Senior Cyber Threat Intelligence Analyst

5 days ago Be among the first 25 applicants

Clearwaters.IT is seeking an experienced Senior Cyber Threat Intelligence Analyst to support a program within the Department of Commerce. This position will be responsible for optimizing and managing threat intelligence processes, identifying and analyzing adversarial tactics, methodologies, and gaps in cybersecurity defenses. The Senior CTI Analyst will collaborate with internal and external stakeholders to produce critical intelligence products, report on emerging threats, and assist with operational planning to defend against cyber adversaries. This position requires deep expertise in all-source cyber threat intelligence collection, analysis, and reporting, with the ability to translate intelligence into actionable recommendations for cybersecurity operations and decision-making. This position is on-site in Washington D.C. This position is contingent on the award.

Responsibilities:

1. Develop and lead the Cyber Threat Intelligence (CTI) team, including mission definition, process optimization, task management, and documentation.
2. Identify threat tactics, methodologies, intelligence gaps, and shortfalls.
3. Be on call before and after normal hours, including weekends and holidays.
4. Provide subject matter expertise for cyber operations indicators and intelligence requirements.
5. Monitor and assess open-source and classified CTI sources at tactical, operational, and strategic levels.
6. Analyze and report adversarial activities relevant to the Department of Commerce's IT systems and priorities.
7. Track and assess APTs, cybercriminals, and hacktivist groups.
8. Produce and deliver timely, fused, all-source cyber intelligence products such as Threat Assessments, Briefings, Reports, and Studies.
9. Provide Indicators of Compromise (IOCs) and Tactics, Techniques, and Procedures (TTPs) to relevant teams.
10. Respond to PIRs from DOC leadership with analysis reports and feedback.
11. Create and deliver cyber threat briefings to stakeholders and senior leadership.
12. Support exercises, planning activities, and time-sensitive operations.
13. Maintain and update Cyber Threat Intelligence SOPs and processes.
14. Recommend program and policy enhancements, perform risk assessments, and advise leadership.
15. Synthesize OSINT and Closed-Source Intelligence to evaluate exposure and attack vectors.
16. Provide timely notices of imminent threats or hostile activities.
17. Report significant network events and intrusions.
18. Work with planners, analysts, and collection managers to ensure accurate requirements and plans.
19. Draft and submit Intelligence Collection and Production Requirements.
20. Coordinate across DOC and partner organizations to align intelligence support.
21. Establish and maintain collaborative relationships with DHS, law enforcement, and federal intelligence agencies.

Requirements:

• Bachelor's degree in Cybersecurity, IT, CS, Engineering, or related; Master's preferred.
• At least 7 years of experience in cyber threat intelligence or cybersecurity operations.
• Active TS/SCI Security Clearance.
• Relevant certifications (CISSP, GCTI, CEH, etc.).
• Experience leading or managing cyber threat intelligence teams.
• Expertise in adversary TTPs and frameworks like MITRE ATT&CK.
• Proficiency with threat platforms, SIEMs, and analysis tools.
• Strong knowledge of cyber threat landscape and adversarial groups.
• Experience with OSINT and all-source analysis.
• Excellent communication skills for reports and briefings.
• Ability to collaborate across teams and lead initiatives.

Benefits:

• Competitive salary and benefits, including health, dental, vision, 401(k), PTO, professional development, and others.

• Seniority level: Mid-Senior level
• Employment type: Full-time
• Job function: Information Technology
• Industries: IT Services and Consulting