Current jobs related to Incident Handling-SME - Arlington, Virginia - Peraton

• 

  Incident Handling-SME

  3 weeks ago

  ---

  Arlington, Virginia, United States Peraton Full time

  Incident Handling-SMEJob Locations US-VA-ArlingtonRequisition ID 2025-155099Position Category Intel and Threat AnalysisClearance Top SecretResponsibilitiesPeraton's DSCM program encompasses technical, engineering, data analytics, cyber security, management, operational, logistical and administrative support to aid and advise DoS Cyber & Technology...

• 

  Incident Handling-SME

  2 weeks ago

  ---

  Arlington, Virginia, United States Peraton Full time

  ResponsibilitiesPeraton's DSCM program encompasses technical, engineering, data analytics, cyber security, management, operational, logistical and administrative support to aid and advise DoS Cyber & Technology Security (CTS) Directorate. This includes protecting a global cyber infrastructure comprising networks, systems, information, and mobile devices all...

• 

  Sr. Incident Responder with Security Clearance

  1 week ago

  ---

  Arlington, Virginia, United States Apex Systems Full time

  Incident Management SME role will be located in Beltsville, MD or Roslyn, VA. One day remote per week This role supports the Cyber Incident Response Team (CIRT) as a key member of Incident Response Tiger Team. The customer requirement requires every employee to be onsite for the first 90 days. After the 90 day period, a hybrid schedule may be offered. What...

• 

  Network Forensics SME

  6 days ago

  ---

  Arlington, Virginia, United States Gray Tier Technologies Full time

  Gray Tier Technologies is looking for a Network Forensics Analyst SME to support The Department of Homeland Security (DHS) Hunt and Incident Response Team (HIRT). DHS HIRT secures the Nation's cyber and communications infrastructure. HIRT provides DHS's front-line response for cyber incidents and proactively hunting for malicious cyber activity. Gray Tier...

• 

  Incident Manager

  5 hours ago

  ---

  Arlington, Virginia, United States Base One Inc Full time

  Responsibilities: - Correlating incident data to identify specific trends in reported incidents - Recommending defense in depth principles and practices (i.e. Defense in Multiple Places, layered defenses, security robustness, etc.) - Performing Computer Network Defense incident triage to include determining scope, urgency, and potential impact -...

• 

  Cyber Incident Manager/ Incident Manager

  4 weeks ago

  ---

  Arlington, Virginia, United States Nodel Full time

  Cyber Incident Manager/ Incident Manager Location: Arlington, VA Must have Top Secret Security Clearance Node is supporting a U.S. Government customer to provide support for onsite incident response to civilian Government agencies and critical asset owners who experience cyber-attacks, providing immediate investigation and resolution. Contract personnel...

• 

  Incident Manager

  6 days ago

  ---

  Arlington, Virginia, United States Base One Inc Full time

  Responsibilities: - Researching and compiling known resolution steps or workarounds to enable mitigation of potential Computer Network Defense incidents within the enterprise - Applying knowledge of the tactics, techniques, and procedures of various criminal, insider, hacktivist, and nation state threat actors to identify and validate threats - Applying...

• 

  Incident Manager

  1 week ago

  ---

  Arlington, Virginia, United States Base One Technologies Full time

  Responsibilities:• Researching and compiling known resolution steps or workarounds to enable mitigation of potential Computer Network Defense incidents within the enterprise• Applying knowledge of the tactics, techniques, and procedures of various criminal, insider, hacktivist, and nation state threat actors to identify and validate threats• Applying...

• 

  Incident Manager

  4 weeks ago

  ---

  Arlington, Virginia, United States BCMC, LLC Full time

  BCMC is supporting a U.S. Government customer to provide support for onsite incident response to civilian Government agencies and critical asset owners who experience cyber-attacks, providing immediate investigation and resolution. Contract personnel perform investigations to characterize the severity of breaches, develop mitigation plans, and assist with...

• 

  Incident Response Team Lead

  14 hours ago

  ---

  Arlington, Virginia, United States BCMC, LLC Full time

  Job SummaryBBCM provides support for onsite incident response to civilian Government agencies and critical asset owners who experience cyber-attacks. We seek a Cyber Incident Manager with expertise in incident response and handling methodologies.This role requires knowledge of NIST 800-62 and FISMA standards as they pertain to reporting incidents. The...

• 

  Incident Response Lead

  4 days ago

  ---

  Arlington, Virginia, United States Vervic Full time

  Incident Response Lead\Vervic is looking for a highly skilled Incident Response Lead to research and compile resolution steps or workarounds to mitigate potential Computer Network Defense (CND) incidents.\This role requires expertise in cyber incident management and cybersecurity operations, with a proactive approach to safeguarding enterprise IT...

