Incident Response Analyst with TS/SCI clearance
1 week ago
To get the best candidate experience, please consider applying for a maximum of 3 roles within 12 months to ensure you are not duplicating efforts.
Job Category
Software EngineeringJob Details
About Salesforce
We're Salesforce, the Customer Company, inspiring the future of business with AI+ Data +CRM. Leading with our core values, we help companies across every industry blaze new trails and connect with customers in a whole new way. And, we empower you to be a Trailblazer, too - driving your performance and career growth, charting new paths, and improving the state of the world. If you believe in business as the greatest platform for change and in companies doing well and doing good - you've come to the right place.
Computer Security Incident Response Analyst
*This is a customer-facing role and will require you to be on-site on Northern Virginia. This is NOT a remote position.*
Salesforce - the leader in enterprise cloud computing and one of the top 10 places to work according to Fortune magazine - is seeking an Incident Response Analyst for our Government Cloud Security Operations team.
As part of the Salesforce National Security (SNS) Cloud Security Operations (SecOps), the Incident Response Analyst will work on the 'front lines' of Salesforce environments supporting US Government agencies and departments performing national security functions. SNS Cloud SecOps protects our critical infrastructure and our customers' data from the latest information security threats. SNS Cloud SecOps is responsible for 24x7x365 security monitoring, security operations, real-time analysis of security alert data, and rapid incident response across SNS Cloud environments.
PLEASE NOTE: Qualification for this job is contingent upon acceptable results from a background investigation as well as your having and maintaining the specific level of U.S. government background investigation and clearance required for this role.
Role Description:
The Incident Response Analyst will respond to and investigate cyber security events within the SNS Cloud environments, track and document security events and incidents in a ticketing system, and analyze log data for signs of malicious activity in a Security Information and Event Manager (SIEM).
The Analyst will need to work across multi-disciplined teams to coordinate incident response actions for high-priority, high-transparency operations security issues to drive toward a resolution while meeting required service-level agreements, escalating as appropriate, and providing regular updates to senior leaders.
This position offers a challenging opportunity to be exposed to a diverse set of security disciplines, including incident response, forensics, reverse engineering, malware analysis, intrusion detection, network security, and system security.
This position provides opportunities to automate workflows and processes, develop new analytics and apply mitigations for adversary Tactics, Techniques, and Procedures (TTPs), and hunt for undetected indicators of compromise.
This position may require you to provide periods of 24x7 on-call support on an as-needed basis.
As we work with Government customers, this position may require occasional local travel to customer sites.
Minimum Qualifications:
The candidate must be a U.S. citizen and must have an active U.S. Government Top Secret/SCI security clearance with Polygraph.
A related technical degree, such as Computer Science, Software Engineering, Cybersecurity, Information Assurance, or equivalent work experience.
4+ years experience in cybersecurity, engineering, and/or incident response roles.
Strong interpersonal and communication skills required for coordinating responses to sophisticated incidents across the organization with many non technical and technical stakeholders.
Strong problem solving ability to determine solutions to encountered or anticipated challenges.
Robust technical understanding of the information security threat landscape (attack vectors and tools, best practices for securing systems and networks, etc.).
An in-depth understanding of TCP/IP network protocols and application layer protocols (e.g., HTTP, SMTP, DNS, etc.).
Experience with one or more SIEMs, like Splunk, Azure Sentinel, ElasticStack, etc.
Desired Skills:
Technical understanding of the information security threat landscape, to include attack vectors, tools, best practices for securing systems and networks, etc.
Familiarity with incident response and security operations within cloud environments.
Familiarity with Mac OSX, Microsoft Windows, and Linux/Unix system administration and security controls.
Technical understanding of AWS, Azure, or GCP administration and security controls.
Experience creating and managing event and metric dashboards with tools like Splunk, Kibana, Grafana, etc.
Experience with data query languages, such as SQL, SPL, GraphQL, etc.
Scripting language (i.e. Bash, Python, etc.) and workflow automation experience.
Operational experience monitoring devices such as network and host-based intrusion detection systems, web application firewalls, database security monitoring systems, firewalls/routers/switches, proxy servers, antivirus systems, file integrity monitoring tools, and operating system logs.
System forensics/investigation skills, including analyzing system artifacts (file system, memory, running processes, network connections) for indicators of infection/compromise.
Relevant information security certifications, such as CISSP, GCFR, GCIA, GCIH or other related certifications.
