FIND_THE_RIGHTJOB.
Cyber Data Analyst - Analytics Developer
JOB_REQUIREMENTS
Hires in
Not specified
Employment Type
Not specified
Company Location
Not specified
Salary
Not specified
At phia we hire talented and passionate people who are focused on collaborative, meaningful work, providing technical and operational subject matter expertise and support services to our partners and clients.
phia is hiring a Cyber Analytics Developer to support cyber defense information sharing and collaboration operations at a Federal agency. In this role, you will be pivotal in enabling activities related to cyber threat, vulnerability, and incident information sharing & collaboration for the agency and its partners.
This position requires the ability to support in-person/in-office work based on mission needs, with remote work flexibility. Qualified candidates will be U.S. Citizens with a Top Secret (TS) security clearance.
What You’ll Do
- Leverage both cyber analytical skills and coding/development skills (including SQL and Apache Spark) to design, develop, and optimize data pipelines and analytics. Datasets include government, open-source and commercial data.
- Collaborate with a diverse team of engineers, analysts, and customer/program leadership.
- Collaborate with stakeholders to identify user needs and requirements, and adjust development plans/pipelines to meet them.
- Provide recommendations on improvements to data analytics strategy and implementations.
Who You Are
- Strong background and experience in data science / data analytics.
- Strong background and experience in analytic development (coding within various data / analytic tools and platforms in common languages/syntax).
- Strong skills in data management (various open-source and commercial databases, API integration, etc.).
- Strong problem-solving skills.
- At least some exposure to cybersecurity datasets and analytics to support cyber functions (e.g. threat analysis, incident analysis, etc.).
- Team oriented and a strong communicator.
Preferred Skills:
- Experience contributing to building and delivering solutions in the U.S. Federal government sector.
-
Familiarity or experience with any of the following functions and related datasets:
- cyber incident response / incident management
- cyber threat intelligence
- cyber vulnerability management
- cyber mitigation and countermeasures
-
Familiarity or experience with any of the following datasets / information platforms:
- cyber threat vendor portals (e.g. Crowdstrike, PaloAlto, RecordedFuture)
- cyber reference datasets/portals (e.g. DomainTools, Censys.io, VirusTotal)
- CISA’s Automated Indicator Sharing (AIS) platform
-
Familiarity or experience with cyber data standard formats, protocols, and frameworks (from NIST, MITRE and others) including but not limited to:
- STIX (Structured Threat Information Expression)
- TAXII (Trusted Automated eXchange of Indicator Information)
- CVE (Common Vulnerabilities and Exposures)
- CME (Common Malware Enumeration)
- CybOX (Cyber Observable eXpression)
- MITRE ATT&CK framework
- MITRE D3FEND framework
-
Familiarity or experience (preferably coding/integration) with cyber threat intel & collaboration and SIEM/SOAR platforms, including but not limited to:
- Analyst1
- ThreatConnect
- Cyware
- Splunk
- Elastic
Schedule and Location:
- Monday - Friday, business hours with occasional need to support time-critical operations
- Hybrid remote/in-office requirement, with office in Arlington, VA
Required Education + Experience:
- BA/BS preferred
- Minimum of 5 years of relevant experience
Certifications (preferred):
- Any DevSecOps, software development, or database engineering certifications
- Any cybersecurity-related certifications
Security/Eligibility Requirements:
- Top Secret (TS) clearance required
© 2025 Qureos. All rights reserved.