Incident Response Analyst with Security Clearance
3 weeks ago
BS degree in Science, Technology, Engineering, Math or related field and 8+ years of prior relevant experience with a focus on cybersecurity OR Masters with 4-6 years of prior relevant experience. Primary Responsibilities
Our govt client has an immediate need for an experienced Incident Response Analyst for a new customer on a highly-visible and strategic Cybersecurity Task Order. The Incident Response Analyst will need to be a self-starter with excellent analytical and problem-solving skills, flexibility, good judgment, and the ability to work within a team to stand up and mature the cybersecurity capabilities of our customer.
• Perform incident handling responsibilities with direct interface to customers and management team
• Perform analysis on anomalous behavior based on log data from firewalls, packet capture, web proxy services, network flow analysis, intrusion detection, and malware analysis tools
• Instill and reinforce industry best practices in the domains of incident response, cybersecurity analysis, case and knowledge management, and SOC operations
• Promote and drive implementation of automation and process efficiencies
• Recommend implementation and improvement of new tools, capabilities, frameworks, and methodologies
• Provide guidance and mentorship to improve analyst skill sets and ensure delivery of high quality analysis and work products
• Establish trust and business relationships with customer and other relevant stakeholders Basic Qualifications
BS degree in Science, Technology, Engineering, Math or related field and 8+ years of prior relevant experience with a focus on cybersecurity OR Masters with 4-6 years of prior relevant experience. • Prior experience working as a SOC analyst
• 5+ years of intrusion detection and/or incident handling experience • Working knowledge of SIEM solutions and incident management solutions • In-depth knowledge of each phase of the Incident Response life cycle • Expertise of Operating Systems (Windows/Linux) operations and artifacts • Understanding of Enterprise Network Architectures to include routing/switching, common protocols (DHCP, DNS, HTTP, etc), and devices (Firewalls, Proxies, Load Balancers, VPN, etc) • Ability to recognize suspicious activity/events, common attacker TTPs, perform logical analysis and research to determine root cause and scope of Incidents • Department of Homeland Security (DHS) Entry on Duty (EOD) is required to support this program Must Have One of the Following J3 Certifications
SANS GIAC: GCIA, GMON, GCDA GPEN, GEVA, GWAPT, GSNA, GISF, GAWN, GXPN, GWEB Offensive Security: OSCP, OSCE, OSWP, OSEE ISC2: CISSP EC Council: CEH Preferred Qualifications
• Deep technical understanding of core current cybersecurity technologies as well as emerging capabilities. • Hands-on cybersecurity experience (Protect, Detect, Respond and Sustain) within a Computer Incident Response organization including prior experience performing large-scale incident response. • Demonstrated understanding of the life cycle of cybersecurity threats, attacks, attack vectors and methods of exploitation with an understanding of intrusion set tactics, techniques and procedures (TTPs). • Familiarity or experience in Intelligence Driven Defense, Cyber Kill Chain methodology, and/or MITRE ATT&CK framework. • Familiarity with Cloud concepts and experience performing monitoring and responding to threats in Cloud environments
-
Incident Response
2 weeks ago
Arlington, United States Nine Mind Solutions Full timeClearance: Top Secret We are seeking a Cyber Security Incident Responder who can support our customer in the detection, response, mitigation, and reporting of cyber threats affecting the client networks. This position requires shift work including nights/weekends. Qualifications: Required Education: Bachelor of Science Degree Must be a US Citizen Must have...
-
Cyber Security Incident Responder
3 weeks ago
Arlington, United States Node Full timeCyber Security Incident Responder/ Information System Security Analyst Location: Arlington, VA Must have Top Secret Security Clearance Node is supporting a U.S. Government customer on a large mission-development and sustainment program to design, build, deliver, and operate a network operations environment; including introducing new cyber capabilities to...
-
Cyber Security Incident Responder
7 days ago
Arlington, United States Node.Digital Full timeCyber Security Incident Responder/ Information System Security Analyst Location: Arlington, VAMust have Top Secret Security Clearance Node is supporting a U.S. Government customer on a large mission-development and sustainment program to design, build, deliver, and operate a network operations environment; including introducing new cyber capabilities to...
-
Cyber Security Incident Responder
23 hours ago
Arlington, United States Node.Digital LLC Full timeCyber Security Incident Responder/ Information System Security Analyst Location: Arlington, VAMust have Top Secret Security ClearanceNode is supporting a U.S. Government customer on a large mission-development and sustainment program to design, build, deliver, and operate a network operations environment; including introducing new cyber capabilities to...
-
Cyber Security Incident Responder
3 weeks ago
Arlington, United States Node.Digital Full timeJob DescriptionJob DescriptionCyber Security Incident Responder/ Information System Security Analyst Location: Arlington, VAMust have Top Secret Security ClearanceNode is supporting a U.S. Government customer on a large mission-development and sustainment program to design, build, deliver, and operate a network operations environment; including introducing...
-
Cyber Security Incident Responder
3 weeks ago
Arlington, United States Node.Digital LLC Full timeCyber Security Incident Responder/ Information System Security Analyst Location: Arlington, VAMust have Top Secret Security ClearanceNode is supporting a U.S. Government customer on a large mission-development and sustainment program to design, build, deliver, and operate a network operations environment; including introducing new cyber capabilities to...