• 

  Incident Response and Security Lead

  2 days ago

  ---

  Arlington, Virginia, United States Leidos Holding Full time

  Incident Response and Security LeadWe are seeking an experienced Incident Response and Security Lead to join our team at Leidos Holding. In this role, you will lead incident response activities and develop and implement security strategies to protect against cyber threats.Key Responsibilities:Develop and implement security strategies to protect against cyber...

• 

  Incident Manager III

  2 weeks ago

  ---

  Arlington, Virginia, United States Solutions³ LLC Full time

  Title:Incident Manager IIIDescription:Solutions³ LLC is supporting our prime contractor and their U.S. Government customer to provide support for onsite incident response to civilian Government agencies and critical asset owners who experience cyber-attacks, providing immediate investigation and resolution.Solutions³ LLC is seeking anIncident Manager IIIto...

• 

  Incident Manager III

  8 hours ago

  ---

  Arlington, Virginia, United States Solutions³ LLC Full time

  Title:Incident Manager III Description:   Solutions³ LLC is supporting our prime contractor and their U.S.Government customer to provide support for onsite incident response to civilian Government agencies and critical asset owners who experience cyber-attacks, providing immediate investigation and resolution.      Solutions³ LLC is seeking an Incident...

• 

  Incident Response Program Manager

  2 days ago

  ---

  Arlington, Virginia, United States Leidos Holding Full time

  About the TeamWe are seeking a motivated and experienced Incident Response Program Manager to join our team at Leidos Holding. As a key member of our Cybersecurity team, you will be responsible for leading incident response activities and mentoring junior staff.Main Responsibilities:Utilize state-of-the-art technologies to lead incident response activities...

• 

  Senior Cyber Incident Analyst

  2 days ago

  ---

  Arlington, Virginia, United States Leidos Holding Full time

  About the RoleWe are looking for a seasoned Senior Cyber Incident Analyst to join our Leidos Holding team. In this role, you will play a critical part in our cybersecurity efforts, working closely with cross-functional teams to detect, analyze, and respond to cyber threats.Key Responsibilities:Analyze high volumes of logs, network data, and other attack...

• 

  Incident Manager II

  7 hours ago

  ---

  Arlington, Virginia, United States Solutions³ LLC Full time

  Title:Incident Manager II Description:   Solutions³ LLC is supporting our prime contractor and their U.S.Government customer to provide support for onsite incident response to civilian Government agencies and critical asset owners who experience cyber-attacks, providing immediate investigation and resolution.      Solutions³ LLC is seeking an Incident...

• 

  Incident Manager III

  4 days ago

  ---

  Arlington, Virginia, United States Solutions3 LLC Full time

  Title: Incident Manager IIIDescription: Solutions³ LLC is supporting our prime contractor and their U.S. Government customer to provide support for onsite incident response to civilian Government agencies and critical asset owners who experience cyber-attacks, providing immediate investigation and resolution. Solutions³ LLC is seeking an Incident Manager...

• 

  Incident Manager III

  5 days ago

  ---

  Arlington, Virginia, United States Solutions³ LLC Full time

  Job Description Job Description Title: Incident Manager IIIDescription: Solutions³ LLC is supporting our prime contractor and their U.S. Government customer to provide support for onsite incident response to civilian Government agencies and critical asset owners who experience cyber-attacks, providing immediate investigation and...

• 

  Cybersecurity Incident Manager

  6 days ago

  ---

  Arlington, Virginia, United States Solutions3 LLC Full time

  Title: Cyber Incident Manager (L3)Description:Solutions³ LLC is supporting our prime contractor and their U.S. Government customer to provide support for onsite incident response to civilian Government agencies and critical asset owners who experience cyber-attacks, providing immediate investigation and resolution. Project personnel performs investigations...

Incident Handling-SME

4 weeks ago

---

Arlington, Virginia, United States Peraton Full time

Responsibilities

We are seeking a Cyber Incident Handling SME to become part of Peraton's Department of State (DoS) Diplomatic Security Cyber Mission (DSCM) program providing leading cyber and technology security experience to enable innovative, effective and secure business processes.

Location: Beltsville, MD and Roslyn, VA.

The customer requirement requires every employee to be onsite for the first 90 days. After the 90 day period, a hybrid schedule may be offered. The selected candidate must be able to support a hybrid and flexible schedule, in the event of significant cyber incident a continuous on site presence will be required.

