Cyber Defense Incident Responder

1 week ago


Washington, Washington, D.C., United States Z FEDERAL Full time
Job Summary

Z FEDERAL is seeking a highly skilled Cyber Defense Incident Responder to support a full range of cyber security services on a contract in Washington DC. The position is full-time/permanent and will support a U.S. Government civilian agency.

Key Responsibilities:

  • Develop content for cyber defense tools.
  • Characterize and analyze network traffic to identify anomalous activity and potential threats to network resources.
  • Coordinate with enterprise-wide cyber defense staff to validate network alerts.
  • Ensure that cybersecurity-enabled products or other compensating security control technologies reduce identified risk to an acceptable level.
  • Document and escalate incidents (including event's history, status, and potential impact for further action) that may cause ongoing and immediate impact to the environment.
  • Perform cyber defense trend analysis and reporting.
  • Perform event correlation using information gathered from a variety of sources within the enterprise to gain situational awareness and determine the effectiveness of an observed attack.
  • Perform security reviews and identify security gaps in security architecture resulting in recommendations for inclusion in the risk mitigation strategy.
  • Identify and analyze anomalies in network traffic using metadata.
  • Conduct research, analysis, and correlation across a wide variety of all source data sets (indications and warnings).

Requirements:

  • Bachelors Degree.
  • 1-3 years' experience in Introductory information assurance, networks, sensor operations, network/data analysis, packet capture analysis, hunts methodologies, intelligence analysis.
  • Certifications addressing new attack vectors (emphasis on cloud computing technology, mobile platforms and tablet computers), new vulnerabilities, existing threats to operating environments.
  • Strong written and verbal communication skills.
  • Ability to interpret the information collected by network tools (e.g., Nslookup, Ping, and Traceroute).
  • Knowledge of host/network access control mechanisms (e.g., access control list, capabilities lists).
  • Knowledge of vulnerability information dissemination sources (e.g., alerts, advisories, errata, and bulletins).
  • Knowledge of incident response and handling methodologies.
  • Knowledge of front-end collection systems, including traffic collection, filtering, and selection.
  • Experience with system administration, network, and operating system hardening techniques.
  • Knowledge of cyber defense and information security policies, procedures, and regulations.
  • Knowledge of the common attack vectors on the network layer.
  • Knowledge of different classes of attacks (e.g., passive, active, insider, close-in, distribution attacks).
  • In-depth understanding of cyber attackers (e.g., script kiddies, insider threat, non-nation state sponsored, and nation sponsored).
  • Knowledge of various types of network communication (e.g., LAN, WAN, MAN, WLAN, WWAN).
  • Knowledge of file extensions (e.g., .dll, .bat, .zip, .pcap, .gzip).
  • Knowledge of front-end collection systems, including traffic collection, filtering, and selection.

Preferred Experience:

  • Experience in detecting host and network-based intrusions via intrusion detection technologies (e.g., Snort).
  • Ability to analyze malware, conduct vulnerability scans, and recognize vulnerabilities in security systems.
  • Skill in determining how a security system should work (including its resilience and dependability capabilities) and how changes in conditions, operations, or the environment will affect these outcomes.
  • Experience evaluating the adequacy of security designs.
  • Skill in using incident handling methodologies.
  • Ability to apply techniques for detecting host and network-based intrusions using intrusion detection technologies.
  • Experience with using protocol analyzers and collecting data from a variety of cyber defense resources.
  • Experience reading and interpreting signatures (e.g., snort).
  • Experience with assessing security controls based on cybersecurity principles and tenets. (e.g., CIS CSC, NIST SP 800-53, Cybersecurity Framework, etc.)
  • Ability to accurately and completely source all data used in intelligence, assessment and/or planning products.
  • Ability to apply cybersecurity and privacy principles to organizational requirements (relevant to confidentiality, integrity, availability, authentication, non-repudiation).

Z FEDERAL is a professional services firm located in Greenbelt, MD. Founded in 1983 to provide IT and management consulting services to the Federal Government, we have established a proven track record of reliable performance in the Federal marketplace. Z FEDERAL has a history of long-term commitment to our Federal customers and our employees.

