What are the responsibilities and job description for the Threat Evaluation, and Countermeasures Team (DETECT) Analyst position at RSSi / OneZero Solutions?
Back to all jobs
Threat Evaluation, and Countermeasures Team (DETECT) Analyst
We are an employee-centric company that truly appreciates our team members and their value to our customers and the missions they support. We pride ourselves on being forward-leaning thinkers and fostering teams that are and continue to be technically proficient and technically capable across a comprehensive range of cyber mission areas. OneZero full-time employees receive an extremely competitive benefits package that includes health/dental/vision/life insurance plans, 401K with company matching, PTO & paid holidays, employee referral program, and educational assistance. Additional details can be found on our website at: https://www.onezerollc.com/careers/
Position Title: Threat Evaluation, and Countermeasures Team (DETECT) Analyst
Location: Charleston SC
Clearance: Secret with an upgrade to TS
Position Overview
The DETECT Analyst plays a critical role in strengthening network defense capabilities by developing, testing, and implementing advanced detection measures across multiple data sources. This position involves researching emerging threats, building detection analytics, and conducting forensic analysis and threat hunting to identify and mitigate malicious activity.
The ideal candidate is a technically skilled and analytical professional with a deep understanding of enterprise environments and a passion for continuous improvement in cybersecurity operations.
Key Responsibilities
To request an accommodation, please contact us at recruiting@onezerollc.com or call (202) 987-2580.
Threat Evaluation, and Countermeasures Team (DETECT) Analyst
- Charleston, SC, USA
- Hourly
- Full Time
- PTO, Health, Dental, Vision, LTD/STD, Life, 401(k) and more!
We are an employee-centric company that truly appreciates our team members and their value to our customers and the missions they support. We pride ourselves on being forward-leaning thinkers and fostering teams that are and continue to be technically proficient and technically capable across a comprehensive range of cyber mission areas. OneZero full-time employees receive an extremely competitive benefits package that includes health/dental/vision/life insurance plans, 401K with company matching, PTO & paid holidays, employee referral program, and educational assistance. Additional details can be found on our website at: https://www.onezerollc.com/careers/
Position Title: Threat Evaluation, and Countermeasures Team (DETECT) Analyst
Location: Charleston SC
Clearance: Secret with an upgrade to TS
Position Overview
The DETECT Analyst plays a critical role in strengthening network defense capabilities by developing, testing, and implementing advanced detection measures across multiple data sources. This position involves researching emerging threats, building detection analytics, and conducting forensic analysis and threat hunting to identify and mitigate malicious activity.
The ideal candidate is a technically skilled and analytical professional with a deep understanding of enterprise environments and a passion for continuous improvement in cybersecurity operations.
Key Responsibilities
- Use network and host-based data to drive detection, monitoring, and response capabilities.
- Create detection analytics based on the MITRE ATT&CK Framework and other security frameworks.
- Perform research on adversarial Tools, Techniques, and Procedures (TTPs).
- Assist incident response (IR) teams by analyzing host behavior and network traffic.
- Collaborate with technical teams to develop and improve detection and response capabilities.
- Conduct forensic analysis and proactive threat hunting as required.
- Work independently and collaboratively while maintaining attention to detail under pressure.
- Minimum 3-5 years of experience performing incident response, forensics, malware analysis, or penetration testing.
- 5-7 years of experience required if no degree is held.
- Strong written and verbal communication skills.
- Strong understanding of common enterprise technologies.
- Ability to convey highly technical concepts to audiences with varying technical understanding.
- Position may require up to 10% travel as needed.
- Proficient in at least three of the following disciplines:
- Network traffic analysis and host-based log analysis
- Comprehensive understanding of enterprise Windows security (Active Directory)
- Static and Dynamic malware analysis
- Disk and Memory forensics
- Practical knowledge in at least one scripting or development language (e.g., PowerShell or Python)
- Working familiarity with at least two of the following products:
- Splunk and/or Elastic
- Sentinel / Microsoft MDE
- Fidelis Network
- Demonstrated ability to work under pressure and meet tight deadlines
- Excellent communication and problem-solving skills
- Ability to work both independently and collaboratively
- Must meet Department of Defense (DoD) 8570 Information Assurance Technical (IAT) Level III certification requirements.
- Computer Network Defense (CND) certification.
To request an accommodation, please contact us at recruiting@onezerollc.com or call (202) 987-2580.
