, and Solarwinds).
Knowledge of MITRE ATT&CK Framework.