Job Number: R0020785
Incident Response Analyst, Mid
Serve as an incident response analyst in a 24/7 365 security operations center and maintain responsibility for identifying and responding to security threats. Maintain responsibility for initial incident detection and response. Leverage knowledge of computer and network architecture to provide initial triage and identification of malicious activity. Use a combination of open source research, network and host-based forensic analysis, log review and correlation, and network analysis to detect and respond to cyber threats.
-5+ years of experience in a technical information security role
-Experience with working in a Computer Incident Response Team (CIRT), Computer Security Incident Response Center (CSIRC), or Security Operations Center (SOC)
-Knowledge of host and network log sources to apply to investigation and IR methodology in investigations
-Knowledge of networking, intrusion analysis, infection vector identification, and forensics
-Ability to learn and adapt quickly and work as a team player to analyze activity on a complex network and its end points with the goal of protecting the confidentiality, integrity, and availability of systems and data
-TS/SCI clearance with a polygraph
-BA or BS degree in IT, CS, or Cyber
-Experience with cyber investigations or cyber threat intelligence
-Experience with a common scripting or programming language, including Perl, Python, Bash, or PowerShell
-Experience with tools that include Splunk, ArcSight, and Wireshark
-Active Certified Ethical Hacker (CEH), Certified Information Systems Security Professional (CISSP), GIAC Certified Incident Handler (GCIH), GIAC Reverse Engineering Malware (GREM), GIAC Certified Forensic Examiner (GCFE), or GIAC Certified Forensic Analyst (GCFA) Certification
Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information; TS/SCI clearance with polygraph is required.
We're an EOE that empowers our people—no matter their race, color, religion, sex, gender identity, sexual orientation, national origin, disability, veteran status, or other protected characteristic—to fearlessly drive change.
Apply on company website