Health and Policy/Economics Intelligence Analyst (Intelligence Analyst 4) - 26075

About the positionResponsibilities• Gather and analyze threat intelligence: Collect data from various sources (open-source intelligence, deep web, dark web, threat feeds, etc.) to identify potential security risks and vulnerabilities. • Monitor and assess the threat landscape: Stay informed about emerging threats, attack vectors, and techniques used by threat actors. Monitor various sources of threat intelligence, including OSINT and industry reports, and analyze data to identify relevant cyber threats, vulnerabilities, and attack techniques.Track the activities, motivations, and TTPs of threat actors. • Identify potential security threats and vulnerabilities: Analyze collected data to uncover patterns and trends indicative of potential security threats to CMS assets. • Risk Mitigation & Collaboration: Collaborate with cross-component teams to implement countermeasures and mitigation strategies. Provide guidance on improving threat identification and mitigation processes. Partner with internal teams and external organizations to share intelligence.• Conduct high level and in-depth research & investigative analyses: Investigate potential and existing security threats from known and emerging threat actors. • Conduct analytical studies and evaluate the effectiveness of program initiatives by gathering, organizing, and interpreting data. Make recommendations supported by facts and background information. • Produce executive level summary, detailed reports, and briefings: Prepare written and oral reports and presentations summarizing threat assessments, recommended mitigation strategies, and potential impact on business operations.• Collaborate with security teams and agency subject matter experts: Work closely with subject matter experts across the agency to collect data, interpret information, and report findings. Further, work closely with IT and security teams to implement proactive security measures based on threat intelligence findings. • Provide intelligence support during security incidents: Collaborate with incident response teams to provide context and insights into ongoing threats. • Contribute to the development and improvement of cybersecurity policies and procedures: Help refine the organization's threat models and security strategies based on threat intelligence insights.• Provide subject matter expertise and training: Educate internal teams on threat intelligence-related topics, including threat actor profiling and recommended countermeasures. Requirements• 9 years of relevant experience with bachelor's in related field; 7 years of relevant experience with master's in related field; 4 years relevant experience with PhD or Juris Doctorate in related field; or High School Diploma or equivalent and 13 years relevant experience. • Public Trust clearance. • Self-motivated and possessing integrity.• Strong analytical and critical thinking skills. • Proficiency in data gathering, analysis, and reporting. • Excellent written and verbal communication skills. • Ability to work independently and collaboratively with cross-functional teams. • Knowledge of threat actor groups and TTPs. • Understanding of network protocols and security principles. • Experience with threat research and vulnerability scanning tools. Nice-to-haves• In-depth knowledge of Titles XVIII and XIX of the Social Security Act, implementing regulations, policies, procedures, and pertinent laws applicable to the administration of these programs to effectively coordinate, develop, evaluate, and implement the provisions of the Medicare, Medicaid and CHIP programs and to make recommendations for improving or modifying program operations.• Extensive knowledge of all sectors of the health care industry and of current trends and activities related to CMS programs. • Comprehensive knowledge of a wide range of laws, policies, regulations, precedents, existing and pending legislation, issues, and program goals and of current trends and initiatives in health care delivery systems of the assigned area of responsibility. • Extensive knowledge of other Federal, State, and private insurance operations which impact on the Medicare (and/or Medicaid), CHIP, or Marketplace Exchange programs, required for identifying the need for new or revised program policies and/or procedural changes.• Comprehensive knowledge of center, office, agency, and Department goals, objectives, and policy as they relate to statutory requirements and legislative intent to assure accurate and effective interpretation and implementation in areas of assigned areas of responsibility. • Knowledge of CMS programs and program operations to effectively plan, coordinate, and develop the implementation of policy and administrative issues. • Served as SME or expert in the development, evaluation, and implementation of policies, processes or regulations related to HHS or CMS programs and operations, as well as private health insurance.• Certifications such as Certified Threat Intelligence Analyst (CTIA) or Certified Information Systems SecurityProfessional (CISSP) is desired. • Familiarity with cybersecurity frameworks and compliance standards is desired. • Bachelor's or Master's degree in Health Policy, Cybersecurity, Information Technology, or a related field. • Proven experience in healthcare as a policy expert or analyst, preferably for a Federal health agency or health insurer, for 10 years or more. Benefits• We offer competitive benefits such as best-in-class medical, dental and vision plan choices; wellness resources; employee assistance programs; Savings Plan Options (401(k)); financial planning tools, life insurance; employee discounts; paid holidays and paid time off; tuition reimbursement; as well as early childhood and post-secondary education scholarships.• Bonus/other non-recurrent compensation is occasionally offered for qualified positions, and if applicable to this role will be addressed by the recruiter at the screening phase of application. Apply tot his job