-
Incident Response Analyst
2 days ago
MindPoint Group Washington, United StatesMindPoint Group is seeking a Security Operations Center (SOC) Analyst that will collaborate with members of the SOC team to improve procedures for the SOC to enhance coordination and incident response operations. You must be willing to work in a 24x7x365 SOC environment demonstra ...
-
Incident Response Analyst
3 days ago
MindPoint Group Washington, United StatesMindPoint Group is seeking a Tier 2 Incident Response Analyst to support threat monitoring, detection, event analysis, and incident reporting. The Security Operations Center is a 24/7 environment. You will be responsible for monitoring enterprise networks and systems, detecting e ...
-
MindPoint Group Washington, United StatesText code IRAWD to to apply · MindPoint Group delivers industry-leading cybersecurity solutions, services, and products. We are trusted cybersecurity advisors to key government and commercial decision-makers and support security operations for some of the most security-conscious ...
-
Incident Response Analyst
1 week ago
XOR Security Arlington, United StatesJob Title: · Incident Response Analyst · Location: · 1110 N. Glebe Rd. Arlington, Virginia 22201 · Clearance Level: · Top Secret · SUMMARY: · XOR Security, An Agile Defense Company is currently seeking an · Incident Response Analyst · with advanced skillsets in Digital F ...
-
Incident Response Analyst
2 days ago
XOR Security Arlington, United StatesJob Title: Incident Response Analyst · Location: 1110 N. Glebe Rd. Arlington, Virginia 22201 · Clearance Level: Top Secret · SUMMARY: · XOR Security, An Agile Defense Company is currently seeking an Incident Response Analyst with advanced skillsets in Digital Forensic & Incid ...
-
Detection and Response Analyst
1 hour ago
Rapid7 Arlington, United States Full timeDetection & Response Analyst · We are looking for people with a passion for investigation and forensic analysis to join our MDR SOC team at Rapid7. As a Detection & Response Analyst, you will utilize Rapid7's advanced tools to investigate and triage security events and work side- ...
-
Incident Response Analyst
2 days ago
Computer World Services (CWS)Corporation Washington DC, United States· Job Description · The mission of the OFR is to support the Financial Stability Oversight Council (FSOC) in promoting financial stability by: collecting data on behalf of FSOC; providing such data to FSOC and member agencies; standardizing the types and formats of data report ...
-
Financial Analyst, Audit Response
6 days ago
Na Oiwi Kane Quantico, United States**Job Title**:Financial Analyst, Audit Response · **Location**:Quantico, Virginia · **Security Clearance**: T1/NACI · **Introduction**: · Rivet Operations Company has an opening for a detail-oriented Financial Analyst to join the DoD's premier Audit Response team in the Quantico, ...
-
Financial Analyst, Audit Response
1 week ago
Na Oiwi Kane Quantico, United States**Job Title**:Financial Analyst, Audit Response · **Location**:Quantico, Virginia · **Security Clearance**: T1/NACI · **Introduction**: · Rivet Operations Company has an opening for a detail-oriented Financial Analyst to join the DoD's premier Audit Response team in the Quantico, ...
-
Cyber Incident Response Analyst
1 day ago
Leidos Ashburn, United States**Description** · Our Security Operations Center (SOC) Support Services is a US Government program responsible to monitor, detect, analyze, mitigate, and respond to cyber threats and adversarial activity on the government Enterprise. We have primary responsibility for monitoring ...
-
Cyber Incident Response Analyst
2 weeks ago
Peraton Arlington, United StatesResponsibilities: · Peraton is currently hiring a Cyber Incident Response Analyst for its' Federal Strategic Cyber sector. · Location: On-site, Arlington, VA · In this role, you will have the following duties: · Identify, log, categorize, perform initial triage, assign to ot ...
-
Cyber Incident Response Analyst
2 days ago
Peraton Arlington, United States Full timeResponsibilities · Peraton is currently hiring a Cyber Incident Response Analyst for its' Federal Strategic Cyber sector. · Location: Arlington, VA - on-site. · Full-time, Weekends Shift · In this role: Duties include ingesting, identifying, logging, categorizing, performing in ...
-
Cyber Incident Response Analyst
1 day ago
Peraton Arlington, United States Full timeResponsibilities · Peraton is currently hiring a Cyber Incident Response Analyst for its' Federal Strategic Cyber sector. · Location: On-site, Arlington, VA · In this role, you will have the following duties:Identify, log, categorize, perform initial triage, assign to other team ...
-
Incident Response Analyst
6 days ago
Computer World Services (CWS)Corporation Washington, United States OTHER· Job Description · The mission of the OFR is to support the Financial Stability Oversight Council (FSOC) in promoting financial stability by: collecting data on behalf of FSOC; providing such data to FSOC and member agencies; standardizing the types and formats of data reporte ...
-
Base One Technologies Arlington, United StatesRequired Education/Experience · BS degree in Science, Technology, Engineering, Math or related field and 8+ years of prior relevant experience with a focus on cybersecurity OR Masters with 4-6 years of prior relevant experience. Primary Responsibilities · Our govt client has an i ...
-
Cyber Incident Response Analyst
1 day ago
RedTrace Technologies Inc Washington, United StatesJob Description · Job DescriptionSECURITY CLEARANCE REQUIREMENT: TS, WITH SCI ELIGIBILITY · ***POSITION REQUIRES US CITIZENSHIP*** · Company Overview: As a Cybersecurity, Information Technology, and Management Consulting firm focused on assisting our commercial and U.S. Intellige ...
