Current jobs related to Cybersecurity Incident Responder - Arlington, Virginia - Nightwing
-
Cybersecurity Incident Manager
2 weeks ago
Arlington, Virginia, United States Argo Cyber Systems Full timeJob SummaryArgo Cyber Systems is seeking a highly skilled Cybersecurity Incident Manager to support our critical customer mission. As a key member of our team, you will be responsible for managing and responding to cybersecurity incidents, ensuring the security and integrity of our systems and data.Key Responsibilities:Correlating incident data to identify...
-
Cybersecurity Incident Manager
2 weeks ago
Arlington, Virginia, United States Farfield Systems, Inc Full timeJob Title: Cybersecurity Incident ManagerFarfield Systems, Inc. is seeking a highly skilled Cybersecurity Incident Manager to join our team. As a key member of our Cybersecurity and Infrastructure Protection Agency (CISA) Hunt and Incident Response Team (HIRT), you will play a critical role in responding to cyber incidents and proactively hunting for...
-
Cybersecurity Incident Manager
4 weeks ago
Arlington, Virginia, United States BCMC, LLC Full timeCyber Incident Manager Job DescriptionBCMC, LLC is seeking a highly skilled Cyber Incident Manager to support our critical customer mission. As a key member of our team, you will be responsible for managing and responding to cybersecurity incidents, ensuring the protection of our customer's assets and data.Responsibilities:Correlate incident data to identify...
-
Cybersecurity Incident Manager
2 weeks ago
Arlington, Virginia, United States Argo Cyber Systems Full timeJob SummaryArgo Cyber Systems is seeking a highly skilled Cybersecurity Incident Manager to support our customer mission. The successful candidate will be responsible for investigating and resolving cyber-attacks, developing mitigation plans, and assisting with the restoration of services.This is a critical role that requires a strong understanding of...
-
Cybersecurity Incident Response Specialist
1 week ago
Arlington, Virginia, United States Nine Mind Solutions Full timeCybersecurity Incident Response SpecialistWe are seeking a highly skilled Cybersecurity Incident Response Specialist to support our customer in the detection, response, mitigation, and reporting of cyber threats affecting client networks. This position requires strong analytical and problem-solving skills, as well as the ability to work effectively in a...
-
Cybersecurity Incident Analyst
2 weeks ago
Arlington, Virginia, United States Peraton Full timeCybersecurity Incident Analyst - Notification SpecialistPeraton is seeking a highly skilled Cybersecurity Incident Analyst - Notification Specialist to join our Federal Strategic Cyber program. As a key member of our team, you will be responsible for monitoring and reviewing multiple data sources to identify cybersecurity incidents, threats, and...
-
Cybersecurity Incident Manager
1 week ago
Arlington, Virginia, United States Farfield Systems Full timeJob OverviewFarfield Systems is seeking a highly skilled Cybersecurity Incident Manager to join our team. As a key member of our Cybersecurity and Infrastructure Protection Agency (CISA) Hunt and Incident Response Team (HIRT), you will play a critical role in assisting federal staff with a broad set of support functions.Key Responsibilities:Research and...
-
Cybersecurity Incident Manager III
2 weeks ago
Arlington, Virginia, United States Solutions³ LLC Full timeJob DescriptionSolutions³ LLC is seeking a highly skilled Cybersecurity Incident Manager III to join our team. As a key member of our cybersecurity team, you will be responsible for investigating and responding to cyber incidents, developing mitigation plans, and assisting with the restoration of services.Must be a US CitizenMust have an active TS/SCI...
-
Cybersecurity Incident Manager
2 weeks ago
Arlington, Virginia, United States Farfield Systems, Inc Full timeCybersecurity Incident ManagerFarfield Systems, Inc. is seeking a highly skilled Cybersecurity Incident Manager to join our team. As a key member of our Cybersecurity and Infrastructure Protection Agency (CISA) Hunt and Incident Response Team (HIRT), you will play a critical role in assisting our Federal staff with a broad set of support functions.Key...
