Cyber Defense Incident Responder
2 weeks ago
Role Title: CyberDefense Incident Responder
Location: Arlington, VA (Hybrid)
Duration: 18+ months Contract
Job Description:
The scope of this Task Order is to support Security Operations by providing support for the client's Security Response Team, Insider Threat program and select Vulnerability Assessment and Scanning tasks.
Education: BS or higher
Required Skills:
•2+ years of investigations work experience involving insider risk investigations, security incident response, technical investigations, intellectual property investigations, and/or financial fraud investigations
•3-5+ years of experience in UEBA and/or Splunk Enterprise Security
•7+ years of experience in Cyber Security domain
•Experience thriving in a heavily regulated environment
•Experience in Splunk content development and Splunk Search Processing Language (SPL)
•Knowledge of Machine Learning (Client) and how it applies to Insider Risk programs.
Preferred Skills: Splunk ES/UBA
Day-to-day Responsibilities: "•Assist in maturing an Insider Risk Program's operational support, including the development of playbooks and workflows for monitoring against potential insider risks, developing detection use cases, and conducting incident analysis.
•Implement federal government and industry standards and best practices regarding insider risk programs, including development and maintenance of OCISO programmatic gap analyses and implementation roadmaps.
•Assist in the creation of Gap Analysis on current tool usage for the Insider Risk program and make recommendations based on industry best practices and client organization.
•Develop and maintain a convergence model for insider risk mitigation that reduces risk to client's personnel and assets.
•Develop and improve insider risk modeling that leverages Splunk User Behavior and Entity Analytics (UEBA), Data Loss Prevention (DLP), Splunk Enterprise Security (ES), Microsoft Purview, Machine Learning, and automated solutions in place. "
Expected Deliverables: "•Develop and improve insider risk modeling that leverages Splunk User Behavior and Entity Analytics (UEBA), Data Loss Prevention (DLP), Splunk Enterprise Security (ES), Microsoft Purview, Machine Learning, and automated solutions in place.
•Develop and expand situational playbooks that leverage client's automated capabilities.
•Leverage excellent interpersonal skills to coordinate with client's business and technology leaders to develop and maintain programmatic solutions to insider risk.
•Lead and assist in the investigation of all incidents involving insider risk. "
-
Cyber Defense Incident Responder
2 weeks ago
Arlington, United States Ark Solutions Full timeRole Title: CyberDefense Incident Responder Location: Arlington, VA (Hybrid)Duration: 18+ months ContractJob Description: The scope of this Task Order is to support Security Operations by providing support for the client's Security Response Team, Insider Threat program and select Vulnerability Assessment and Scanning tasks. Education: BS or higher Required...
-
Cyber Incident Manager Level II
1 month ago
Arlington, United States Argo Cyber Systems Full timeJob DescriptionJob DescriptionIncident Manager Level IVARGO Cyber System is supporting a U.S. Government customer to provide support for onsite incident response to civilian Government agencies and critical asset owners who experience cyber-attacks, providing immediate investigation and resolution. Contract personnel perform investigations to characterize...
-
Deputy Cyber Incident Response Team
5 days ago
Arlington, United States Argo Cyber Systems Full timeJob DescriptionJob DescriptionDeputy Cyber Incident Response Team (CIRT) ManagerThe Deputy Cyber Incident Response Team (CIRT) Manager ensures exceptional service for managed services customers and helps drive employee engagement for CIRT staff members. They will help coordinate the daily activities of CIRT staff; orient, train, and mentor staff; monitor...
-
Deputy Cyber Incident Response Team
7 days ago
Arlington, United States Argo Cyber Systems Full timeDeputy Cyber Incident Response Team (CIRT) Manager The Deputy Cyber Incident Response Team (CIRT) Manager ensures exceptional service for managed services customers and helps drive employee engagement for CIRT staff members. They will help coordinate the daily activities of CIRT staff; orient, train, and mentor staff; monitor incident management queues;...
-
Arlington, United States Argo Cyber Systems Full timeJob DescriptionJob DescriptionArgo Cyber Systems provides remote and onsite advanced technical assistance, proactive hunting, rapid onsite incident response, and immediate investigation and resolution using host-based, network-based and cloud-based cybersecurity analysis capabilities. Team personnel provide front line response for digital forensics/incident...
-
Technical Cyber Incident Responder US REMOTE
7 days ago
Arlington, United States Jacobs Full timeYour Impact: At Jacobs, we are dedicated to pushing the boundaries of innovation and delivering exceptional solutions to our clients. As a leader in our industry, we recognize the critical importance of synergies between cybersecurity, infrastructure, data, applications, and cloud technologies in today's digital landscape. We are looking for a skilled and...
-
Incident Manager Level III
1 month ago
Arlington, United States Argo Cyber Systems Full timeJob DescriptionJob DescriptionIncident Manager Level IIARGO Cyber System is supporting a U.S. Government customer to provide support for onsite incident response to civilian Government agencies and critical asset owners who experience cyber-attacks, providing immediate investigation and resolution. Contract personnel perform investigations to characterize...
