Trace Systems

Defense Cyber Operations Threat Analyst

1 month ago
Job ID
# of Openings
US-AZ-Sierra Vista


Trace Systems, headquartered in Vienna, Virginia, was founded in 1999 to support and defend our nation's security interests at home and abroad–– whenever and wherever. We provide cybersecurity, intelligence, communications, networking and information technology services, systems, and solutions to the United States Department of Defense, Intelligence Community and Department of Homeland Security.


Job Description:  Defense Cyber Operations Threat Analyst


Job Location:  Sierra Vista, AZ


Security Clearance:  TS/SCI with Tier 5 Investigation (SSBI)


Certification: IAT Level III

Job Responsibilities

The Threat Analyst will conduct exploratory and in-depth analysis of network traffic from security devices, analysis of host based audit logs, malware analysis, trending of incident reports, correlation of classified and open source threat reporting, and linkages/integration with other defensive cyber operations (DCO) agencies.  Typical daily duties will include:

  • Reverse-engineer compiled executable code to examine how programs interact with their environment.
  • Analyze collected media for defensive cyber operations (DCO) value to understand adversary technical capabilities and Tactics, Techniques and Procedures (TTP) methods of employment.
  • Analyze the attack/exploit capability of malware, document, and catalog findings for future correlation).
  • Develop necessary procedures or scripts to identify such data.
  • Work and interact with other DCO professionals, with Law Enforcement and Counter Intelligence personnel, and intelligence professionals as a technical specialist to understand higher-level adversary capability.
  • Document, update and enhance processes and procedures by producing training materials, standards documents and reports.

Minimum Qualifications

  • Minimum five (5) years demonstrated/practical hands-on experience performing threat analysis in a DoD network environment
  • Possess exceptional knowledge, experience, and certifications with commercial computer forensic tools including but not limited to: EnCase Forensic, EnCase Enterprise / Cybersecurity, AccessData Forensic Tool Kit (FTK), AccessData Lab, etc.
  • Possess exceptional knowledge and experience with commercial binary analysis tools including but not limited to: IDA PRO disassembler, Ollydbg.
  • Be familiar with analysis tools to include IceSword, Procmon, Analyst Notebook, etc.
  • Be proficient and have experience with computer languages including but not limited to: Assembly, C, C++, Perl, Java, Python, etc.
  • Strong working knowledge and experience with all Windows OS platforms including but not limited to: Vista, Windows 7, Windows 8, 2K3 Server, 2K8 Server.
  • Working knowledge and experience with varying flavors of Unix/Linux platforms, and Apple based operating systems.
  • Possess strong experience with obtaining forensically sound images of, but not limited to, workstations, servers, laptops, flash devices, removable media, cell phones, RAID, virtual systems, etc.


Required Certifications:

  • DOD 8570 applicable certifications for IAT level III
  • Global Information Assurance Certification (GIAC) – Certified Intrusion Analyst (GCIA) and Certified Ethical Hacker (CEH)


This position may require shift work.

Security Clearance

  • TS/SCI with Tier 5 Investigation (SSBI)


To Apply: We invite you to put your talents to work by joining a growing team of dynamic professionals here at Trace Systems! Be part of a culture at our leading edge company where you can achieve great things while fostering a satisfying and rewarding career progression. Please apply directly through the website at:      #jointracesystems


For any additional questions or to submit any referrals, please contact

Trace Systems is an Equal Opportunity and Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, gender identity, national origin, age, protected veteran status, or disability status.



Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
Share on your newsfeed

Connect With Us!

Not ready to apply? Connect with us for general consideration.