-
Arlington, United States Argo Cyber Systems Full timeJob DescriptionJob DescriptionArgo Cyber Systems provides remote and onsite advanced technical assistance, proactive hunting, rapid onsite incident response, and immediate investigation and resolution using host-based, network-based and cloud-based cybersecurity analysis capabilities. Team personnel provide front line response for digital forensics/incident...
-
Cyber Security Incident Responder
3 weeks ago
Arlington, Virginia, United States Node.Digital Full timeCyber Security Incident Responder/ Information System Security Analyst Location: Arlington, VA Must have Top Secret Security Clearance Node is supporting a U.S. Government customer on a large mission-development and sustainment program to design, build, deliver, and operate a network operations environment; including introducing new cyber capabilities to...
-
Security Analyst
3 weeks ago
Arlington, United States Argo Cyber Systems Full timeJob DescriptionJob DescriptionARGO Cyber Systems is seeking a Cyber Security Incident ResponderARGO is supporting a U.S. Government customer on a large mission critical development and sustainment program to design, build, deliver, and operate a network operations environment; including introducing new cyber capabilities to address emerging threats. In...
-
SAP Security Analyst
4 weeks ago
Arlington, United States SAIC Full timeJob ID: 2405435 **Location**:ARLINGTON, VA, US **Date Posted**:2024-04-15 **Category**:Security **Subcategory**:Security **Schedule**:Full-time **Shift**:Day Job **Travel**:No **Minimum Clearance Required**:TS/SCI **Clearance Level Must Be Able to Obtain**:None **Potential for Remote Work**:No **Description** SAIC is seeking a **SAP Security...
-
Incident Manager
3 weeks ago
Arlington, United States Node.Digital Full timeJob DescriptionJob DescriptionIncident Manager / Cyber Incident ManagerLocation: Arlington, VAMust have Top Secret Security ClearanceNode is supporting a U.S. Government customer to provide support for onsite incident response to civilian Government agencies and critical asset owners who experience cyber-attacks, providing immediate investigation and...
-
Incident Manager
3 weeks ago
Arlington, United States Node.Digital Full timeIncident Manager / Cyber Incident ManagerLocation: Arlington, VAMust have Top Secret Security Clearance Node is supporting a U.S. Government customer to provide support for onsite incident response to civilian Government agencies and critical asset owners who experience cyber-attacks, providing immediate investigation and resolution. Contract personnel...
-
NAVFAC Journeyman Security Analyst
3 weeks ago
Arlington, United States Clark Creative Solutions Full timeJob DescriptionJob DescriptionWe are seeking a Journeyman Information Security Analyst to join our team! You will provide cost-effective, efficient, and innovative solutions for meeting the mission and program objectives of NAVFAC.Overarching objectives include:Streamlining the current RMF process to foster quicker security control implementations, more...
-
Incident Manager
1 week ago
Arlington, United States Solutions³ LLC Full timeJob DescriptionJob DescriptionIncident Manager - II - IMG02 PIPELINE Position; Base Contract Rates applySolutions3 Technologies is supporting a U.S. Government customer to provide support for onsite incident response to civilian Government agencies and critical asset owners who experience cyber-attacks, providing immediate investigation and resolution. ...
-
Cyber Security Analyst
2 weeks ago
Arlington, United States NSS Full timeJob Description We are seeking a Cyber Security Analyst. This position provides 24x7 cybersecurity monitoring and analysis services for Department of Defense networks above the SECRET level. This includes performing real-time cyber threat intelligence analysis, correlating actionable security events, performing network traffic analysis using raw packet...
-
Cyber Security Analyst
2 days ago
Arlington, United States NSS Full timeJob Description We are seeking a Cyber Security Analyst. This position provides 24x7 cybersecurity monitoring and analysis services for Department of Defense networks above the SECRET level. This includes performing real-time cyber threat intelligence analysis, correlating actionable security events, performing network traffic analysis using raw packet...
-
Incident Manager
4 weeks ago
Arlington, United States Farfield Systems Full timeJob DescriptionJob DescriptionFarfield will assist the Federal staff within the Cybersecurity and Infrastructure Protection Agency (CISA) Hunt and Incident Response Team (HIRT), and National Cybersecurity and Assessment and Technical Services (NCATS) branches, with a broad set of support functions.The Hunt and Incident Response Team is DHS’s front line...
-
Incident Manager
3 weeks ago
Arlington, United States Farfield Systems, Inc Full timeFarfield will assist the Federal staff within the Cybersecurity and Infrastructure Protection Agency (CISA) Hunt and Incident Response Team (HIRT), and National Cybersecurity and Assessment and Technical Services (NCATS) branches, with a broad set of support functions.The Hunt and Incident Response Team is DHS's front line when responding to cyber incidents...
-
Incident Manager
3 weeks ago
Arlington, Virginia, United States Node.Digital Full timeIncident Manager / Cyber Incident Manager Location: Arlington, VA Must have Top Secret Security Clearance Node is supporting a U.S. Government customer to provide support for onsite incident response to civilian Government agencies and critical asset owners who experience cyber-attacks, providing immediate investigation and resolution. Contract personnel...
-
SAP Security Analyst
4 weeks ago
Arlington, Virginia, United States SAIC Career Site Full timeDescription SAIC is seeking a SAP Security Analyst to provide comprehensive security support services for the R&E Special Access Program Central Office (SAPCO) and various program management offices across OUSD(R&E). The role demands proficiency in program protection and security management of Department of Defense (DoD) Special Access Programs (SAPs). This...