-
Incident Manager Level IV
1 month ago
Arlington, United States Argo Cyber Systems Full timeJob DescriptionJob DescriptionIncident Manager Level IVARGO Cyber System is supporting a U.S. Government customer to provide support for onsite incident response to civilian Government agencies and critical asset owners who experience cyber-attacks, providing immediate investigation and resolution. Contract personnel perform investigations to characterize...
-
Incident Manager
1 month ago
Arlington, United States Node.Digital Full timeJob DescriptionJob DescriptionIncident Manager / Cyber Incident ManagerLocation: Arlington, VAMust have Top Secret Security ClearanceNode is supporting a U.S. Government customer to provide support for onsite incident response to civilian Government agencies and critical asset owners who experience cyber-attacks, providing immediate investigation and...
-
Incident Manager
1 month ago
Arlington, United States Node.Digital Full timeIncident Manager / Cyber Incident ManagerLocation: Arlington, VAMust have Top Secret Security Clearance Node is supporting a U.S. Government customer to provide support for onsite incident response to civilian Government agencies and critical asset owners who experience cyber-attacks, providing immediate investigation and resolution. Contract personnel...
-
Cyber Network Based Systems Analyst III
2 months ago
Arlington, United States Argo Cyber Systems Full timeJob DescriptionJob DescriptionThe DHS's Hunt and Incident Response Team (HIRT) secures the Nation's cyber and communications infrastructure. HIRT provides DHS's front-line response for cyber incidents and proactively hunting for malicious cyber activity. Argo Cyber Systems supports this mission with DHS, performs HIRT investigations to develop a...
-
Cyber Network Based Systems Analyst II
2 months ago
Arlington, United States Argo Cyber Systems Full timeJob DescriptionJob DescriptionThe DHS's Hunt and Incident Response Team (HIRT) secures the Nation's cyber and communications infrastructure. HIRT provides DHS's front-line response for cyber incidents and proactively hunting for malicious cyber activity. Argo Cyber Systems supports this mission with DHS, performs HIRT investigations to develop a...
-
Incident Manager Level IV
1 month ago
Arlington, United States Argo Cyber Systems Full timeJob DescriptionJob DescriptionIncident Manager Level IVARGO Cyber Systems is supporting a U.S. Government customer to provide support for onsite incident response to civilian Government agencies and critical asset owners who experience cyber-attacks, providing immediate investigation and resolution. Contract personnel perform investigations to characterize...
-
Cyber Network Defense Analyst Level III
2 months ago
Arlington, United States Zachary Piper Solutions Full timeThe DHS’s Hunt and Incident Response Team (HIRT) secures the Nation’s cyber and communications infrastructure. HIRT provides DHS’s front-line response for cyber incidents and proactively hunting for malicious cyber activity. Zachary Piper Solutions, as a prime contractor to DHS, performs HIRT investigations to develop a preliminary diagnosis of the...
-
CyberDefense Incident Responder
2 weeks ago
Arlington, United States Nasscomm, Inc. Full time2+ years of investigations work experience involving insider risk investigations, security incident response, technical investigations, intellectual property investigations, and/or financial fraud investigations3-5+ years of experience in UEBA and/or Splunk Enterprise Security7+ years of experience in Cyber Security domainExperience thriving in a heavily...
-
Cyber Network Defense Analyst Ii
1 week ago
Arlington, United States Dhara Consulting Group Full timeToday - Dept of Homeland Security - Unspecified - Unspecified - IT - Hardware - Arlington, VA** (ON-SITE/OFFICE)** **Date Posted**: 2024-04-05 **Country**: United States of America **Location**: VA149: 1110 N Glebe Road Arlington 1110 North Glebe Road Suite 630, Arlington, VA, 22201 USA **Position Role Type**: Hybrid You have been redirected to RTX's career...
-
Cyber Incident Manager with Security Clearance
1 month ago
Arlington, United States MicroSys LLC Full timePROGRAM DESCRIPTION:The DHS’s Hunt and Incident Response Team (HIRT) secures the Nation’s cyber and communications infrastructure. HIRT provides DHS’s front line response for cyber incidents and proactively hunting for malicious cyber activity. MicroSys performs HIRT investigations to develop a preliminary diagnosis of the severity of breaches....
-
Cyber Incident Manager with Security Clearance
1 month ago
Arlington, United States Base One Technologies Full timeWork Location: Arlington VA Cyber Incident Manager Responsibilities:Researching and compiling known resolution steps or workarounds to enable mitigation of potential Computer Network Defense incidents within the enterpriseApplying knowledge of the tactics, techniques, and procedures of various criminal, insider, hacktivist, and nation state threat actors to...
-
Cyber Network Based Systems Analyst IV
2 months ago
Arlington, United States Argo Cyber Systems Full timeJob DescriptionJob DescriptionArgo Cyber Systems provides remote and onsite advanced technical assistance, proactive hunting, rapid onsite incident response, and immediate investigation and resolution using host-based, network-based and cloud-based cybersecurity analysis capabilities. Team personnel provide front line response for digital forensics/incident...
-
Cyber Security Incident Responder
3 weeks ago
Arlington, United States Node.Digital Full timeCyber Security Incident Responder/ Information System Security Analyst Location: Arlington, VAMust have Top Secret Security Clearance Node is supporting a U.S. Government customer on a large mission-development and sustainment program to design, build, deliver, and operate a network operations environment; including introducing new cyber capabilities to...