Peraton's DSCM program encompasses technical, engineering, data analytics, cyber security, management, operational, logistical and administrative support to aid and advise DoS Cyber & Technology Security (CTS) Directorate. This includes protecting a global cyber infrastructure comprising networks, systems, information, and mobile devices all while identifying and responding to cyber risks and threats. Those supporting Peraton's DSCM program strive to leverage their expert knowledge and propose creative solutions to real-world cybersecurity challenges.

What you'll do:

• Support the Cyber Incident Response Team (CIRT) as a key member of Incident Response Tiger Team.
• Provide Subject Matter Expert (SME) level incident management support in a 24x7x365 environment.
• Share in-depth knowledge and intelligence gained from cyber security events with stakeholders.
• Collaborate with Cyber Threat Intelligence (CTI) teams to analyze threat actor tactics, techniques, and procedures (TTPs) and integrate actionable intelligence into incident response workflows.
• Protect against and prevent potential cyber security threats and vulnerabilities.
• Provide SME level response, technical assistance and expertise for significant cyber incidents, investigations and related operational events.
• Conduct advanced analysis and recommend remediation steps.
• Plan and conduct incident response tabletop exercises (TTX), team simulations, and cyber drills to validate response plans and improve overall readiness.
• Develop and implement training programs for incident handling analysts.
• Conduct detailed research to increase awareness and readiness levels of the security operations center.
• Review, draft, edit, update and publish cyber incident response plans.
• Develop key performance indicators (KPIs) and key risk indicators (KRIs) to measure and improve incident response effectiveness.
• Ensure incident response procedures align with industry best practices and compliance frameworks such as NIST 800-61, ISO 27035, CMMC.
• Mentor junior analysts, conduct knowledge transfer sessions, and develop playbooks to enhance the skill set of the security operations team.

#DSCM

Qualifications

Minimum Requirements:

• Bachelor's degree and minimum of 14 years' experience, or a Master's degree and a minimum of 12 years' experience. An additional 4 years of experience may be used in lieu of degree.
• Must have one of the following certifications:
  • CASP+ CE, CCNP Security, CISA, CISSP (or Associate), CISSP-ISSAP, CISSP-ISSEP, GCED, GCIH.
• Ability to manage and resolve highly complex cyber incidents.
• Ability to recommend sound counter measures to malicious cyber activity.
• Experience in the development of policies and procedures to investigate cyber incidents for the enterprise network.
• Experience handling national state level cyber incidents.
• Experience with evidence collection, custody and control procedures.
• Experience in incident triage.
• Perform cyber defense trend analysis and reporting.
• Experience with the ServiceNow platform.
• Demonstrated knowledge of the Incident Response Lifecycle.
• Demonstrated ability to utilize and leverage forensic tools to assist in determining scope and severity of a cybersecurity incident.
• Ability to identify remediation steps for cybersecurity events.
• Demonstrated strong organizational skills.
• Proven ability to operate in a time sensitive environment.
• Proven ability to communicate orally and written.
• Proven ability to brief (technical/informational) senior leadership.
• U.S. citizenship required.
• An active Secret security clearance with the ability to obtain a final Top Secret clearance.

Preferred Qualifications:

• Experience developing processes and procedures within a help desk or security operations center environment.
• Experience using security tools such as SIEM (Splunk or ELK), EDR/XDR (CrowdStrike, SentinelOne, Microsoft Defender), and network analysis tools (Wireshark, Zeek, Suricata).
• Experience with cloud security incident response, including AWS, Azure, or Google Cloud, with knowledge of cloud-native security controls.
• Knowledge of network architecture, design and security.
• Knowledge of malware analysis, monitoring, and cloud tools and techniques.
• Knowledge of system design and process methodologies.
• Experience in developing and delivering comprehensive training programs.
• Experience collaborating with cross functional teams.
• Experience working in the inter-agency environment.
• Experience coordinating incident response efforts across multiple teams and agencies, including legal, compliance, and law enforcement.
• Ability to communicate technical concepts to executive level leadership.

Peraton Overview

Peraton is a next-generation national security company that drives missions of consequence spanning the globe and extending to the farthest reaches of the galaxy. As the world's leading mission capability integrator and transformative enterprise IT provider, we deliver trusted, highly differentiated solutions and technologies to protect our nation and allies. Peraton operates at the critical nexus between traditional and nontraditional threats across all domains: land, sea, space, air, and cyberspace. The company serves as a valued partner to essential government agencies and supports every branch of the U.S. armed forces. Each day, our employees do the can't be done by solving the most daunting challenges facing our customers. Visit peraton.com to learn how we're keeping people around the world safe and secure.

Target Salary Range

$135,000 - $216,000. This represents the typical salary range for this position based on experience and other factors.

EEO

EEO: Equal opportunity employer, including disability and protected veterans, or other characteristics protected by law. All

---

Report this job