Investigation & Incident Response Team Leader

1 week ago

Alexandria, Virginia, United States 9 th Way Insignia Full time

Investigation & Incident Response Team Leader

Alexandria, VA 9th Way Insignia has an opening for a Team Leader to work onsite in Alexandria, Virginia, in support of the U.S.

Patent and Trademark Office (PTO) Data Protection, Monitoring, & Insider Threat (InT) Mitigation implementation.

This program is a significant part of USPTOs Cyber Security Division, which is responsible for monitoring and responding to all cybersecurity events and incidents, including insider threats.

Under this program, the Insignia team will work with Federal employees to transform USPTOs insider threat detection, response, and mitigation capabilities to improve the security posture of the organization.

These services include detecting and rapidly responding to insiders who pose a threat to the confidentiality, integrity, and availability of all Controlled Unclassified Information (CUI) stored, processed, and disseminated by USPTO.

The Investigation & Incident Response (IIR) Team Leader will direct and support the in-depth analysis and investigations of events and incidents, including those observed during information systems monitoring activities, received via user-generated reports, or escalated from the Insignia Monitoring & Analysis (M&A) team.

Examples of event and incident types include the following:

unauthorized data egress (e.g., USB drives, cloud storage, file hosting services etc.), unauthorized program download/execution, assessment of users intent to use downloaded programs for malicious purposes, administrative privilege abuse, disabling of IT audit mechanisms, negligence that negatively impacts IT systems or resources, IT security violations, and related activities.

The IIR Team will examining all available information, supporting evidence, information system logs, and other artifacts to determine full extent of impact.

The IIR Team Leader will direct the steps necessary to ensure that any event or incident that is the result of insider risk or insider threator that negatively affects the confidentiality, integrity, and availability of CUIis fully investigated and remediated.


Responsibilities

  • Oversee all company and contractor resources and direct all staff in the performance of IIR technical work.
  • Establish a communication approach that provides effective, consistent, and clear communication to all key technical customers, team members, and other contract teams.
  • Execute, monitor, and coordinate the IIR activities of both Insignia and subcontracted personnel to ensure program success.
  • Identify and develop innovative ways to resolve problems or cope with issues that prevent the accomplishment of goals and objectives relative to data protection and insider threats.

Qualifications

  • At least 7 years of related experience in Cyberspace Operations, Network Security, Computer Forensics, Network Forensics, Cyber Threat Analysis, Cyber Threat Hunting, Penetration Testing, Insider Threat Detection/Mitigation, or Incident Detection & Response.
  • Must have hands on experience with at least 12 of the required disciplines listed below:
  • Leading a technical team focused on cybersecurity operations or insider threat operations in an IT environment.
  • Having subject matter expertise in coordinating all phases of the incident management process in accordance with industry best practices.
  • Having subject matter expertise in creating and implementing rules, signatures, and alerts within COTS products, including SIEM, EDR, XDR, IDS, DLP, UEBA, and SOAR, as well as related technologies to improve insider risk detection and insider threat detection capabilities.
  • Coordinating with the appropriate business unit or technical support teams to complete the activities to ensure that an incident is fully remediated, including providing timely incident notification, status updates, and briefings to customer leadership.
  • Running investigations that identify an incident, violation, risk, or issue
  • Understanding the federal laws, policies, regulations applicable to the IIR Area of Responsibility (AOR) and coordinating event mitigation with external authorities.
  • Creating and tailoring data feeds such as system logs, signatures, alerts etc.
for correlation and incident analysis using a variety of security monitoring technologies to achieve strategic objectives, including the following:
SIEM, EDR, XDR, IDS, UEBA, DLP, and SOAR, as well as related technologies,.

