Sign Up Sign Up Log In Sign Up
This job has expired and you can't apply for it anymore. Start a new search.

Incident Response Analyst, Mid

Job Number: R0072980

Incident Response Analyst, Mid

Key Role:

Serve as an incident response analyst in a security operations center and maintain responsibility for identifying and responding to security threats. Leverage expertise in computer and network architecture to provide advance analysis and identification of malicious activity.

Use a combination of open and closed source research, network, and host-based forensic analysis, log review and correlation, and network analysis to detect and respond to Cyber threats.

Basic Qualifications:

-1+ years of experience with working in a Computer Incident Response Team (CIRT), Cyber Threat (CT), Computer Security Incident Response Center (CSIRC), or Security Operations Center (SOC) environment

-Experience with performing host or network incident response, malware analysis, or digital forensic work

-Knowledge of host and network log sources to apply to investigations, incident response (IR) methodologies in investigations, and the groups behind targeted attacks and their tactics, techniques, and procedures (TTPs)

-Ability to pay strict attention to detail, display critical thinking and logic, and solution orientation to learn and adapt quickly

-Ability to learn and adapt quickly and work as a team player to analyze activity on a complex network and its endpoints to protect the confidentiality, integrity, and availability of systems and data

-Top Secret clearance

-HS diploma or GED

Additional Qualifications:

-Experience with Cyber investigations or Cyber threat intelligence

-Experience with common scripting or programming language, including Perl, Python, Bash, or PowerShell

-Experience with tools, including Splunk, ArcSight, Palantir, and Wireshark

-TS/SCI clearance

-Active Certified Ethical Hacker (CEH), Certified Information Systems Security Professional (CISSP), GIAC Certified Incident Handler (GCIH), GIAC Reverse Engineering Malware (GREM), GIAC Certified Forensic Examiner (GCFE), or GIAC Certified Forensic Analyst (GCFA) Certification


Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information; Top Secret clearance is required.

We’re an EOE that empowers our people—no matter their race, color, religion, sex, gender identity, sexual orientation, national origin, disability, veteran status, or other protected characteristic—to fearlessly drive change.

Company Name:
Security Clearance:
Top Secret / SCI
Washington, District of Columbia
United States
Not Specified
Job Number:

Send me email alerts for similar jobs