CybersecurityJobs.io
← Back to all jobs
Booz Allen Hamilton

Cybersecurity Threat and Exploitation Analyst

San Diego, CA $87k - $198k/yr Full time Posted 12h ago

Job Description

Booz Allen Hamilton is seeking a Cybersecurity Threat and Exploitation Analyst to identify threat vectors, design attack methodologies, and develop exploits, while reinforcing defensive operations across critical infrastructure and mission sets. This onsite opportunity in San Diego, CA blends hands-on testing with proactive cyber operations to support national security objectives.

Responsibilities

  • perform rigorous testing and analysis to identify threat vectors, craft attack methodologies, and create and deploy exploits
  • leverage emerging technologies to enhance cyber operations
  • identify vulnerabilities across systems and networks
  • build tools and tactics that align with real-world mission requirements
  • support defensive cyber operations across diverse platforms, networks, and systems
  • identify and mitigate risk to strengthen the security and resilience of critical infrastructure and mission sets
  • contribute to national security by developing advanced cyber capabilities

Requirements

  • minimum 5 years supporting a DoD or government organization with information systems security, cybersecurity, networks, or communications systems
  • at least 3 years supporting red or blue teams and conducting red/blue team events
  • 3+ years in a security operations center or cyber operations environment, including vulnerability assessments and risk management of networks, systems, and communications protocols
  • knowledge of the Risk Management Framework (RMF), including A&A activities, RMF artifact development, and deliverables across all steps, plus cybersecurity compliance testing using tools such as ACAS and STIG guidance
  • proficiency in Python and PowerShell for scripting, querying, and analytics
  • ability to use threat intelligence to inform planning and exercises, improve security hardening, and participate in incident response activities such as artifact analysis, incident reporting, and security event triage
  • capability to write concise briefings, presentations, and reports to convey analysis and support client deliverables, work independently, identify problems, and drive tasks from start to finish
  • TS/SCI clearance with polygraph
  • HS diploma or GED
  • DoD 8140 Certification

Technologies

  • Python
  • PowerShell
  • Assured Compliance Assessment Solution (ACAS)
  • DoD STIG (Security Technical Implementation Guides)
  • Risk Management Framework (RMF)
  • GitHub
  • Docker and containerization
  • CI/CD pipelines
  • Windows and Linux environments
  • Web application firewalls, web proxy, intrusion prevention systems
  • Vulnerability scanners and penetration tooling
  • RedSeal

Benefits

  • health, life, disability, financial, and retirement benefits
  • paid leave
  • professional development opportunities
  • tuition assistance
  • work-life programs
  • dependent care benefits
  • recognition awards program

Clearance

Applicants selected will undergo a security investigation and must meet eligibility requirements for access to classified information; TS/SCI clearance with polygraph is required.

Nice If You Have

  • experience with operational readiness, mission engineering, and integration
  • experience with RedSeal
  • experience with endpoint security
  • exposure to threat detection, cyber kill chains, vulnerability exploitation and management, TTPs, and endpoint detection and response
  • network engineering experience across Windows, Linux, and virtual operating systems, including security tools and technologies such as firewalls, web proxies, IDS/IPS, vulnerability scanners, and penetration tools
  • knowledge of DevSecOps, GitHub, Docker, containerization, and CI/CD pipelines
  • ability to learn new technologies and implement updated security controls, with the ability to articulate industry best practices and threat-based cybersecurity frameworks
  • bachelor's degree
  • certifications such as CEH, OSCP, GCTH, GCTI, or GCIH

Work Model

  • Remote: occasional on-site requirements may apply at Booz Allen or client facilities
  • Hybrid: regular on-site presence at a Booz Allen facility is expected, with potential visits to client sites as needed
  • Onsite: largely performed at a Booz Allen office or client facility, with direct collaboration with colleagues and customers

Commitment to Non-Discrimination

All qualified applicants will receive consideration for employment without regard to disability, protected veteran status, or any other status protected by applicable laws.

Similar Jobs

Get Job Alerts

New jobs delivered to your inbox.