  • Developing and implementing security monitoring content that operates as intended, identifies activity with high accuracy, minimizes false positives, and does not degrade or significantly impact system performance.
  • Developing and implementing a program aimed at improving insider threat monitoring within an enterprise IT environment and reducing the overall insider risk posture.
  • Completing projects to develop and mature processes and procedures related to the collection, review, interpretation, correlation, and analysis of technical data, PRIs, and other non-technical data to identify or de-conflict insider risks and insider threat activity.
  • Collecting and analyzing incident data, prioritizing significant and emergent events for further investigation, correlating information with other information sources to establish context, and compiling information into comprehensive analytic reports.
  • Performing forensically sound collection of computer images and other electronic evidence; inspecting to discern possible mitigation/remediation within an enterprise IT environment.
  • Preserving Chain of Custody integrity during evidence collection, analysis, and transfer.
  • Collaborating with cross-functional teams and working groups to identify and implement recommendations to improve overall functions, operations, and performance.
  • Documenting and escalating incidents that may cause ongoing and immediate impact to the environment.
  • Developing and publishing after-action reviews, defense techniques, guidance, and reports on incident findings to appropriate constituencies.
  • Planning, coordinating, executing, and directing, containment, eradication, and recovery activities.
  • Working in an Agile environment using Enterprise Agile Planning Tool(s) and Kanban boards to track and report status of projects, work products, and deliverables.

Minimum Education Requirements

Candidates should possess a bachelors degree from an accredited institution in Information Technology, Computer Science, Information Systems Management, Cybersecurity, or related field.

Candidates who possess a masters degree from an accredited institution in Information Technology, Information Assurance, Information Systems Management, Cybersecurity, or related field can substitute education for 2 years of experience to reduce this experience requirement to 5 years of specialized/hands-on experience in cybersecurity.


Minimum Certification Requirements
Candidates should possess two of the following certifications, have the ability to quickly obtain them, or demonstrate equivalency:

  • GIAC Certified Detection Analyst (GCDA)
  • GIAC Certified Forensics Analyst (GCFA)
  • GIAC Certified Intrusion Analyst (GCIA)
  • GIAC Network Forensic Analyst (GNFA)
  • GIAC Penetration Tester (GPEN)
  • GIAC Reverse Engineering Malware (GREM)
  • GIAC Security Expert (GSE)
  • ISC2 Certified Information System Security Professional (CISSP)

Note:
All certifications must be current and active at the time the individual is on-boarded to support the contract. Certifications obtained by personnel to satisfy these requirements must remain active throughout the period of performance.

Clearance

Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information.


COVID-19

All positions will require successful candidates to obtain and show proof of a COVID-19 vaccination (or medical/religious exemption) on the first day of employment.

9th Way Insi

#J-18808-Ljbffr

  • Investigative and Policy Analyst

    3 weeks ago

    Alexandria, Virginia, United States City Of Alexandria Virginia Full time

    Investigative and Policy AnalystOverviewAre you an experienced professional and champion of fair and equitable policing? Would you like to work for a culturally diverse city, working to eliminate disparities and gaps in how law enforcement serves diverse communities? If so, we encourage you to apply for our Investigative and Policy Analyst position within...

  • Investigative and Policy Analyst

    2 months ago

    Alexandria, Virginia, United States City Of Alexandria Virginia Full time

    Investigative and Policy AnalystOverviewAre you an experienced professional and champion of fair and equitable policing? Would you like to work for a culturally diverse city, working to eliminate disparities and gaps in how law enforcement serves diverse communities? If so, we encourage you to apply for our Investigative and Policy Analyst position within...

  • Release and Incident Management Analyst

    1 week ago

    Alexandria, Virginia, United States Booz Allen Hamilton Full time

    Release and Incident Management Analyst Key Role: Plan, communicate, and coordinate complex releases that comprise of cross-functional teams and a multitude of interrelated and independent applications or infrastructure changes. Maintain up to date and relevant playbooks and documentation in support of the release. Coordinate resources and schedules for all...

