Data Cyber Hunt Analyst

Location: Fort Meade, Maryland

Status: Full-time

Clearance Level: Secret

Education: Bachelor's

Salary: $80,000-$105,000

Benefits: Competitive salary and bonus structure, Comprehensive health insurance, 401(k) with company match, Generous PTO and remote work options.

Application: Apply here, or on our Careers Page @ Careers - Metronome (wearemetronome.com), email your resume to r.derring@wearemetronome.com

Description: This role supports a DoD program at COS (Colorado). On-site presence: 80%, Travel: 20%, On-call: 0%

Metronome is looking for an experienced Data Cyber Hunt Analyst with Data Science experience to apply strong cyber security, Defensive Cyber Operations (DCO) and networking domain knowledge to support cyber analytics product development and model development, threat analysis, and direct customer mission support. Work is performed mostly on customer site in Colorado Springs, CO. Must be open to some travel as well.

• Security Clearance - A current U.S. Government Security Clearance is not required to start, but will be processed for a Secret level clearance; U.S. Citizenship required. Will also consider candidates with a TS/SCI clearance.
• 5+ years of experience in cyber security operations related fields and a Bachelors in related field or 3 years experience with Masters; or High School Diploma and 9 years experience.
• Knowledge of Defensive Cyber Operations (DCO), including threat hunting methodologies.
• Technical experience with cyber data analysis to include continuous monitoring, intelligence, and reporting.
• Proficient in various query languages (SQL, KQL (Kusto).
• Python experience, and bonus for experience using Jupyter notebooks.
• Experience with dashboarding/visualizations (Power-Bi, Superset, Kibana).
• Ability to abstract threat hunting concepts to look at the 'big picture' and discover threats that aren't captured by traditional methods (e.g. SIEMs).
• Experience in big data hunting analysis and reporting.
• Developing and deploying threat detection signatures.
• Detecting host and network-based intrusions.
• Advanced experience in using cyber tools, defensive toolkits, endpoint and network sensors, SIEMs, and threat sharing platforms (e.g. MISP).
• Advanced experience with the MITRE ATT&CK framework and associated TTPs.
• Leverages an understanding of enterprise IT infrastructure, systems monitoring, and networking to identify suspicious patterns and behaviors within the ecosystem.
• Excellent verbal, written, analytical, and presentation skills.
• Excellent work ethic and a high commitment to quality.
• Ability to travel up to 25% of the time.
• Must be able to work on customer site in Colorado Springs, CO area 4-5 days/week. Flexibility is essential to adapt to schedule changes as needed.

• A current Secret level security clearance is preferred.
• Prior experience interfacing, consulting and training customers is a big plus.
• Minimum of Security+ certification.
• Experience with DoD data types and current DoD Data Strategies.
• Experience with US Space Force.

• All candidates will be required to be on-site at a manager identified Enlighten office between 1-5 days per week depending on program needs regardless of % travel or % customer on-site requirements. Must be able to work in a hybrid environment. Flexibility is essential to adapt to schedule changes as needed.