-
Incident Response Analyst
3 days ago
Edgewater Federal Solutions Bethesda, United StatesOverview: · Edgewater is seeking an Incident Response Analyst to provide support to an Edgewater Federal government contract. · Responsibilities: · As a Incident Response Analyst, you and team will be responsible for: · Manning a 24x7x365 cybersecurity operations center and r ...
-
Incident Response Analyst with OT/ICS/SCADA
1 week ago
Peraton Arlington, United StatesAbout Peraton Peraton is a next-generation national security company that drives missions of consequence spanning the globe and extending to the farthest reaches of the galaxy. As the world's leading mission capability integrator and transformative enterprise IT provider, we deli ...
-
Incident Response Analyst with OT/ICS/SCADA
1 week ago
Peraton Arlington, United StatesAbout Peraton Peraton is a next-generation national security company that drives missions of consequence spanning the globe and extending to the farthest reaches of the galaxy. As the world's leading mission capability integrator and transformative enterprise IT provider, we deli ...
-
Incident Response Analyst with OT/ICS/SCADA
1 week ago
Peraton Arlington, United StatesResponsibilities · Peraton is currently seeking an experienced Incident Response Analyst with OT/ICS/SCADA experience for its' Federal Strategic Cyber program in Arlington, VA. · Location: On-site role in Arlington, VA. Ideal candidate needs to be amenable to travel, approximate ...
Detection and Response Analyst - Arlington, United States - Knewin
Description
Detection & Response AnalystWe are looking for people with a passion for investigation and forensic analysis to join our MDR SOC team at Rapid7.
As a Detection & Response Analyst, you will utilize Rapid7's advanced tools to investigate and triage security events and work side-by-side Rapid7's Incident Response Consultants to investigate incidents ranging from commodity malware to sophisticated threat actors.
About the TeamRapid7's Managed Detection and Response (MDR) team is built from the ground up to bring motivated and passionate security talent face to face with emerging threats, practical challenges, and evil at scale.
Our MDR service uses an impact-driven mindset to focus efforts on effective solutions, encouraging personal and technical innovation within the SOC.
MDR provides 24/7/365 monitoring, threat hunting, incident response, and more with a focus on endpoint detection and behavioral intelligence.About the Role
As a Detection and Response Analyst in Rapid7's SOC, you will be responsible for identifying and analyzing malicious activity in a multitude of customer environments.
You will be enabled to complete investigations scaling in complexity from account compromises and commodity malware infections, to complex web server compromises and zero-day vulnerability exploitation.
Your Customer Advisor colleagues will be responsible for direct communication with the customers, enabling you to dedicate your efforts to analysis.
Your team will be available to answer questions, provide guidance, and assist you in investigations, if needed.In this role, you will:
Utilize Rapid7's world-class software and threat intelligence to identify potential compromises in customer environments as necessary.
Conduct investigations into a variety of malicious activity on workstations, servers, and in the cloud.
You will investigate all levels of incidents, including Incident Response engagements in which you will provide analysis assistance to Rapid7's Incident Response Consultants.
Write Incident Reports for each minor incident investigation you complete, which follow MITRE's ATT&CK Framework and include your own forensic, malware, and root-cause analysis.
Communicate with other analysts to share new intelligence regarding tactics, techniques, and trends utilized by threat actors.
Provide continuous input to Rapid7's Threat Intelligence and Detection Engineering team regarding new detection opportunities.
Assist in customer engagement opportunities pertaining to the function of your role in the MDR service as necessary.
The skills you'll bring include:
1-2 years of experience in a cybersecurity related position (SOC and/or SIEM analysis experience preferred)
Understanding of core operating system concepts in Windows, MacOS/Darwin, and Linux. This includes at least an understanding of common internal system tools and directory structures.
A fundamental understanding of how threat actors utilize tactics such as lateral movement, privilege escalation, defense evasion, persistence, command and control, and exfiltration.
Practical experience gained through CTF and HTB challenges, as well as personal or professional usage of common penetration testing tools such as Mimikatz, Metasploit modules, BloodHound, etc.
Passion for continuous learning and growth in the cybersecurity world.
Effective collaboration within the SOC and between departments.
Dedication to putting each customer's needs and concerns at the forefront of all decision making.
We know that the best ideas and solutions come from multi-dimensional teams. That's because these teams reflect a variety of backgrounds and professional experiences.
If you are excited about this role and feel your experience can make an impact, please don't be shy - apply today.
About Rapid7At Rapid7, we are on a mission to create a secure digital world for our customers, our industry, and our communities.
We do this by embracing tenacity, passion, and collaboration to challenge what's possible and drive extraordinary impact.Here, we're building a dynamic workplace where everyone can have the career experience of a lifetime. We challenge ourselves to grow to our full potential. We learn from our missteps and celebrate our victories.
We come to work every day to push boundaries in cybersecurity and keep our 11,000+ global customers ahead of whatever's next.
Join us and bring your unique experiences and perspectives to tackle some of the world's biggest security challenges.All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, age, national origin, disability, protected veteran status or any other status protected by applicable national, federal, state or local law.
#J-18808-Ljbffr