Z FEDERAL offers:

  • Ownership via ESOP.
  • Self-directed 401K and annual company match.
  • Up to four weeks of paid time off (PTO).
  • 11 paid federal holidays.
  • Other forms of leave such as bereavement, jury duty, military leave.
  • Full Health Benefits: Medical and Vision, Dental (employee-paid).
  • Life Insurance.
  • Short and Long Term Disability, AD&D Insurance.
  • Flexible Spending Account (Medical and Dependent Care).
  • Performance-based bonuses.
  • Tuition Reimbursement.
  • Incentive and referral bonuses.
  • Commuter benefits.
  • Professional Development and Training.
  • Years of Service Reward and Recognition Program.

Z FEDERAL's commitment to employee growth and development is proven and valued by our staff. We want our employees to excel, grow professionally and take on increasingly responsible roles.



  • Washington, Washington, D.C., United States ECS Limited Full time

    Cyber Defense Incident Responder - SeniorECS Limited is seeking a highly skilled Cyber Defense Incident Responder - Senior to join our team in Washington, DC. As a key member of our Cybersecurity team, you will be responsible for leading, facilitating, and advising on the Incident Response lifecycle across the Bureau of the Census within the Department of...


  • Washington, Washington, D.C., United States ECS Limited Full time

    Cyber Defense Incident Responder - SeniorECS Limited is seeking a highly skilled Cyber Defense Incident Responder - Senior to join our team in Washington, DC. As a key member of our Cybersecurity team, you will be responsible for leading, facilitating, and advising on the Incident Response lifecycle across the Bureau of the Census within the Department of...


  • Washington, Washington, D.C., United States ECS Limited Full time

    Job Title: Cyber Defense Incident Responder - SeniorJob Summary:ECS Limited is seeking a highly skilled Cyber Defense Incident Responder - Senior to join our team in Washington, DC. As a key member of our Cybersecurity team, you will be responsible for leading, facilitating, and advising on the Incident Response lifecycle across the Bureau of the Census...


  • Washington, Washington, D.C., United States Powder River Industries LLC Full time

    Mission:To create a robust digital defense system that safeguards our customers' assets, employees, and customers from cyber threats.Reduce cyber risk and the time it takes to detect and respond to cyber threats.Key Responsibilities:Establishes cyber incident response direction for the organization and cyber defense operations.Manages the cybersecurity...


  • Washington, Washington, D.C., United States Powder River Industries LLC Full time

    Mission:To safeguard our customers' assets, employees, and customers by creating a state of digital resilience and safety that supports their ability to anticipate, absorb, adapt, and rapidly recover from a cybersecurity incident.Reduce cyber risk and the time it takes to detect and respond to cyber threats.Key Responsibilities:Establishes cyber incident...


  • Washington, Washington, D.C., United States AGS Cyber Full time

    Defensive Security Analyst OpportunityAGS Cyber is seeking a skilled Defensive Security Analyst to join their team in Washington D.C. area. This role will support the Security Operations Center and require expertise in SOC Monitoring, SIEM / EDR maintenance, Incident Response, Digital Forensics, and Threat Hunting.Key Responsibilities:Monitor and analyze...


  • Washington, Washington, D.C., United States 00100 LEIDOS, INC. Full time

    Job Title: Cyber Network Defense AnalystLeidos is seeking a highly skilled Cyber Network Defense Analyst to join our team. As a Cyber Network Defense Analyst, you will be responsible for monitoring and detecting cyber threats, analyzing network traffic, and providing incident response and remediation services.Key Responsibilities:Monitor and analyze network...


  • Washington, Washington, D.C., United States Secure Innovations LLC Full time

    About Secure Innovations LLCSecure Innovations LLC is a leading provider of cybersecurity services, dedicated to helping organizations protect their networks and systems from cyber threats. We are seeking a highly skilled Cyber Defense Analyst to join our team.Job SummaryThe Cyber Defense Analyst will be responsible for monitoring network activity, analyzing...

  • Cyber Defense Analyst

    2 weeks ago


    Washington, Washington, D.C., United States Chenega Corporation Full time

    Job Title: Intermediate Cyber Defense AnalystChenega Corporation is seeking a highly skilled Intermediate Cyber Defense Analyst to join our team. As a key member of our cybersecurity team, you will be responsible for analyzing and mitigating cyber threats to our systems and networks.Responsibilities:Monitor and analyze network traffic to identify potential...