-
Cybersecurity Incident Response Specialist
2 weeks ago
Arlington, Virginia, United States Nine Mind Solutions Full timeCybersecurity Incident Response SpecialistWe are seeking a highly skilled Cybersecurity Incident Response Specialist to join our team at Nine Mind Solutions. As a key member of our cybersecurity team, you will be responsible for supporting our customers in the detection, response, mitigation, and reporting of cyber threats affecting their networks.Key...
-
Cybersecurity Incident Manager
2 weeks ago
Arlington, Virginia, United States BCMC, LLC Full timeCyber Incident Manager Job DescriptionBCMC, LLC is seeking a highly skilled Cyber Incident Manager to support our U.S. Government customer in providing incident response services to civilian Government agencies and critical asset owners. As a Cyber Incident Manager, you will be responsible for investigating and resolving cyber-attacks, developing mitigation...
-
Cybersecurity Incident Response Specialist
1 week ago
Arlington, Virginia, United States BCMC, LLC Full timeWe are seeking a highly skilled Cybersecurity Incident Response Specialist to support our critical customer mission. The ideal candidate will have 5+ years of directly relevant experience in cyber incident management or cybersecurity operations.The Cybersecurity Incident Response Specialist will be responsible for correlating incident data to identify...
-
Cybersecurity Incident Manager III
2 weeks ago
Arlington, Virginia, United States Solutions³ LLC Full timeJob SummarySolutions³ LLC is seeking a highly skilled Cybersecurity Incident Manager III to join our team. As a key member of our incident response team, you will be responsible for investigating and resolving cyber-attacks, developing mitigation plans, and assisting with the restoration of services.Key Responsibilities:Correlating incident data to identify...
-
Cybersecurity Incident Management Specialist
1 week ago
Arlington, Virginia, United States Nightwing Full timeAbout the Role:Nightwing is seeking a highly skilled Cybersecurity Incident Management Specialist to support our critical customer mission. As a Cybersecurity Incident Management Specialist, you will be responsible for managing reported incidents, providing a single point of service for incident customer organizations throughout the incident life cycle of a...
-
Cybersecurity Incident Management Specialist
2 weeks ago
Arlington, Virginia, United States Nightwing Full timeCybersecurity Incident Management RoleNightwing is seeking a highly skilled Cybersecurity Incident Management Analyst to support our critical customer mission. As a key member of our team, you will be responsible for managing reported incidents, correlating incident data, and recommending defense in depth principles and practices.Responsibilities:Managing...
-
Incident Response Specialist
3 weeks ago
Arlington, Virginia, United States Solutions³ LLC Full timeJob SummarySolutions³ LLC is seeking a highly skilled Cybersecurity Incident Manager to join our team. As a key member of our cybersecurity team, you will be responsible for investigating and responding to cyber incidents, developing mitigation plans, and assisting with the restoration of services.Key ResponsibilitiesCorrelate incident data to identify...
-
Arlington, Virginia, United States Peraton Full timeJob Summary:We are seeking an experienced Cybersecurity Incident Response Specialist with OT/ICS/SCADA expertise to join our team in Arlington, VA.Responsibilities:Respond to cybersecurity incidents for ICS/OT/IT environments and provide recommendations to affected entities to prevent the reoccurrence of these incidents within a variety of critical...
-
Cybersecurity Operational Planner
2 weeks ago
Arlington, Virginia, United States Cybersecurity and Infrastructure Security Agency Full timeJob SummaryThis is a supervisory position that oversees a team of operational planners responsible for developing high-quality plans for emergent and unforeseen incidents and events. The successful candidate will have experience leading the development and maintenance of deliberate, strategic, crisis, or operational plans to support and align with...
-
Cybersecurity Specialist
1 week ago
Arlington, Virginia, United States Demo - Maximus Full timeJob SummaryWe are seeking a highly skilled Cybersecurity Specialist to join our team in Arlington, VA. As a Cybersecurity Specialist, you will play a critical role in identifying, verifying, and understanding cyber events to respond effectively and recommend mitigation strategies.Key Responsibilities:Improve the cybersecurity posture by identifying,...