#LI-Y
This candidate must be a U.S. citizen (U.S. born or naturalized) who does not hold dual citizenship and agrees to complete a U.S. federal government Minimum Background Investigation (MBI) for a Moderate Public Trust position.This position requires a USA TS/SCI with Polygraph security access level.Accommodations
If you require assistance due to a disability applying for open positions please submit a request via this Accommodations Request Form.
Posting Statement
At Salesforce we believe that the business of business is to improve the state of our world. Each of us has a responsibility to drive Equality in our communities and workplaces. We are committed to creating a workforce that reflects society through inclusive programs and initiatives such as equal pay, employee resource groups, inclusive benefits, and more. Learn more about Equality at www.equality.com and explore our company benefits at www.salesforcebenefits.com.
Salesforce is an Equal Employment Opportunity and Affirmative Action Employer. Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender perception or identity, national origin, age, marital status, protected veteran status, or disability status. Salesforce does not accept unsolicited headhunter and agency resumes. Salesforce will not pay any third-party agency or company that does not have a signed agreement with Salesforce.
Salesforce welcomes all.
-
Cyber Incident Response Analyst
3 days ago
McLean, United States ManTech Full timeManTechis seeking a highly motivatedCyber Incident Response AnalystinMcLean, VA. Are you interested in defending the most coveted targets in the world? Is advancing today's technology for tomorrow's threats to national security constantly on your mind? Join ManTech and help protect our country against our adversaries while working on innovative projects that...
-
Cyber Incident Response Analyst
2 weeks ago
McLean, United States ManTech Full timeManTech is seeking a highly motivated Cyber Incident Response Analyst in McLean, VA . Are you interested in defending the most coveted targets in the world? Is advancing today's technology for tomorrow's threats to national security constantly on your mind? Join ManTech and help protect our country against our adversaries while working on innovative projects...
-
Budget Analyst-TS/SCI With CI Poly
4 months ago
McLean, United States Urbane Systems Full timeRole: Financial Service Budget Formulation Analyst – TS/SCI with CI PolyLocation: McLean, VADuration: Full-TimeClearance Level: Must have Active TS/SCI with CI PolyResponsibilities:Provide expert guidance and produce reports related to budget and financial activities for the component.Support budget program execution, ensuring alignment with available...
-
Software Developer
1 week ago
McLean, United States Top Secret Clearance Jobs Full timeAbout the job Software Developer - TS/SCI w/ polygraph Top Secret Clearance Jobs is dedicated to helping those with the most exclusive security clearance find their next career opportunity and get interviews within 48 hours. Category Information Technology Job Location McLean, Virginia Tracking Code ICS 4320 Position Type Full-Time/Regular CALIBRE Systems,...
-
Business Performance Analyst
4 months ago
McLean, United States LMI Full timeOverviewLMI is seeking applicants for a position in its Tysons Virginia HQ office and other locations. LMI is a not-for-profit government consulting firm, dedicated exclusively to advancing the management of the federal government. As a not-for-profit company, we deliver the best value for the government dollar. Our clients value our nspecialized services in...
-
IT Program Manager
6 days ago
McLean, United States Cyrten Full timeLocation: McLean, VA Clearance: TS/SCI Full Scope Polygraph (active) Onsite: 100% Onsite work (non-negotiable) Type: Full-Time/Direct-Hire Skill Level DesiredYears Exp Expert10 - 15Subject Matter Expert16+ In Bid/Vacant: Vacant Note: Available Immediately & Benefits posted below Introduction: This role is ideal for a strategic thinker who excels in...
-
Budget Analyst-TS/SCI With CI Poly
4 weeks ago
McLean, VA, United States Urbane Systems Full timeRole: Financial Service Budget Formulation Analyst – TS/SCI with CI PolyLocation: McLean, VADuration: Full-TimeClearance Level: Must have Active TS/SCI with CI PolyResponsibilities:Provide expert guidance and produce reports related to budget and financial activities for the component.Support budget program execution, ensuring alignment with available...
-
Systems/Business Analyst
1 week ago
McLean, United States The DarkStar Group LLC Full timeDescription The DarkStar Group is seeking a Systems/Business Analyst with a TS/SCI + Poly clearance (applicable to this customer) to join one of our top projects in Tysons, VA. Below is an overview of the project, as well as information on our company, our benefits, and our $25,000 referral program. THE PROJECT The DarkStar Group's team provides tactical...
