Cyber Threat Intelligence Lead

Description

Leidos is seeking a highly skilled and motivated Cyber Threat Intelligence Lead to join our team in Huntsville, AL. This position will be responsible for leading the Cyber Threat Intelligence team within an Enterprise Security Operations Center (ESOC). The Cyber Threat Intelligence Team provides insights to the ESOC on potential and ongoing cyber threats.

At Leidos, you'll join a team of innovators tackling some of the world's most critical challenges through cutting-edge technology and bold ideas. We foster a dynamic and collaborative environment where your expertise will directly contribute to mission success and the significance of your contributions will only be surpassed by the exceptional opportunities for your professional growth and advancement.

Primary Responsibilities:

• Conducting cyber threat analysis, identifying mitigation and/or remediation courses of action; developing actionable intelligence used to protect organizational IT assets; and trending cyber threat metrics for leadership situational awareness.
• Managing the Cyber Threat Intelligence team, to include priority taskings, ad hoc products, regularly due reporting and products with an emphasis on attention to detail and clear, concise language during the production process.
• Maintaining the daily battle rhythm for the Cyber Threat Intelligence team with an emphasis on adherence to deadlines, attention to detail, and clear/concise communication with the customer and stakeholders.
• Processing technical data from various sources and fuse the data with intelligence reporting to improve the security posture of the customer, as well as manage Threat Intelligence tools.
• Maintaining situational awareness of emerging threats, zero days, vulnerabilities and other threats against customer systems, networks, and assets.
• Identifying, tracking, investigating, writing and reviewing technical products for dissemination to stakeholders regarding high priority threat campaigns, malicious actors, APTs, emerging threats, etc.
• Maintaining a comprehensive understanding of the cyber threat landscape, including identifying and analyzing cyber threats actors and/or activities to enhance cybersecurity posture of an the organization's IT operating environment.
• Bring a comprehensive understanding, analyzing and tracking the cyber threat landscape, including identifying and analyzing cyber threats actors, APT TTPs and/or activities to enhance cybersecurity posture of the organization's IT operating environment.

Basic Qualifications:

• Active Top-Secret Clearance with eligibility for SCI
• US Citizenship
• 10+ years of experience; preferably in a Security Operations Center
• Familiarity with all related aspects of cybersecurity operations and security architecture
• In-depth knowledge of network and application protocols, cyber vulnerabilities and exploitation techniques and cyber threat/adversary methodologies.

Preferred Qualifications:

• Splunk Enterprise Security
• Microsoft Sentinel
• GIAC Cyber Threat Intelligence (GCTI) Certification
• Experience with FBI, DHS, IC, and DoD Networks.
• Experience with configuring and operating cybersecurity and networking devices (i.e. routers, firewalls, IDPS)
• Experience with mitigation development against malicious cyber activity

Original Posting:
April 17, 2025
For U.S. Positions: While subject to change based on business needs, Leidos reasonably anticipates that this job requisition will remain open for at least 3 days with an anticipated close date of no earlier than 3 days after the original posting date as listed above.

Pay Range:
Pay Range $126,100.00 - $227,950.00

The Leidos pay range for this job level is a general guideline only and not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.