Booz Allen Hamilton
Malware Analyst – Booz Allen Hamilton
Job Number: R0230504
Overview As a security operations center (SOC) analyst, you’re the first line of cyber defense for your organization, responding to and mitigating threats in real time. You’ll guide best practices and security measures, helping secure critical infrastructure from the constant onslaught of cyber-attacks.
Responsibilities As a SOC analyst on our team, you’ll develop network defense skills, monitor, detect, and analyze threats using state‑of‑the‑art tools and technologies. When an incident is detected, you’ll work with the team to collect data that assists incident response in understanding and mitigating the threat, analyze alerts to determine impacted systems, initiate recovery efforts, and contribute to assessments to understand attackers’ goals and stop them.
Qualifications
Experience in a SOC, incident response, or cyber threat analysis role
Experience analyzing logs, network traffic, digital forensics, malware analysis, threat intelligence, and cybersecurity
Experience with incident response frameworks such as NIST or MITRE ATT&CK
Knowledge of SIEM such as Splunk, Elastic, QRadar, or Sentinel, and EDR such as CrowdStrike or Microsoft Defender, IDS, and IPS
Knowledge of operating system‑specific exploitation vectors
Ability to travel up to 25 % of the time
TS/SCI clearance
High school diploma or GED
DoD 8140 Level II Certification such as Security+, CySA+, or CISSP Certification
Nice to Have
Experience supporting Air Force or DoD Cyber Protection Teams (CPTs) or cyber threat intelligence missions
Experience in malware classification, unpacking, and behavioral analysis
Experience developing custom scripts and automation in Python or PowerShell for analysis workflows
Knowledge of adversary TTPs and frameworks such as CAPEC
Knowledge of cyber kill chain methodologies
Master’s degree in Cybersecurity, Computer Engineering, or Digital Forensics
GREM, GCFA, or OSCP Certification
Clearance Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information; TS/SCI clearance is required.
Compensation & Benefits Salary range: $69,400.00–$158,000.00 (annualized USD). The position offers health, life, disability, financial, and retirement benefits, paid leave, professional development, tuition assistance, work‑life programs, and dependent care. Salary is determined by location, education, experience, and contract requirements. The posting will close within 90 days from the posting date.
Identity Statement As part of the application process, you are expected to be on camera during interviews and assessments. We reserve the right to take your picture to verify your identity and prevent fraud.
Work Model
If this position is listed as remote or hybrid, you’ll periodically work from a Booz Allen or client site facility.
If this position is listed as onsite, you’ll work with colleagues and clients in person, as needed for the specific role.
Commitment to Non‑Discrimination All qualified applicants will receive consideration for employment without regard to disability, status as a protected veteran or any other status protected by applicable federal, state, local, or international law.
Seniority level Not Applicable
Employment type Full‑time
Job function Engineering and Information Technology
Industries IT Services and IT Consulting
#J-18808-Ljbffr
Overview As a security operations center (SOC) analyst, you’re the first line of cyber defense for your organization, responding to and mitigating threats in real time. You’ll guide best practices and security measures, helping secure critical infrastructure from the constant onslaught of cyber-attacks.
Responsibilities As a SOC analyst on our team, you’ll develop network defense skills, monitor, detect, and analyze threats using state‑of‑the‑art tools and technologies. When an incident is detected, you’ll work with the team to collect data that assists incident response in understanding and mitigating the threat, analyze alerts to determine impacted systems, initiate recovery efforts, and contribute to assessments to understand attackers’ goals and stop them.
Qualifications
Experience in a SOC, incident response, or cyber threat analysis role
Experience analyzing logs, network traffic, digital forensics, malware analysis, threat intelligence, and cybersecurity
Experience with incident response frameworks such as NIST or MITRE ATT&CK
Knowledge of SIEM such as Splunk, Elastic, QRadar, or Sentinel, and EDR such as CrowdStrike or Microsoft Defender, IDS, and IPS
Knowledge of operating system‑specific exploitation vectors
Ability to travel up to 25 % of the time
TS/SCI clearance
High school diploma or GED
DoD 8140 Level II Certification such as Security+, CySA+, or CISSP Certification
Nice to Have
Experience supporting Air Force or DoD Cyber Protection Teams (CPTs) or cyber threat intelligence missions
Experience in malware classification, unpacking, and behavioral analysis
Experience developing custom scripts and automation in Python or PowerShell for analysis workflows
Knowledge of adversary TTPs and frameworks such as CAPEC
Knowledge of cyber kill chain methodologies
Master’s degree in Cybersecurity, Computer Engineering, or Digital Forensics
GREM, GCFA, or OSCP Certification
Clearance Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information; TS/SCI clearance is required.
Compensation & Benefits Salary range: $69,400.00–$158,000.00 (annualized USD). The position offers health, life, disability, financial, and retirement benefits, paid leave, professional development, tuition assistance, work‑life programs, and dependent care. Salary is determined by location, education, experience, and contract requirements. The posting will close within 90 days from the posting date.
Identity Statement As part of the application process, you are expected to be on camera during interviews and assessments. We reserve the right to take your picture to verify your identity and prevent fraud.
Work Model
If this position is listed as remote or hybrid, you’ll periodically work from a Booz Allen or client site facility.
If this position is listed as onsite, you’ll work with colleagues and clients in person, as needed for the specific role.
Commitment to Non‑Discrimination All qualified applicants will receive consideration for employment without regard to disability, status as a protected veteran or any other status protected by applicable federal, state, local, or international law.
Seniority level Not Applicable
Employment type Full‑time
Job function Engineering and Information Technology
Industries IT Services and IT Consulting
#J-18808-Ljbffr