-
Cybersecurity Specialist
2 weeks ago
Arlington, Virginia, United States Pantheon Data Full timeJob SummaryPantheon Data is seeking a highly skilled Cybersecurity Specialist to join our team. As a key member of our security team, you will be responsible for ensuring the security and integrity of our information systems and applications.Key ResponsibilitiesImplement security measures and best practices to protect our systems and applicationsCreate,...
Cybersecurity Incident Responder
2 months ago
Nightwing is a leading provider of full-spectrum cyber, data operations, systems integration, and intelligence mission support services to the U.S. government. With a rich history of delivering technically advanced solutions, we continue to support the nation's most mission-impacting initiatives.
Job SummaryWe are seeking a highly skilled Cybersecurity Threat Hunter to join our team. As a Cybersecurity Threat Hunter, you will be responsible for identifying and characterizing cyber threats, conducting forensic analysis, and providing recommendations to improve our cybersecurity posture.
Responsibilities- Correlate forensic findings to network events to develop an intrusion narrative
- Collect and document system state information prior to imaging, as required
- Perform forensic triage of an incident to determine scope, urgency, and potential impact
- Track and document forensic analysis from initial participation through resolution
- Coordinate with Government staff and customer personnel to validate/investigate alerts or additional preliminary findings
- Conduct analysis of forensic images and available evidence to support forensic write-ups for inclusion in reports and written products
- Assist in documenting and publishing Computer Network Defense (CND) guidance and reports pertaining to incident findings
- Characterize and analyze network traffic to identify anomalous activity and potential threats to network resources
- Coordinate with enterprise-wide cyber defense staff to validate network alerts
- Document and escalate incidents, including event history, status, and potential impact for further action
- Perform event correlation using information gathered from various sources within the enterprise to gain situational awareness and determine the effectiveness of an observed attack
- Provide daily summary reports of network/host events and activity relevant to cyber defense practices
- Receive and analyze network & host alerts from various sources within the enterprise and determine possible causes of alerts
- Provide timely detection, identification, and alerting of possible attacks/intrusions, anomalous activities, and misuse activities, and distinguish these incidents and events from benign activities
- Use cyber defense tools for continual monitoring and analysis of system activity to identify malicious activity
- Analyze identified malicious activity to determine weaknesses exploited, exploitation methods, effects on system and information
- Identify and analyze anomalies in network traffic using metadata
- Identify applications and operating systems of a network device based on network traffic
- Identify network mapping and operating system (OS) fingerprinting/other baselining activities
- Assist in the construction of signatures which can be implemented on cyber defense network tools in response to new or observed threats within the network environment or enclave
- U.S. Citizenship
- Active TS/SCI clearance
- Ability to obtain Department of Homeland Security (DHS) Entry on Duty (EOD) Suitability
- 2+ years of direct relevant experience in cyber defense analysis using leading edge technologies and industry standard cyber defense tools
- Ability to create forensically sound duplicates of evidence (forensic images)
- Ability to author cyber investigative reports documenting digital forensics findings
- Proficiency with analysis and characterization of cyber attacks
- Skilled in identifying different classes of attacks and attack stages
- Understanding of system and application security threats and vulnerabilities
- Understanding of proactive analysis of systems and networks
- Able to work collaboratively across physical locations
- Action-oriented and have a proactive approach to problem solving
- Proficiency with common operating systems (e.g., Linux/Unix, Windows)
- Experience implementing incident handling methodologies
- Proficiency with one or more of the following EDR Tools: CrowdStrike, SentinelOne, Cortex, MS MDE, or Trellix
- Proficiency with two or more of the following tools: Host forensics software (EnCase, FTK, X-Ways, Sleuth Kit/Autopsy), SIFT, Volatility, KAPE, WireShark, Splunk, Elastic
- Proficiency conducting all-source research
- BS Computer Science, Cyber Security, Computer Engineering, or related degree; or HS Diploma & 5 years of network/host investigations experience
- GCFE, GCFA, GCLD, GCPS, GCPN, GWEB, GIRD, GREM, GNFA, GCIH, GCIA, GSEC, Kubernetes Security Specialist, Microsoft 365 Certifications, Microsoft Azure Certifications, AWS Certifications, SANS Cloud Courses (SEC541, SEC584, SEC588) and Certifications GSEC (SANS401), Network+, Security+, CEH
