Host Based Cyber Systems Analyst IV
Job Description
Job Description
Argo Cyber Systems provides remote and onsite advanced technical assistance, proactive hunting, rapid onsite incident response, and immediate investigation and resolution using host-based, network-based and cloud-based cybersecurity analysis capabilities. Team personnel provide front line response for digital forensics/incident response (DFIR) and proactively hunting for malicious cyber activity. We are seeking Cyber Network Defense Analysts (CNDA) with Cloud Forensics experience to support this critical customer mission.
Responsibilities:- Conduct forensic acquisition and analysis from on-premises and cloud platforms (Entra ID/Azure AD, M365, AWS, GCP, SaaS) to identify compromise activity, persistence mechanisms, and data exfiltration.
- Investigate and respond to incidents and attacks targeting cloud and hybrid identity.
- Correlate cloud control-plane events and network telemetry (e.g., Azure Activity Logs, AWS CloudTrail, VPC Flow Logs) to reconstruct attacker timelines, validate IOCs, and identify post-compromise privilege escalation.
- Develop and operationalize detection logic and automation using cloud-native tools (Microsoft Defender, Sentinel, AWS GuardDuty, GCP Chronicle) and scripting (PowerShell, Python, Bash), integrating threat intelligence feeds and indicators.
- Produce technical reports, incident documentation, and containment recommendations integrating cloud, identity, and endpoint findings; support development of incident response playbooks and procedures for cloud and hybrid environments.
- Support cloud development and automation projects to enhance threat emulation, investigative, and hunting capabilities.
- Coordinate with internal teams, government staff, and external stakeholders to validate alerts and investigate preliminary findings. Required Skills:
- U.S. Citizenship
- Active TS/SCI clearance
- Ability to obtain Department of Homeland Security (DHS) Entry on Duty (EOD) Suitability
- 8+ years of experience in cyber forensic investigations with leading tools and techniques.
- Strong understanding of SaaS, PaaS, and IaaS in cloud environments, and hybrid identity security.
- Expertise in acquiring forensically sound evidence, analyzing attacks, and reporting findings.
- Knowledge of M365/Azure, hybrid identity, and threats targeting these solutions.
- Knowledge of AWS, IAM, and best practices for cloud identity security. Desired Skills:
- Strong API and scripting skills (PowerShell, Python, Bash, JavaScript) for automation and threat detection.
- Knowledge of common and advanced cloud attacks and techniques, and how to detect and mitigate these threats.
- Proficiency with cloud automation and orchestration tools (Terraform, Kubernetes, CloudFormation, Azure Resource Manager, Docker).
This position requires a minimum of a USG Top Secret Security Clearance!
Argo Cyber is an Equal Opportunity Employer.
Recommended Jobs
Associate Appian Application Developer
Job Description Job Description Description At Nüvitek , customer success is our Ethos; together, we drive transformational outcomes. We only succeed when our customers succeed. We partner wit…
Maintenance Supervisor
Job Description Would you like to lead and direct daily maintenance operations, setting priorities and coordinating the work of Maintenance Technicians to ensure safe, efficient execution and ra…
Program Supervisor III - REACH Intensive Residential Supervisor ($5,000 Sign on Bonus)
NRVCS is looking for our next Program Supervisor! Come join us at our growing organization, and help serve your community. As the Supervisor III, you will provide for the overall administrative manage…
Senior NEPA Manager
Company Overview SC&A is an environmental consulting firm that has supported federal, state, tribal, and private industry in navigating complex environmental challenges to protect communities, pub…
Field & Shop Mechanic
Job Description Job Description Description: C.W. Wright Construction Co., LLC is a subsidiary of PrimeLine Utility Services, a leading provider of construction, maintenance, and design solution…
Flex-Schedule Occupancy Review Surveyor
Ad Ref: FAR-02908 Do not fill out any form or use any other apply button on this page. Use the blue link below to submit your application. FAR Inspections is actively seeking a reliable independ…
Produce Team Member (Clerk, Floor Service) - Part Time
A career at Whole Foods Market is more than just the work you do- it's about your personal growth and creating meaningful change. Our purpose is to nourish people and the planet. That means improving…
Graphic Designer (Conservative Politics)
HSP Direct is a full-service direct marketing agency specializing in fundraising for conservative nonprofits and political candidates. We are seeking a motivated Graphic Designer to join our team an…