The professionals at the National Security Agency (NSA) have one common goal: to protect our nation. The mission requires a strong offense and a steadfast defense. The offense collects, processes and disseminates intelligence information derived from foreign signals for intelligence and counterintelligence purposes. The defense prevents adversaries from gaining access to sensitive classified national security information.
Do you want to do work you can't do anywhere else and be at the forefront of strengthening our National Cyber-security posture? Do you want to help chart the course for NSA's innovative Cybersecurity and help prevent future cyber-attacks against the United States? If so, NSA is the place for you!
Threat Analysts perform research of adversarial threats posed to various systems, technologies, operations, or missions in all appropriate intelligence sources. Analyze collected data to derive facts, inferences, and projections concerning capabilities, intentions, attack approaches, and likelihood of various adversarial attacks under various situations. Research resource allocations, motivations, tendencies, personalities, and tolerance for detection, attribution and retribution that influence adversarial decisions. Contribute to profiling adversarial behavior with respect to identified system attacks in an operational mission context. Produce formal and informal reports, briefings, and perspectives of the behavior of adversaries against target systems, technologies, operations, and missions.
Threat Analysts perform a broad spectrum of duties; they may:
- Conduct target research
- Merge information gathered from open source and classified sources
- Monitor open and classified sources for useful information
- Use knowledge of customer requirements to analyze and process intelligence information
- Collect and provide intelligence from many different sources of information
- Make analytic determinations based on critical thinking and reasoning
- Evaluate and select the appropriate formal methods of analysis
- Document analytic tradecraft and methodology
- Explore and test multiple avenues of discovery
- Generate evidence-based inferences to support or refute analytic conclusions
- Utilize methods to integrate, summarize, visualize, and test information to support analytic processes
- Plan, develop, and structure analytic approaches
- Analyze threats posed to various systems, technologies, operations, or missions (including likely behaviors of adversaries) and countermeasures to address them
- Identify relationships, trends, and patterns in, or draw conclusions from, information
- Teach other junior analysts and researchers how to conduct effective target research
- Develop, create and improve threat research practices and assist in knowledge transfer, mentoring and training of new analysts in these techniques
If you routinely visit network security websites, attend conferences, or maintain your own network; we would like to talk to you! If you are a computer hobbyist, enjoy setting up new networks, love the Black Hat / DEFCON Briefings, and Capture the Flag events; then you need to talk to us.
The optimal candidate is someone with strong problem-solving, analytical, communication and interpersonal skills and who has solid knowledge or experience in several of the following areas:
- Coding in scripting languages such as Python, R, or Ruby
- Calculating statistical significance and principle component analyses
- Scripting for the GHOSTMACHINE environment
- Leveraging LABBENCH + Jupyter to interface with GMAE
- TCP/IP: three-way hand-shake, reconstruction
- Network and Internetwork Routing
- Domain Name System protocol and architecture
- How an Antivirus program works
- How an Intrusion Detection System works
- How exploitation, implants, and beacons work
- Teaching, coaching and mentoring others
- Building effective communications to explain complex technical information to wider audiences
- Effective writing skills
How To Apply - External
To apply for this position, please click the 'Apply' button located at the top right of this posting. After completing the application for the first time, or reviewing previously entered information, and clicking the 'Submit' button, you will receive a confirmation email. Please ensure your spam filters are configured to accept emails from (see application details).
***PLEASE NOTE: U.S. Citizenship is required for all applicants. Reasonable accommodations provided to applicants with disabilities during the application and hiring process where appropriate. NSA is an equal opportunity employer and abides by applicable employment laws and regulations. All applicants and employees are subject to random drug testing in accordance with Executive Order 12564. Employment is contingent upon successful completion of a security background investigation and polygraph.
This position is a Defense Civilian Intelligence Personnel System (DCIPS) position in the Excepted Service under 10 U.S.C. 1601. DoD Components with DCIPS positions apply Veterans' Preference to eligible candidates as defined by Section 2108 of Title 5 USC, in accordance with the procedures provided in DoD Instruction 1400.25, Volume 2005, DCIPS Employment and Placement. If you are a veteran claiming veterans' preference, as defined by Section 2108 of Title 5 U.S.C., you may be asked to submit documents verifying your eligibility.
Please note that you may be asked a series of questions depending on the position you apply for. Your responses will be used as part of the screening process of your application and will assist in determining your eligibility for the position. Be sure to elaborate on experiences in your resume. Failure to provide the required information or providing inaccurate information will result in your application not being considered for this position. Only those applicants who meet the qualifications for the position will be contacted to begin employment processing.
Please Note: Job Posting could close earlier than the closing date due to sufficient number of applicants or position no longer available. We encourage you to apply as soon as possible.
The National Security Agency (NSA) is part of the DoD Intelligence Community Defense Civilian Intelligence Personnel System (DCIPS). All positions in the NSA are in the Excepted Services under 10 United States Codes (USC) 1601 appointment authority.