Senior Cyber Threat Intelligence Analyst

Job Description

Job Description

Clearwaters.IT is seeking an experienced Senior Cyber Threat Intelligence Analyst to support a program within the Department of Commerce. This position will be responsible for optimizing and managing threat intelligence processes, identifying and analyzing adversarial tactics, methodologies, and gaps in cybersecurity defenses. The Senior CTI Analyst will collaborate with internal and external stakeholders to produce critical intelligence products, report on emerging threats, and assist with operational planning to defend against cyber adversaries. This position requires deep expertise in all-source cyber threat intelligence collection, analysis, and reporting, with the ability to translate intelligence into actionable recommendations for cybersecurity operations and decision-making. This position is on-site in Washington D.C. This position is contingent on the award.

Develop and lead the Cyber Threat Intelligence (CTI) team, including mission definition, process optimization, task management, and documentation.

• Identify threat tactics, methodologies, intelligence gaps, and shortfalls.
• Be on call before and after the normal hours of operation including weekends and holidays.

• Provide subject matter expertise to the development of cyber operations indicators and support intelligence requirements.

• Monitor and assess open-source and classified cyber threat intelligence (CTI) sources at tactical, operational, and strategic levels, including social media, code-sharing platforms, and the darknet.

• Analyze and report adversarial activities relevant to the Department of Commerce (DOC)’s IT systems, missions, and leadership information priorities.

• Track and assess Advanced Persistent Threats (APT), cybercriminals, and hacktivist groups.

• Produce and deliver timely, fused, all-source cyber intelligence products such as:
• Threat Assessments
• Briefings
• Intelligence Studies
• Country Studies
• APT and Cybercriminal Tracker Reports
• Cyber Threat Intelligence Reports
• Vulnerability and Mitigation Reports
• Incident and Malware Analysis Reports
• Ongoing Alert Reports

• Provide Indicators of Compromise (IOCs) and Tactics, Techniques, and Procedures (TTPs) to Security Operations Center (SOC), Threat Hunt, Forensics, and Penetration Testing teams.

• Respond to Prioritized Intelligence Requirements (PIRs) from DOC leadership and provide associated analysis reports and feedback.

• Create and deliver cyber threat briefings to key cybersecurity stakeholders and DOC senior leadership.

• Support exercises, planning activities, and time-sensitive cyber operations with intelligence analysis and reporting.

• Continuously update and maintain the Cyber Threat Intelligence Standard Operating Procedures (SOP) and related processes.

• Recommend CTI program and policy enhancements, perform risk assessments, and advise leadership on mitigation strategies.

• Review and synthesize Open-Source Intelligence (OSINT) and Closed-Source Intelligence to evaluate exposure, historical threats, and potential attack vectors.

• Provide timely notice of imminent or hostile intentions or activities which may impact organization objectives, resources, or capabilities.

• Report intelligence-derived significant network events and intrusions.

• Work closely with planners, intelligence analysts, and collection managers to ensure intelligence requirements and collection plans are accurate and up to date.

• Draft and submit Intelligence Collection and Production Requirements to the intelligence community.

• Enable synchronization of intelligence support plans across DOC and partner organizations.

• Establish and maintain strong collaborative relationships with:
• Department of Homeland Security (DHS) intelligence programs
• Law enforcement agencies
• Federal intelligence teams
• Coordinate with collection managers, planners, and external stakeholders (including CIO, CISO, BOC CIRT, DHS) to ensure alignment of intelligence needs and delivery of actionable insights.

Requirements

• Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, Engineering, or a related field is required. Master’s degree is preferred.

• A minimum of 7 years of experience in cyber threat intelligence, cybersecurity operations, or a related field is required.

• Active TS/SCI Security Clearance

• Certified Information Systems Security Professional (CISSP), GIAC Cyber Threat Intelligence (GCTI), Certified Ethical Hacker (CEH), or other relevant certifications is required.

• Proven experience in leading or managing a team responsible for cyber threat intelligence collection, analysis, and reporting.

• Expertise in analyzing adversary tactics, techniques, and procedures (TTPs), and experience utilizing the MITRE ATT&CK Framework or similar methodologies.

• Proficient in using threat intelligence platforms (e.g., Anomali, ThreatConnect), SIEM systems, and other tools for data analysis and threat reporting.

• Experience with intelligence collection techniques, including open-source intelligence (OSINT), and all-source intelligence analysis.

• Strong understanding of cyber threat landscape, including knowledge of adversarial groups, tactics, and techniques.

• Experience working within the federal government or a similar public-sector organization, especially in the areas of cybersecurity and threat intelligence.

• Strong analytical skills with the ability to identify trends, correlations, and patterns within large sets of data, providing actionable insights.

• Excellent written and verbal communication skills, with the ability to produce clear and concise intelligence products and provide executive-level briefings on complex cyber threat issues.

• Ability to collaborate effectively with cross-functional teams, including cybersecurity operations, planners, and senior leadership to enhance organizational threat defense capabilities.

• Demonstrated ability to lead teams, provide mentorship, and drive continuous improvement in cyber threat intelligence processes and capabilities.

Benefits

Competitive salary and benefits package, including:

• Health, dental and vision insurance
• 401(k) with company match
• Paid time off (PTO) for vacation, sick leave, and personal days
• Professional development reimbursement
• Other benefits, including life insurance, disability insurance, and employee assistance programs