  • Investigative Analyst

    1 week ago

    Alexandria, Virginia, United States SGI Global Full time

    SGI Global is seeking an Investigative Analyst to provide technical and programmatic support services for new and on-going projects and activities for the OIG's Office of Investigations (OI).This position is contingent upon contract award Responsibilities The Investigative Analyst must execute duties in support of the following: Planning, organizing, and...

  • Behavioral Health Team Leader, Child

    1 month ago

    Alexandria, Virginia, United States City Of Alexandria Virginia Full time

    Mental Health Team Supervisor Behavioral Health Team Leader, Child & Family Services The City of Alexandria is located in Northern Virginia and is bordered by the District of Columbia (Potomac River), Arlington and Fairfax counties. With a population of approximately 150,000 and a land area of 15.75 square miles, Alexandria is the seventh largest city in the...

  • Behavioral Health Team Leader, Child

    3 weeks ago

    Alexandria, Virginia, United States City Of Alexandria Virginia Full time

    Mental Health Team Supervisor Behavioral Health Team Leader, Child & Family Services The City of Alexandria is located in Northern Virginia and is bordered by the District of Columbia (Potomac River), Arlington and Fairfax counties. With a population of approximately 150,000 and a land area of 15.75 square miles, Alexandria is the seventh largest city in the...

  • Temporary Recreation Leader I and II

    1 month ago

    Alexandria, Virginia, United States City Of Alexandria Virginia Full time

    Temporary Year Round & Summer Recreation Leader I or II - OSTP, Afterschool, Summer Camp (Summer or Year Round) Overview In pursuit of service excellence, the Temporary Year-Round Recreation Leaders perform technical recreation work. Recreation Leaders may assist, plan, lead, instruct and guide youth 5-17 years old from all backgrounds in arts and crafts,...

  • Temporary Recreation Leader I and II

    3 weeks ago

    Alexandria, Virginia, United States City Of Alexandria Virginia Full time

    Temporary Year Round & Summer Recreation Leader I or II - OSTP, Afterschool, Summer Camp (Summer or Year Round) Overview In pursuit of service excellence, the Temporary Year-Round Recreation Leaders perform technical recreation work. Recreation Leaders may assist, plan, lead, instruct and guide youth 5-17 years old from all backgrounds in arts and crafts,...

  • Cyber Threat Intelligence

    7 days ago

    Alexandria, Virginia, United States Information International Associates Full time

    Company Description KeyLogic employees 700 IT systems designers, developers, mission specialists and security professionals serving government, academic, and private entities from its offices in McLean, VA, Oak Ridge, TN, Dayton, OH, Morgantown, WV, Alexandria, VA, and the UK.Job Description Job Description:KeyLogic is actively seeking a Cyber Threat...

  • Tier 2 Analyst with Security Clearance

    7 days ago

    Alexandria, Virginia, United States Anonymous Employer Full time

    Our Alexandria VA based client is looking for Tier SOC Analyst. If you are interested in this position.Please submit your application to Work location: Alexandria, VA Must Have One of the Following J3 CertificationsTier 2 Response:GCIH - Incident HandlerGCFA - Forensic AnalystGCFE - Forensic ExaminerGREM - Reverse Engineering MalwareGISF - Security...

  • Shift Leader

    7 days ago

    Alexandria, Virginia, United States Wegmans Food Market- Tysons Corner Full time

    Join our team at the new Carlyle store located in Alexandria, VA near the Eisenhower Avenue Metro Station Opening late spring 2022 Onboarding and training will begin late Fall 2021.Location: Alexandria, VA Address: 150 Stovall Street Why Join the Wegmans team? Work for a family-owned company that has been on FORTUNE magazine's list of the 100 Best Companies...

  • Part-time Recreation Leader III- OSTP

    3 weeks ago

    Alexandria, Virginia, United States City Of Alexandria Virginia Full time

    Part-Time Recreation Leader III/ GS 10Out of School Time Programs " Preserving the Past, while Innovating our Future."The City of Alexandria is located in Northern Virginia and is bordered by the District of Columbia (Potomac River), Arlington and Fairfax counties. With a population of approximately 150,000 and a land area of 15.75 square miles, Alexandria...

