Incident Response Operator
4 weeks ago
GovStaff is seeking a Top Secret cleared Tier II Incident Response Analyst. Shift 1, M-F, 6am to 2:30pm. Hybrid role with expectations of working onsite most days of the week. Site location is in the NoMa area of Washington, DC, 20002 at 2CON Square. Excellent company sponsored benefits program, and an opportunity to establish stability and grow your cyber security career under a company sponsored training reimbursement program.
Offering a very competitive salary of $75,000 to $95,000/yr and excellent benefits, including fully paid coverage for Medical, Dental, Vision, and Life Insurance, Supplemental Insurance, 401K with a company match, Flexible Time Off (PTO/Holidays), and even a Higher Education/Training Reimbursement.
The selected candidate will be responsible for monitoring enterprise networks and systems, detecting events, and reporting on all threats that are directed against those systems regardless of their classification level or type.
The Incident Response Analyst will provide the client with a fully comprehensive array of analytical activities in support of external threat monitoring, detection, event analysis, and incident reporting efforts including presentation reviews, internal and external threat reporting, analysis of inbound and outbound public internet traffic, suspicious e-mail messages, administering access request to specific public sites, communicating and coordinating the characterization of events and the response. Typically, the client's sensor grid acquires millions of events per day and events are analyzed and categorized in accordance with the Cyber Security Incident Response Plan.
POSITION RESPONSIBILITIES:
- Provides support for complex computer network exploitation and defense techniques to include deterring, identifying, and investigating computer and network intrusions; providing incident response and remediation support;
- Performing comprehensive computer surveillance/monitoring, identifying vulnerabilities; developing secure network designs and protection strategies, and audits of information security infrastructure.
- Provides technical support for continuous monitoring, computer exploitation and reconnaissance; target mapping and profiling; and, network decoy and deception operations in support of computer intrusion defense operations.
- Provides technical support for forensics services to include evidence seizure, computer forensic analysis, and data recovery, in support of computer crime investigation.
- Researches and maintains proficiency in open and closed source computer exploitation tools, attack techniques, procedures, and trends.
- Performs research into emerging threat sources and develops threat profiles.
- Provides technical support for a comprehensive risk management program identifying mission-critical processes and systems; current and projected threats; and system vulnerabilities.
- Active Top Secret with SCI eligibility required*
- Be able to commute onsite and support Shift 1, Monday through Friday 6 AM - 2:30 PM EST
- Minimum of four (4) years of general work experience and three (3) years of relevant experience in functional responsibility
- Bachelor's Degree, or an equivalent combination of formal education, experience
- Experience in the following tools and technologies:
- BRO IDS
- Splunk SIEM
- RSA Netwitness
- FireEye
- Sourcefire (Snort)
- CrowdStrike EDR
- Fidelis XPS
- Strong analytical and organizational skills
- Strong verbal and written communication skills
- Experience with MS Word and other MS Office Applications
- Experience with securing various environments preferred
- Experience working a SOC and doing incident response is preferred
- Experience and education preferred in eCPPT, OSCP, GCFW, GCIH, other relevant IT security certifications, or advanced vendor certifications such as Splunk Certified Architect or SourceFire Certified Administrator; Security+, GSEC, or other relevant IT security product certifications such as Tenable Certified Nessus Auditor, or SnortCP; CISSP, CISM, or ISO 27001
SIMILAR OPENINGS FOR THE FOLLOWING:
• Part Time, Tier II, Incident Response, Weekend Night Shift, 10pm - 10am. Top Secret Clearance with TS/SCI eligibility required. The role will be an ad hoc shift on either or both Friday and Saturday evening / morning, with expected hours ranging from 24 - 96 per month. Onsite in Washington, DC. Pay is W2 hourly, $33/hr to $45/hr for hours worked. No benefits included for this part time role.
If you feel either of these openings may meet your experience and interests, please apply to initiate a dialog in confidence. If this position does not meet your interests or the requirements, we'll gladly hang onto your profile in the event another position opens that could be a fit. GovStaff, and all our business partners, adhere to all EEOC regulations.