-
Cyber Threat Hunt Analyst
3 days ago
McLean, United States ManTech Full timeManTech is hiring an experienced and highly skilled Cyber Threat Hunt Analyst to join our Cyber Security Operations Center (CSOC) in McLean, VA. The ideal candidate will have a deep understanding of cyber threat hunting, advanced persistent threats (APTs), and the latest tactics, techniques, and procedures (TTPs) used by adversaries. As a Cyber Threat Hunt...
-
Software Developer
1 week ago
McLean, United States The DarkStar Group LLC Full timeDescription The DarkStar Group is seeking a Software Developer with a TS/SCI + Poly clearance (applicable to this customer) to join one of our top projects in Tysons, VA. Below is an overview of the project, as well as information on our company, our benefits, and our $25,000 referral program. THE PROJECT The DarkStar Group's team provides tactical data...
-
McLean, United States The Metamorphosis Group, Inc. Full timeCyber Security Project Engineer TS/SCI Clearance with FSP REQUIRED McLean, VA · Government/Military Apply Now Description: MUST BE US CITIZEN MUST POSSESS ACTIVE TS/SCI with FSP - candidates without required clearances cannot be considered TMG is the proud recipient of the Employer Support of Guard and Reservists by the SECDEF. TMG is an Equal...
-
Strategic Communications Specialist
6 months ago
McLean, United States LMI Full timeOverviewLMI, a private, not for profit research institute is seeking applicants for a position in Northern VA area for a Strategic Communications Specialist. LMI is a consulting firm, dedicated exclusively to advancing the management of the federal government.We deliver the best value for the government dollar. Our clients value our not-for-profit status and...
-
Data Engineer
1 week ago
McLean, United States The DarkStar Group LLC Full timeDescription The DarkStar Group is seeking a Data Engineer with a TS/SCI + Poly clearance (applicable to this customer) to join one of our top projects in McLean, VA. Below is an overview of the project, as well as information on our company, our benefits, and our $25,000 referral program. THE PROJECT The DarkStar Group's team provides tactical data...
-
Project Integrator
1 month ago
McLean, United States LMI Full timeOverviewLMI is seeking a skilled Project Integrator with a TS/SCI and polygraph. Candidate must be willing to work on client site in McLean, VA. The client's Diversity, Equity, Inclusion, & Accessibility Program fills a critical need to support the Agency's effort to advance DEIA. Successful candidate will be able to confidently work with senior leadership...
-
Senior Incident Response Analyst
3 months ago
McLean, United States Axxum Technologies Full timeSenior Incident Response Analyst Responsibilities : Provide effective front-line support leveraging service desk ticketing system, telephone, and email communications Support the service desk shift lead in operational activities Interact with the government Program Manager for the service desk regarding operational issues Ensure timely and effective...
-
Senior Incident Response Analyst
6 hours ago
McLean, United States Axxum Technologies Full timeSenior Incident Response Analyst Responsibilities : Provide effective front-line support leveraging service desk ticketing system, telephone, and email communications Support the service desk shift lead in operational activities Interact with thegovernment Program Manager for the service desk regarding operational issues Ensure timely and effective response...
-
Content Management and Intelligence Editor
3 days ago
McLean, United States LMI Full timeOverviewLMI currently has an opportunity for a Content Management/Intelligence Editor to support an Intelligence Community customer in the McLean area. Work hours required are approximately 10am-6pm, Monday thru Friday.The ideal candidate will serve in a full-time client facing role as a Content Manager/Intelligence Editor for an Intelligence Community (IC)...
-
Software Developer
1 week ago
McLean, United States Calibre Inc Full timeJob Description CALIBRE Systems, Inc., an employee-owned Management Consulting and Digital Transformation company, is looking for a Software Developer with TS/SCI clearance with polygraph. The successful candidate will work with a customer team(s) and within a broader Software Development/Systems Engineering team to design and develop software applications,...
-
Software Developer
1 week ago
McLean, United States Calibre Inc Full timeJob Description CALIBRE Systems, Inc., an employee-owned Management Consulting and Digital Transformation company, is looking for a Software Developer with TS/SCI clearance with polygraph. The successful candidate will work with a customer team(s) and within a broader Software Development/Systems Engineering team to design and develop software applications,...
-
Software Developer
4 months ago
McLean, United States CALIBRE Systems Full timeJob Description CALIBRE Systems, Inc., an employee-owned Management Consulting and Digital Transformation company, is looking for a Software Developer with TS/SCI clearance with polygraph. The successful candidate will work with a customer team(s) and within a broader Software Development/Systems Engineering team to design and develop software applications,...
