Data Scientist

Job Summary

We are seeking a Data Scientist with deep expertise in cybersecurity and threat analysis to join our team. This role focuses on leveraging data science to detect, predict, and mitigate cyber threats. The ideal candidate will use advanced data analytics, threat hunting, incident analysis, and the MITRE ATT&CK framework to provide actionable insights and enhance our cybersecurity strategy. This role requires close collaboration with cross-functional teams to develop innovative, data-driven solutions that safeguard our organization from emerging threats.

Key Responsibilities

• Threat Analysis & Threat Hunting: Conduct advanced threat analysis and proactive threat hunting across large datasets to detect patterns and anomalies indicative of malicious activity.
• Incident Analysis: Apply data science techniques to support incident response and investigation, automating the analysis of security incidents to reduce response times and enhance incident containment strategies.
• Model Development & Algorithm Design: Develop predictive models and custom algorithms to detect and analyze cyber threats, utilizing statistical and machine learning methods tailored to cybersecurity.
• MITRE ATT&CK Framework Utilization: Apply the MITRE ATT&CK framework to identify adversarial tactics, techniques, and procedures (TTPs), and map detection mechanisms to the framework to enhance incident analysis and response.
• Cybersecurity Data Mining: Use data mining techniques on structured and unstructured data sources to extract insights that help anticipate and counter cyber threats.
• Programming & Cloud Deployment: Utilize Python, R, and Java for data manipulation and visualization, deploying solutions on cloud platforms such as AWS to ensure scalability and accessibility.
• Technological Requirements & Capability Gap Identification: Identify and address technological needs and capability gaps, coordinating with capability providers to ensure optimized data science tools and methods are available for threat analysis.
• Collaboration & Communication: Work closely with stakeholders to define objectives, interpret cybersecurity needs, and present insights effectively to technical and non-technical audiences.
• Documentation & Process Development: Develop and document standard operating procedures (SOPs) and working instructions (WIs) for repeatable and effective threat analysis, threat hunting, and incident response processes.

Required Qualifications

• Education: Master’s degree in Mathematics, Statistics, Engineering, Computer Science, Cybersecurity, or a related field is required. PhD is plus. Bachelors and relevant cyber and threat data analysis work experience (3 plus years) is acceptable.
• Technical Skills: Proficiency in Python, R, Java, and SQL; experience with big data technologies such as Spark for processing large datasets; and familiarity with cloud solutions such as AWS. Tableau, Databricks, and PowerBI.
• Experience: 5 years in data science. This experience may include relevant master's, doctoral, or post-doctoral work.
• DOD Secret Clearance or higher
• Onsite 2 days a week and 3 days remote work

Preferred Qualifications

• Cybersecurity Expertise: Demonstrated subject matter expertise in threat analysis, threat hunting, and incident analysis, with a proven ability to leverage large datasets to detect, predict, and mitigate cyber threats.
• MITRE ATT&CK Framework: Strong understanding and experience applying the MITRE ATT&CK framework in threat analysis and response activities.
• Preferred Knowledge: Familiarity with linked data concepts, natural language processing (NLP) techniques, and experience with automating security incident analysis.

Job Type

Full-time

Benefits

• 401(k)
• 401(k) matching
• Dental insurance
• Health insurance
• Paid time off
• Tuition reimbursement
• Vision insurance

Schedule

• Monday to Friday

Work Location

In person

Pay

From $191,000.00 per year

Application Question(s)

• Located within 50 miles of Arlington, VA and able to attend in-person 2 days per week and 3 days of remote work.

Experience

• Databricks: 1 year (Required)
• python/R/ or relevant language: 5 years (Required)

Security clearance

• Secret (Required)

Ability to Commute

• Arlington, VA 22201 (Required)

Ability to Relocate

• Arlington, VA 22201: Relocate before starting work (Required)

Work Location

Hybrid remote in Arlington, VA 22201