Company Overview
The Johns Hopkins Applied Physics Laboratory (APL) is a non-profit, university-affiliated research center (UARC) dedicated to solving critical national security and scientific challenges through its technical expertise in prototyping, R&D, and analysis.
Here’s a concise and well-phrased summary of the job description and company information:
About the Job: Cybersecurity Analyst (Cyber Hunt & Incident Response)
Join APL’s collaborative Cybersecurity Hunt & Incident Response Team to monitor, analyze, and respond to infrastructure, cloud, and hybrid threats. This inquisitive and analytical role involves hunting for advanced threats, performing real-time incident handling, collecting digital evidence, understanding attack methodologies, and recommending security process improvements.
Key Responsibilities:
- Hunt for advanced threats by analyzing data for malicious behaviors.
- Perform real-time incident handling and create/follow procedures for containment.
- Collect digital evidence (logs, malware) for intrusion analysis.
- Maintain knowledge of attack methodologies for operational use.
- Recommend and develop/modify security processes and procedures.
- Identify and analyze threats using OSINT, threat intelligence, and enrichment resources.
Qualifications:
- Bachelor’s Degree in Information Security or a related field (or equivalent experience).
- 5+ years of experience in a complex network environment.
- 3+ years of experience in an operational cybersecurity environment.
- Proficiency in data extraction and manipulation using scripting languages (Python, PowerShell, SPL).
- Experience analyzing data with tools like Splunk, ELK, SQL, Jupyter notebooks, or Python.
- Technical experience in areas like Azure, AWS, SaaS, CAASM, SASE, SSE, IAM, EDR, authentication anomalies, Suricata, Zeek, full packet capture, Proxy, and Sandbox technologies.
- Understanding of cloud-based threats, IAM exploits, privilege escalation, and lateral movement.
- Understanding of OS internals, normal activities, MITRE ATT&CK techniques, and anomaly detection.
- Experience with Assume Breach methodologies and advanced attack methodologies (Nation State adversaries, living off the land, MITRE ATT&CK).
- Demonstrated ambition for continuous learning in cybersecurity.
- Ability to obtain a Secret level security clearance (U.S. citizenship required).
Preferred Qualifications:
- Master’s degree or equivalent experience in Cybersecurity, Computer Science, or a related field.
- Extensive experience in cloud technologies (AWS or Microsoft Azure).
About Us: Johns Hopkins Applied Physics Laboratory (APL)
APL, a not-for-profit university-affiliated research center, provides solutions to complex national security and scientific challenges through technical expertise in prototyping, R&D, and analysis. We offer a vibrant and welcoming culture with opportunities for growth and strong team connections. APL values diverse perspectives, encourages creativity, and provides generous benefits, including education assistance and retirement contributions, within the Baltimore-Washington metro area.
APL is an equal opportunity employer committed to providing reasonable accommodation.
Salary Range: $90,000 – $230,000 Annually (commensurate with experience, location, and skills). Comprehensive benefits package offered. Applications accepted on a rolling basis.