At GovStaff, we operate in strict confidence: We do not share resumes, names, or applications outside of GovStaff, unless given express consent by each candidate. We welcome all cleared professionals to our GovStaff Network of candidates seeking new job opportunities or those simply wishing to become part of our Network of government support professionals.
-
Incident Response Operator
4 weeks ago
Washington, United States GovStaff Full timeGovStaff is seeking a Top Secret cleared Tier II Incident Response Analyst. Shift 1, M-F, 6am to 2:30pm. Hybrid role with expectations of working onsite most days of the week. Site location is in the NoMa area of Washington, DC, 20002 at 2CON Square. Excellent company sponsored benefits program, and an opportunity to establish stability and grow your cyber...
-
Critical Incident Response Specialist
2 weeks ago
Washington, United States Crisis24 Full timeAbout the Role:The Senior GSOC Analyst directs the activities within the day-to-day operations of the Headquarters Command Center (HQCC) and monitors performance for quality assurance. Using the Incident Command System, the Senior GSOC Analyst serves as the incident commander and directs the HQCC's response to incidents, until they are resolved or major...
-
Cybersecurity Operations Lead
4 weeks ago
Washington, United States Palo Alto Networks Full timeAbout UsPalo Alto Networks is a leading cybersecurity company that aims to protect the digital way of life. Our mission is to be the cybersecurity partner of choice, and we're looking for innovators who can help us shape the future of cybersecurity.Job DescriptionThe Cybersecurity Operations Lead - Incident Response will play a critical role in supporting...
-
Washington, United States Palo Alto Networks Full timeAbout the RolePalo Alto Networks is seeking a highly skilled Cybersecurity Incident Response Operations Lead to partner closely with Unit 42 Incident Response sales leaders, consultants, clients, and partners. As the primary point of contact for pre-sales assistance, you will communicate our various ways to contract based on the use case and assist with...
-
IT Incident Response Manager
7 days ago
Washington, Washington, D.C., United States General Dynamics Full timeJob Description: We are seeking an experienced IT Incident Response Manager to join our team in Washington DC. This is a full-time position that offers the opportunity to work on challenging projects and develop your skills in technical support and incident management.In this role, you will be responsible for leading the response to critical incidents,...
-
Incident Response Specialist
2 weeks ago
Washington, United States Tyto Athene, LLC Full timeIncident Response SpecialistAs an Incident Response Specialist at Tyto Athene, LLC, you will be responsible for conducting in-depth analyses and responding to incidents of potential cyber threats facing our clients. You will serve as the escalation point for junior analysts, helping guide them through more complex and high-priority incidents.We provide a...
-
Cybersecurity Incident Response Director
5 days ago
Washington, Washington, D.C., United States ShorePoint Full timeJob Summary:Cybersecurity Incident Response DirectorAbout the Role:We are seeking a skilled Cybersecurity Incident Response Director to lead and oversee our organization's incident response efforts in a fast-paced and dynamic environment. As a key member of our team, you will have extensive experience in managing security incidents, coordinating...
-
Cyber Incident Response Specialist
3 days ago
Washington, Washington, D.C., United States Critical Solutions Full timeAbout the RoleCritical Solutions is seeking a Cyber Incident Response Analyst to support threat monitoring, detection, event analysis, and incident reporting in a 24/7 Security Operations Center environment.The ideal candidate will be responsible for monitoring enterprise networks and systems, detecting events, and reporting on any threats directed against...
-
Incident Response Cybersecurity Specialist
4 weeks ago
Washington, Washington, D.C., United States GovStaff Full timeJob Title: Incident Response Cybersecurity SpecialistGovStaff is seeking a dedicated Top Secret cleared Incident Response Cybersecurity Specialist to join our team.As an Incident Response Cybersecurity Specialist, you will be responsible for monitoring enterprise networks and systems, detecting events, and reporting on all threats directed against those...