  • Part-time Recreation Leader III- OSTP

    2 months ago

    Alexandria, Virginia, United States City Of Alexandria Virginia Full time

    Part-Time Recreation Leader III/ GS 10Out of School Time Programs " Preserving the Past, while Innovating our Future."The City of Alexandria is located in Northern Virginia and is bordered by the District of Columbia (Potomac River), Arlington and Fairfax counties. With a population of approximately 150,000 and a land area of 15.75 square miles, Alexandria...

  • Security Officer

    3 weeks ago

    Alexandria, Virginia, United States Embassy Suites by Hilton Alexandria Old Town Full time

    The charming Embassy Suites by Hilton Alexandria Old Town is looking for a Security Officer to join their Security team.This property is steps from bustling King Street and across from the King Street Metro Station, providing easy access to Downtown Washington, DC attractions. A Security Officer is responsible for ensuring the safety of guests and team...

  • Temporary Therapeutic Recreation Leader

    3 weeks ago

    Alexandria, Virginia, United States City Of Alexandria Virginia Full time

    Temporary Recreation Leader "Preserving the Past, while Innovating our Future"The City of Alexandria is in northern Virginia and is bordered by the District of Columbia (Potomac River), Arlington ,and Fairfax counties. With a population of approximately 150,000 and a land area of 15.75 square miles, Alexandria is the seventh largest city in the Commonwealth...

  • Temporary Therapeutic Recreation Leader

    2 months ago

    Alexandria, Virginia, United States City Of Alexandria Virginia Full time

    Temporary Recreation Leader "Preserving the Past, while Innovating our Future"The City of Alexandria is in northern Virginia and is bordered by the District of Columbia (Potomac River), Arlington ,and Fairfax counties. With a population of approximately 150,000 and a land area of 15.75 square miles, Alexandria is the seventh largest city in the Commonwealth...

  • Recreation Leader III- Head Lifeguard

    2 months ago

    Alexandria, Virginia, United States City Of Alexandria Virginia Full time

    Recreation Leader III- Head LifeguardRecreation Services"Preserving the Past, while Innovating our Future." The City of Alexandria is located in Northern Virginia and is bordered by the District of Columbia (Potomac River), Arlington and Fairfax counties. With a population of approximately 150,000 and a land area of 15.75 square miles, Alexandria is the...

  • Recreation Leader III- Head Lifeguard

    3 weeks ago

    Alexandria, Virginia, United States City Of Alexandria Virginia Full time

    Recreation Leader III- Head LifeguardRecreation Services"Preserving the Past, while Innovating our Future." The City of Alexandria is located in Northern Virginia and is bordered by the District of Columbia (Potomac River), Arlington and Fairfax counties. With a population of approximately 150,000 and a land area of 15.75 square miles, Alexandria is the...

  • Temporary Recreation Leader IV- Pool Manager

    2 months ago

    Alexandria, Virginia, United States City Of Alexandria Virginia Full time

    Temporary Summer Pool ManagerRecreation Leader IV (Summer or Year Round) Overview In pursuit of service excellence, the Temporary Summer Pool Manager (Recreation Leader IV) is a supervisory position that provides staff leadership, coordinates facility use, enforces pool rules and regulations, and oversees the safe enjoyment of public swimming pools. This...

  • Temporary Recreation Leader IV- Pool Manager

    3 weeks ago

    Alexandria, Virginia, United States City Of Alexandria Virginia Full time

    Temporary Summer Pool ManagerRecreation Leader IV (Summer or Year Round) Overview In pursuit of service excellence, the Temporary Summer Pool Manager (Recreation Leader IV) is a supervisory position that provides staff leadership, coordinates facility use, enforces pool rules and regulations, and oversees the safe enjoyment of public swimming pools. This...