Current jobs related to Cybersecurity Expert for Threat Detection and Response - Ashburn, Virginia - Leidos Holding


  • Ashburn, Virginia, United States Leidos Full time

    About LeidosAt Leidos, we are passionate about delivering innovative solutions that make a real difference in the lives of others. Our team of experts is dedicated to helping organizations protect themselves against cyber threats and stay ahead of the curve.Job DescriptionWe are currently seeking a highly skilled Threat Detection Engineer to join our team....

  • Threat Detection Expert

    46 seconds ago


    Ashburn, Virginia, United States Leidos Full time

    About the RoleWe are looking for a highly skilled threat detection expert to join our team. The ideal candidate will have a strong background in cybersecurity and a proven track record of success in identifying and mitigating cyber threats.The successful candidate will be responsible for developing custom content within the Splunk SIEM using advanced SPL...


  • Ashburn, Virginia, United States Leidos Full time

    The CBP SOC is responsible for protecting CBP Enterprise-wide information systems from cyber threats.We are looking for a skilled Malicious Activity Investigator who will be responsible for conducting in-depth technical analysis of network and endpoint logs & activity, executing various types of cyber threat hunts on various agency assets, escalating...


  • Ashburn, Virginia, United States Leidos Full time

    The Leidos team is seeking an Advanced Threat Detection Specialist to join our Cyber Security Operations Center (SOC). As a key member of our team, you will play a vital role in detecting, analyzing, and responding to advanced cyber threats targeting our clients' critical infrastructure.Responsibilities:Develop and maintain comprehensive threat models to...


  • Ashburn, Virginia, United States Leidos Full time

    Cybersecurity Intelligence Lead Job SummaryThe Leidos company is seeking a highly skilled Cybersecurity Intelligence Lead to join our team. This role will be responsible for leading cyber threat hunt missions, analyzing host and network logs, and developing scripts to support cyber threat detection.The ideal candidate will have a strong background in...


  • Ashburn, Virginia, United States Leidos Full time

    Our team is looking for a skilled Cyber Threat Hunt Analyst to help us identify and mitigate potential security threats. As a key member of our team, you will be responsible for analyzing network and endpoint logs, conducting threat hunts, and providing recommendations for mitigating potential threats. Your expertise in cybersecurity will be crucial in...


  • Ashburn, Virginia, United States Critical Solutions Full time

    About the RoleCritical Solutions is seeking an Advanced Security Threat Analyst to join our team and support our federal customer in Ashburn, VA.The ideal candidate will have extensive experience in threat detection and incident response, with a strong background in cybersecurity methodologies and processes. The role requires proactively searching for...


  • Ashburn, Virginia, United States Leidos Full time

    At Leidos, we are seeking an experienced Cyber Threat Hunt Specialist to join our team in the U.S. Department of Homeland Security (DHS), Customs and Border Protection (CBP) Security Operations Center (SOC).The CBP SOC is responsible for the overall security of CBP Enterprise-wide information systems, and collects, investigates, and reports any suspected and...


  • Ashburn, Virginia, United States Leidos Full time

    About the RoleWe are seeking an experienced Cyber Threat Hunt Analyst to join our team. As a member of this highly technical Cyber Threat Hunt team, you will be responsible for in-depth technical analysis of network and endpoint logs & activity, executing various types of cyber threat hunts on various agency assets, escalating findings as deemed appropriate,...


  • Ashburn, Virginia, United States Leidos Full time

    Cyber Threat Hunt Security Specialist Job DescriptionThe Leidos company is looking for a highly skilled Cyber Threat Hunt Security Specialist to join our team. This role will be responsible for planning and executing threat hunt missions, analyzing host and network logs, and developing scripts to support cyber threat detection.The ideal candidate will have a...


  • Ashburn, Virginia, United States Leidos Full time

    About the Role: As a Cyber Threat Analyst, you will be responsible for identifying, analyzing, and mitigating cyber threats to CBP networks. You will work closely with a team of experts to prevent, identify, contain and eradicate cyber threats. Key Qualifications: Bachelor's Degree in Computer Science or related field.2-4 years of experience in incident...


  • Ashburn, Virginia, United States Critical Solutions Full time

    ResponsibilitiesCreate detailed threat models to identify defensive gaps and prioritize mitigationsDevelop and maintain SOPs, playbooks, and work instructionsUtilize threat intelligence and threat models to create threat hypothesesPlan and scope threat hunt missions to verify threat hypothesesProactively search through systems and networks to detect advanced...


  • Ashburn, Virginia, United States Leidos Full time

    About LeidosLeidos is a leading provider of advanced technology, engineering, and cyber solutions to the US Government. We are seeking an experienced cybersecurity professional to join our team as a Senior Threat Detection Engineer.Job OverviewThe Senior Threat Detection Engineer will be responsible for developing and implementing advanced threat detection...


