Insider Threat / Counterintelligence Analyst 2

Northrop Grumman is seeking a Counterintelligence (CI) Analyst with an understanding of the complex interrelationship between physical and information security to support an insider threat analysis team. The ideal candidate is a creative thinker, possesses strong analytic and problem solving skills capable of assimilating, evaluating and interpreting multiple sources of information to detect foreign intelligence, criminal and insider threats to Northrop Grumman.

The candidate will be part of a small team responsible for identifying and assessing evolving risks from insider threats. The candidate will collaborate regularly with team members in Information Security, Industrial Security, and other areas of the company to research risk indicators, produce custom threat analyses to support internal investigations and on occasion to support other cyber intelligence teams as required. Duties may also grow to include conducting more in-depth research into external foreign cyber-based threats targeting Northrop Grumman.

Responsibilities will include, but are not limited to:

  • Monitor daily indicators of risk to assess possible insider threat activity;
  • Prepare analytic and case summaries to support possible follow on investigations;
  • Support the presentation of findings regarding insider threat risks and areas of potential vulnerability to senior leadership;
  • Conduct counterintelligence analysis of known and emerging cyber threats from sophisticated foreign adversaries;
  • Present analytic findings to both technical and non-technical leadership as required.
  • Employ user activity monitoring, data mining, and analytic visualization tools to identify potential risks to Northrop Grumman intellectual property.
  • Perform basic case management on active cases, track metrics associated with investigations and prepare summaries of cases and operations as required.
  • Provide support for other internal investigations as directed applying insider threat analytic tools and techniques as appropriate and manage the referral of information to other offices and functions when necessary.
  • Collaborate with Northrop Grumman cyber counterintelligence teams to help identify potential areas of risk and suggest mitigation strategies.
  • Work collaboratively across the corporation with legal, ethics, human relations, information security, and industrial security personnel to determine the facts and circumstances for matters under the responsibility of the Strategic Counterintelligence Team.
  • Present analytic findings to both technical and non-technical leadership as required.
  • Occasional travel associated for conferences or meetings may be required.

Basic Qualifications:

  • Bachelor's degree with 2 years of International Relations, Cybersecurity, Criminal Justice or related social science experience or 6 years of International Relations, Cybersecurity, Criminal Justice related experience in lieu of degree.
  • 1 year of experience utilizing open source intelligence resources for the analysis of insider threat, counterintelligence, or cybersecurity threats.

Preferred Qualifications:

  • Professional familiarity with insider threat detection and risk mitigation principles, particularly in private industry;
  • Demonstrated writing experience, preferably of publishable quality, on topics of cybersecurity, intelligence analysis/operations, international relations, political science, or related social science fields;
  • 1-3 years of experience researching and communicating complex cybersecurity and international relations issues to non-technical senior leaders or policymakers, preferably in academia or a public policy research organization;
  • Experience exploiting large data sets to conduct all source analysis of cybersecurity, counterintelligence, or U.S. policy relevant intelligence issues;
  • Knowledge of U.S. Government cyber security and Insider Threat program standards is desired as is knowledge or protocols associated with computer incident response and network forensic investigations.
  • Familiarity with the laws of the U.S. and capable of conducting initial fact finding and required referral activities where foreign, economic or industrial espionage might be at issue.
  • Familiarity with the operational patterns and techniques of key foreign intelligence services known to target the United States obtained through previous professional experience or formal academic research.
  • Previous experience performing cyber counterintelligence investigations in a network security operations center environment and experience in employing the results of a counterintelligence/insider threat analyst and the work product of a cyber-forensics analyst is a plus but not required.
  • Excellent oral and written communications skills demonstrated via previous briefing, presentation, or academic experience; proficiency with MS Office applications and ability to work within a multi-disciplined team required.
  • Experience using commercial link analysis and data mining tools in direct support of investigative operations; knowledge of digital forensic software is a plus.
  • Prefer to see experience related to counterintelligence, or cybersecurity threats preferably as an insider threat detection analyst, law enforcement investigator, cybersecurity, intelligence or counterintelligence analyst with specific understanding of the tactics, techniques and procedures employed by foreign intelligence and criminal adversaries;cellent written and oral communication with demonstrated ability to independently produce finished analytic products or investigative reports.

Northrop Grumman is committed to hiring and retaining a diverse workforce. We are proud to be an Equal Opportunity/Affirmative Action Employer, making decisions without regard to race, color, religion, creed, sex, sexual orientation, gender identity, marital status, national origin, age, veteran status, disability, or any other protected class. For our complete EEO/AA and Pay Transparency statement, please visit www.northropgrumman.com/EEO. U.S. Citizenship is required for most positions.


Meet Some of Northrop Grumman's Employees

Jacqueline T.

Electrical Engineer

Jacqueline operates on power electronics for Northrop Grumman’s space application projects. She meets with engineering groups, chats with customers, and works on circuit analysis.

Jonathan M.

Electronics Engineer

Jonathan works with avionics industry subject matter experts to come up with new feature developments before implementing those ideas in the Northrop Grumman laboratory.


Back to top