Red Arch Solutions

SME Network Threat Support Specialist

US-MD-Annapolis Junction
Job ID
Cyber Intelligence Analysis
Position Type
Regular Full-Time

Job Description

***Active TS/SCI with Polygraph Required***


Red Arch Solutions is a proven and effective small business integrator and consultant, recognized as a leading provider of IT development to the Federal Government, and primarily focused within the Intelligence Community.


Red Arch is seeking a SME Network Threat Support Specialist to support our customer in Maryland!


The SME Network Threat Support Specialist will perform analysis to support cyber operations. The successful candidate will serve as a member of a computer network operations (CNO) intelligence team, focused on the threat to networked weapons platforms and US and DoD information networks. The successful candidate will collaborate with analytical counterparts across the U.S. Intelligence Community; apply knowledge of threat environment, open-source tools, and current implementation of threat technologies in order to devise all-source analytic/collection strategies to pursue access and exploitation of targets of interest.


Primary Responsibilities:

  • Duties will include generating SNORT and other Intrusion Detection Signatures for multiple platforms, thus aiding with defeats and allowing for enhanced detection in collection.
  • Perform static analysis, dynamic analysis, network attack characterization and reconstruction, and the development of mitigation strategies.
  • Conduct analysis of all types of computer code, particularly malicious code (malware.)
  • Develop an agile responsive strategy for coordinating and evaluating tasking of systems and sites.
  • Use commercial forensics tools to image and review computer drives and data, determine if an incident occurred, and discover the intrusion method.
  • Perform extensive post-mission, produce technical intelligence reports in support of special programs and provide expertise and leadership to the team in the development of analytical models and assessments.
  • Duties may include writing forensics and/or incident response reports, investigating computer attacks, and extracting data from electronic systems and training team members on analysis, tools or reporting.

Minimum Qualifications

  • Must possess and maintain an active Security Clearance: TS/SCI with Polygraph
  • A minimum of ten (10) years of work experience in network and vulnerability analysis, or a combination of a minimum of six (6) years of work experience in network and vulnerability analysis and a degree (Bachelors, Masters or PhD) in an applicable field (for example, math, science, engineering, intelligence, language). Work experience shall include six (6) years of Intelligence Community or related experience in network and vulnerability analysis.


  • Demonstrated expertise related to the use of relevant CNO and SIGINT tools and databases used for the customer mission.

  • Demonstrated analytic ability to discover unknown, suspicious or exploitation activity, be able to provide briefings of intrusion set activity to partner organizations / agencies, and be knowledgeable about all forms of reporting and experienced with creating each product type, and thus be able to organize training for other team members on analysis, tools, or reporting and provide leadership and mentoring of junior team members.

  • Demonstrated analytic expertise to perform technical analysis for exploitation of an identified activity that is of an unknown or suspicious origin, competence with relevant analyst tools and databases used by the customer organization, and communications skills that include the ability to provide formal documentation of analysis and/or research results.

  • Shall be considered a Subject Matter Expert in one or more fields appropriate to Intelligence Analysis or Computer Networking technologies, and be able to serve as a Subject Matter Expert for working groups and meetings with partner organizations / agencies.


  • Shall have demonstrated expertise in analyzing intelligence information and technical data, analyzing exploitation opportunities, interpreting analytical results, writing and editing skills at a technical/professional level, and managing internal and external customer relations.


  • Shall have demonstrated skills working through the SIGINT and/or other intelligence disciplines' production processes, to include tasking, researching, processing, reporting, and disseminating of collection, information, or final products.


  • Shall demonstrate the ability to understand and interpret technical data through knowledge of technologies and network topologies and have demonstrated competence with relevant analyst tools and databases used for the customer's mission.

  • Shall have demonstrated expertise in documenting information and processes and gathering intelligence information of an identified threat activity through SIGINT and/or other intelligence disciplines, Internet, and other research means.


  • Shall have demonstrated communication skills that include the ability to provide formal documentation of analysis

Desired Qualifications

Red Arch Solutions is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment and will not be discriminated against on the basis of race, color, religion, sex, sexual orientation, national origin, age, marital status, disability, or protected veteran status. Red Arch Solutions takes affirmative action in support of its policy to advance in employment individuals who are minorities, women, protected veterans and individuals with disabilities. 



Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
Share on your newsfeed

Need help finding the right job?

We can recommend jobs specifically for you! Click here to get started.