  • Cyber Defense Analyst

    4 weeks ago


    Washington, Washington, D.C., United States Chenega Corporation Full time

    Job Title: Intermediate Cyber Defense AnalystChenega Corporation is seeking a highly skilled Intermediate Cyber Defense Analyst to join our team. As a key member of our cybersecurity team, you will be responsible for analyzing and mitigating cyber threats to our systems and networks.Responsibilities:Provide timely detection, identification, and alerting of...


  • Washington, Washington, D.C., United States 00100 LEIDOS, INC. Full time

    Cyber Network Defense Analyst Job DescriptionLeidos is seeking a highly skilled Cyber Network Defense Analyst to join our team in a critical role that requires expertise in network security monitoring and detection, threat analysis, and incident response.Key Responsibilities:Monitor and analyze network traffic for security threats and anomaliesInvestigate...


  • Washington, Washington, D.C., United States Leidos Full time

    Cyber Network Defense Analyst Job DescriptionLeidos is seeking a highly skilled Cyber Network Defense Analyst to join our team on a highly visible cyber security single-award IDIQ vehicle that provides Network Operations Security Center (NOSC) support, cyber analysis, application development, and 24x7x365 support staff.Job SummaryThe Network Operations...


  • Washington, Washington, D.C., United States Secure Innovations LLC Full time

    Cyber Defense Analyst Job DescriptionSecure Innovations LLC is seeking a highly skilled Cyber Defense Analyst to join our team. As a Cyber Defense Analyst, you will play a critical role in monitoring network activity, analyzing data for anomalous behavior, and identifying potential security threats.Key Responsibilities:Monitor network activity and analyze...


  • Washington, Washington, D.C., United States Critical Solutions Full time

    Cyber Incident Response Analyst Job DescriptionCritical Solutions is seeking a highly skilled Cyber Incident Response Analyst to join our team. As a key member of our Security Operations Center, you will be responsible for monitoring enterprise networks and systems, detecting events, and reporting on any and all threats directed against those systems.You...

  • Cyber Defense Lead

    2 weeks ago


    Washington, Washington, D.C., United States Customer Value Partners Full time

    Job OverviewCyber Defense LeadCyber Value Partners (CVP) is seeking a seasoned Cyber Defense Lead to spearhead the implementation of a comprehensive Cybersecurity program. This individual will lead a team of 10+ Cyber Defense professionals in executing activities related to Security Operations Center (SOC), incident response, security tool administration,...


  • Washington, Washington, D.C., United States Critical Solutions Full time

    Cyber Incident Response Analyst Job DescriptionCritical Solutions is seeking a highly skilled Cyber Incident Response Analyst to join our team. As a Cyber Incident Response Analyst, you will be responsible for monitoring enterprise networks and systems, detecting events, and reporting on any and all threats that are directed against those systems.You will be...


  • Washington, Washington, D.C., United States Chenega Corporation Full time

    Senior Cyber Defense Forensic AnalystChenega Corporation is seeking a highly skilled Senior Cyber Defense Forensic Analyst to join our team. As a key member of our Cybersecurity team, you will be responsible for examining digital media in a forensically sound manner to identify, preserve, recover, analyze, and present facts and opinions about digital...


  • Washington, Washington, D.C., United States Joint Enterprise Technologies Full time

    Job Title: Cyber Incident Detector TS/SCI ClearanceAbout Joint Enterprise TechnologiesJoint Enterprise Technologies is a Service-Disabled Veteran-Owned Small Business dedicated to providing cutting-edge solutions to the nation's most pressing security challenges. Our team of experts is committed to excellence in service through diversity employment and is...


  • Washington, Washington, D.C., United States Leidos Full time

    Cyber Network Defense AnalystLeidos is seeking a highly skilled Cyber Network Defense Analyst to join our team in a critical role that requires expertise in network security monitoring and detection. The successful candidate will be responsible for proactively searching for threats, inspecting traffic for anomalies, and investigating and analyzing logs to...


  • Washington, Washington, D.C., United States Critical Solutions Full time

    Job DescriptionCritical Solutions is seeking a highly skilled Cyber Incident Response Analyst to join our team. As a key member of our incident response team, you will be responsible for responding to and investigating cybersecurity incidents, working closely with cross-functional teams to identify and mitigate threats, and developing and implementing...