Red Cell Cyber Analyst

RED CELL CYBER ANALYST (Operational Position)

Join to apply for the Red Cell Cyber Analyst role at Amentum
.

The Red Cell Cyber Analyst assumes all cyber advisory responsibility for the Red Team. The analyst works as needed with Red Cell Program Leads and supports adversarial cyber information for program objectives, identifies gaps in cyber architecture, and develops cyber emulative courses of action for vulnerability assessment. The analyst advises tactical partner elements and Red Team personnel in planning adversarial cyber warfare activities, reports to the Red Team Analysis and Production Manager, and fulfills requirements for the Red Cell Program Leader.

• Characterize the adversary’s cyber capabilities by researching structure, ideology, intentions, tactics, and capabilities of adversarial cyber organizations using classified and unclassified sources.
• Contribute constructively to cyber threat emulation: identify information requirements, develop assessment cyber strategies, assist Red Team Program Leader collection plans, and conduct research of publicly available information to determine adversary cyber courses of action.
• Identify, map, and plan potential exploitation for key telecommunications networks.
• Analyze and characterize cyber systems, identifying essential functions/tasks and critical assets necessary to perform them as determined by the program leader.
• Develop cyber adversary courses of action (CoA) that a cyber adversary might employ against customer personnel, equipment, facilities, networks, information, infrastructure, and supply chains.
• Facilitate timely information management flow from DoD Red Team partner elements and other entities supporting DoD Red Team operations.
• Support field assessments from a cyber adversary perspective.
• Synthesize findings to support vulnerability identification, course of action development, protection studies, trend analyses, risk analysis, and mitigation strategies.
• Develop a comprehensive understanding of the cyber implications of discovered vulnerabilities and fuse findings with systems analysis to determine impacts on national and military missions.
• Prepare activity reports including out briefs, senior leader briefs, interim progress reports, white papers, after action reviews, final reports, risk analysis products, and other documents necessary to convey assessment findings to customers and stakeholders.
• Explain network/system mechanisms to analysts and ground elements to facilitate better analysis and operations.
• Maintain diverse understanding of network and information security operations, network exploitation, and telecommunications.
• Perform regular updates of existing Playbooks based on changes in the Threat Landscape or new threat tactics and procedures.

• Four‑year BS/BA degree with two years applicable experience as a cyber analyst; or Associate’s degree with four years applicable experience; or eight years of applicable experience as a cyber analyst.
• Previous experience with the components and functions of various communications networks and information systems.
• Understanding of both the physical and digital aspects of communications systems.
• Proficiency in understanding, analyzing, and summarizing comprehensive technical, contractual, and research information/data.
• Demonstrated expertise performing information/data collection, analysis, and fusion.
• Excellent analytical, oral and written communication, and project management experience.
• TS/SCI clearance required.
• U.S. citizenship required.

• Strong knowledge of cyber threat terminology, vulnerability and penetration testing principles, cybersecurity incident response forensics, and current events.
• Familiarity with log analysis, packet analysis, OSI model, network architectures, NIST, DIA‑CAP, RMF, information operations, threat intelligence activities, digital forensics, and threat hunting methodologies.
• Experience performing attack analysis or Red Team penetration testing against operational computer networks, including Windows, Network, Linux/Unix, database, or mainframe security.
• Ability to operate and navigate…