  • Ashburn, Virginia, United States Leidos Full time

    About LeidosLeidos is a leader in the development of advanced technologies, engineering, and cyber solutions for the US Government. We are committed to delivering innovative solutions that meet the evolving needs of our clients and stay ahead of the curve.Job DescriptionWe are seeking a highly skilled Cybersecurity Solutions Developer to join our team. As a...


  • Ashburn, Virginia, United States Leidos Full time

    Job Overview:The Leidos Digital Modernization Team is seeking a seasoned cyber security expert to lead our highly visible Cyber Security Operations Center (SOC) for U.S. Customs and Border Protection (CBP). As a senior leader, you will be responsible for managing day-to-day operations of the team, coordinating efforts, leading by example, and performing...


  • Ashburn, Virginia, United States Leidos Full time

    Job DescriptionWe are seeking a highly skilled Cybersecurity Threat Analyst to join our team at Leidos. As a key member of our security operations center, you will be responsible for preventing, identifying, containing and eradicating cyber threats to our networks through monitoring, intrusion detection and protective security services.Key Responsibilities:-...


  • Ashburn, Virginia, United States Leidos Full time

    Job DescriptionWe are seeking an experienced cybersecurity specialist to join our team. The ideal candidate will have a strong background in threat detection and a proven track record of success in identifying and mitigating cyber threats.The successful candidate will be responsible for proactively searching for threats, inspecting traffic for anomalies, and...


  • Ashburn, Virginia, United States Leidos Full time

    Job Responsibilities:Leidos seeks a highly skilled Cyber Threat Intelligence Specialist to join our team.This role involves developing threat models, utilizing threat intelligence and threat models to create threat hypotheses, and leading cyber threat hunt missions with minimal supervision or guidance.Primary Responsibilities:Develop threat models to...


  • Ashburn, Virginia, United States Leidos Full time

    The U.S. Department of Homeland Security (DHS), Customs and Border Protection (CBP) Security Operations Center (SOC) is a trusted partner in preventing, identifying, containing, and eradicating cyber threats to CBP networks through monitoring, intrusion detection, and protective security services.Key Responsibilities:Create detailed threat models to better...


  • Ashburn, Virginia, United States Leidos Full time

    As a Cyber Threat Intelligence Analyst at Leidos, you will play a critical role in supporting federal customers within the security operations. Your expertise in cyber security and ability to identify, track, and investigate high-priority threat campaigns will be essential in enhancing cyber security posture.Job Description:Support security operations during...

Cybersecurity Expert for Threat Detection and Response

2 weeks ago


Ashburn, Virginia, United States Leidos Holding Full time
Job Description

We are seeking a highly skilled Cybersecurity Expert to join our team as a Senior SOC Analyst. In this role, you will be responsible for detecting and responding to cybersecurity threats in real-time.

Key Responsibilities:

  • Coordinate investigation and response efforts throughout the Incident Response lifecycle.
  • Correlate and analyze events and data to determine the scope of cyber incidents.
  • Acquire and analyze endpoint and network artifacts, volatile memory, malicious files/binaries, and scripts.
  • Recognize attacker tactics, techniques, and procedures as potential indicators of compromise (IOCs) that can be used to improve monitoring, analysis, and Incident Response.
  • Develop, document, and maintain Incident Response processes, procedures, workflows, and playbooks.
  • Tune and maintain security tools (EDR, IDS, SIEM, etc.) to reduce false positives and improve SOC detection capabilities.
  • Document Investigation and Incident Response actions taken in Case Management Systems and prepare formal Incident Reports.
  • Create metrics and determine Key Performance Indicators to drive maturity of SOC operations.
  • Develop security content such as scripts, signatures, and alerts.
Requirements

Our ideal candidate will have:

  • Experience in an information technology field with a minimum of 10 years of experience in the areas of incident detection and response, malware analysis, or computer forensics.
  • Bachelor's degree in IT or related field or equivalent experience.
  • 10+ years as a SOC analyst or similar work roles.
  • In-depth knowledge of each phase of the Incident Response life cycle.
  • Expertise of Operating Systems (Windows/Linux) operations and artifacts.
  • Understanding of Enterprise Network Architectures to include routing/switching, common protocols (DHCP, DNS, HTTP, etc.), and devices (Firewalls, Proxies, Load Balancers, VPN, etc.).
  • Ability to recognize suspicious activity/events, common attacker TTPs, and perform logical analysis and research to determine root cause and scope of Incidents.
  • Be familiar with Cyber Kill Chain and have utilized the ATT&CK Framework.
  • Have scripting experience with Python, PowerShell, and/or Bash.
  • Ability to independently prioritize and complete multiple tasks with little to no supervision.
  • Flexible and adaptable self-starter with strong relationship-building skills.
  • Strong problem-solving abilities with an analytic and qualitative eye for reasoning.
  • Candidates must be able to obtain a CISA certification.
  • Must have at least one of the following certifications: GCIH, GCFA, GCFE, GREM, GISF, GXPN, GWEB, GNFA, OSCP, OSCE, OSEE, CCFP, CISSP, CCNO, CEH, LPT, SCSA, ENSA, ECIH, ECSS, ECES, CIRC.