-
Incident Response Strategy Manager
5 days ago
Washington, Washington, D.C., United States ShorePoint Full timeAbout Us:ShorePoint is a fast-growing, industry recognized, and award-winning cybersecurity services firm with a focus on high-profile, high-threat, private and public-sector customers who demand experience and proven security models to protect their data. Our company subscribes to a work hard, play hard mentality and celebrates individual and company...
-
Incident Response Team Lead
4 days ago
Washington, Washington, D.C., United States ShorePoint Full timeAbout the PositionThis position requires active Top-Secret agency required security clearance to start and comes with a competitive salary range of $120,000 - $180,000 per year, depending on experience.You will be working in a rotating shift schedule and will be responsible for supporting the monitoring, detecting, and responding to cybersecurity threats...
-
Lead Incident Response Analyst
2 weeks ago
Washington, United States Tyto Athene, LLC Full timeTyto Athene is searching for a Incident Response Analyst to support weekend shift activities. We believe our Security Operations Center (SOC) analysts form the backbone of our cybersecurity services. Take your career to the next level and join us as a Tier 2 SOC Analyst. You will play a critical role in conducting in-depth analyses and responding to...
-
Lead Incident Response Analyst
5 hours ago
Washington, United States Tyto Athene, LLC Full timeTyto Athene is searching for a Incident Response Analyst to support weekend shift activities. We believe our Security Operations Center (SOC) analysts form the backbone of our cybersecurity services. Take your career to the next level and join us as a Tier 2 SOC Analyst. You will play a critical role in conducting in-depth analyses and responding to...
-
Incident Response Sales Enablement Manager
7 days ago
Washington, United States Palo Alto Networks Full timeAbout the PositionThe Incident Response Sales Enablement Manager will play a critical role in supporting the success of our sales teams by providing expert guidance on sales processes, tools, and strategies. This includes developing and implementing sales enablement programs, creating sales collateral, and conducting training sessions for sales teams.Your...
-
Principal Incident Response Engineer
3 weeks ago
Washington, United States News Corporation Full timeCyber Security, Principal Incident and Threat Response RoleThis position plays a critical role in News Corp's Cyber Defense team, focusing on effectively managing cyber security events and incidents. The ideal candidate will have strong technical skills, excellent communication abilities, and the capacity to work effectively with peers and multiple...
-
Tier 2 Incident Response Analyst
2 weeks ago
Washington, United States Tyto Athene, LLC Full timeHere at Tyto Athene, we believe our Incident Response Analyst analysts form the backbone of our cybersecurity services. Take your career to the next level and join us as a Tier 2 Incident Response Analyst. You will play a critical role in conducting in-depth analyses and responding to incidents of potential cyber threats facing our clients. In addition to...
-
Tier 2 Incident Response Analyst
5 hours ago
Washington, United States Tyto Athene, LLC Full timeHere at Tyto Athene, we believe our Incident Response Analyst analysts form the backbone of our cybersecurity services. Take your career to the next level and join us as a Tier 2 Incident Response Analyst. You will play a critical role in conducting in-depth analyses and responding to incidents of potential cyber threats facing our clients. In addition to...
-
Washington, United States Insight Global Full timeAbout This RoleWe are seeking a highly skilled Incident Response Analyst to join our team in Alexandria, VA. As an Incident Response Analyst, you will be responsible for identifying compromises on customer networks and endpoints using various alert systems. You will perform junior- to intermediate-level reviews of massive log files, pivot between data sets,...
-
Washington, Washington, D.C., United States Palo Alto Networks Full timeJob SummaryWe are seeking an experienced Senior Cybersecurity Leader to lead our Digital Forensics and Incident Response (DFIR) practice. As a key member of our team, you will be responsible for managing high-profile incident response engagements, providing expert-level digital forensics and incident response services to clients, and driving innovation in...
-
Incident Response Sales Strategy Manager
1 week ago
Washington, United States Censys Full timeAbout the RoleThis is an exciting opportunity to join a small team that's solving an exponential problem. Every day, you'll represent Censys to C-Levels, principals, and partners, threat hunters, and cybersecurity practitioners at the largest IR, GSI, and FSIs in the world. We're creating a new category, and we're looking for people who want to leave their...
