- Provide senior-level technical subject matter expertise and support as part of a team of analysts focused on host-level digital forensics and endpoint detection & response (DFIR / EDR).
- Perform analysis of logs/artifacts from a variety of sources (host/network alerts, host logs, network traffic logs, malicious files, registry, filesystems, etc.) to identify threats.
- Provide technical assistance on digital evidence matters and forensic investigative techniques.
- Perform analyses on hosts running on a variety of platforms and operating systems
- Oversee forensic analysis and mentor others on data collection, analysis, and reporting in support of both remote and on-site engagements.
- Perform real-time hunt and incident response (data collection, intrusion correlation/tracking, threat analysis, timeline construction) tasks and advise on remediation activities.
- Build and maintainability with a variety of host forensic and endpoint detection & response (EDR) tools and capabilities (e.g., Encase, FTK, SIFT, Volatility, Magnet Forensics, Crowdstrike, Mandiant/GRR, SentinelOne, Microsoft/MDE, etc.)
- Summarize and document analysis findings in executive summaries and in-depth technical reports Required: Education + Experience
- Bachelor's degree in Computer Science, Cybersecurity, Computer Engineering, or a related area of study
- 8+ years of directly relevant experience in cyber forensic investigations
- Experience in supporting and leading Incident Response teams
- Experience writing thorough cyber investigative reports detailing incident findings.
- Proficiency with analysis and characterization of cyber-attacks (Kill Chain, MITRE ATT&CK).
- Proficiency with common operating systems (Linux/Unix, Windows), with a demonstrated understanding of how they may be compromised.
- Skilled in identifying different classes of attacks and attack stages
- Experience using Splunk Security Clearance
- Must be U.S
- Active Top Secret security clearance, ability to obtain SCI
- DHS EOD suitability will be required prior to start Certifications (One or more)
- GIAC Certified Incident Handler (GCIH)
- GIAC Certified Forensic Examiner (GCFE)
- GIAC Certified Forensic Analyst (GCFA)
- EnCase Certified Examiner (EnCE)
- Certified Forensic Computer Examiner (CFCE)
- Certified Information Systems Security Professional(CISSP) #LI-LC1 Who You Are A proactive problem solver that appreciates the challenges of working in a fast-paced, dynamic environment
-
Detection and Response Analyst
Found in: Lensa US 4 C2 - 8 hours ago
Knewin Arlington, United StatesDetection & Response Analyst · We are looking for people with a passion for investigation and forensic analysis to join our MDR SOC team at Rapid7. As a Detection & Response Analyst, you will utilize Rapid7's advanced tools to investigate and triage security events and work side- ...
-
Incident Response Analyst
Found in: Lensa US 4 C2 - 3 days ago
Agile Defense Arlington, United StatesAgile Defense provides leading-edge Digital Transformation solutions to support and advance our customers' mission. We deliver innovative and high-quality services to our customers worldwide through an empowered and engaged workforce. · Job Title: · Incident Response Analyst · L ...
-
Incident Response Analyst
Found in: Lensa US 4 C2 - 4 days ago
XOR Security Arlington, United StatesJob Title: Incident Response Analyst · Location: 1110 N. Glebe Rd. Arlington, Virginia 22201 · Clearance Level: Top Secret · SUMMARY: · XOR Security, An Agile Defense Company is currently seeking an Incident Response Analyst with advanced skillsets in Digital Forensic & Incid ...
-
Detection and Response Analyst
Found in: beBee S2 US - 4 days ago
Rapid7 Arlington, United States Full timeDetection & Response Analyst · We are looking for people with a passion for investigation and forensic analysis to join our MDR SOC team at Rapid7. As a Detection & Response Analyst, you will utilize Rapid7's advanced tools to investigate and triage security events and work side- ...
-
Cyber Incident Response Analyst
Found in: Dice One Red US C2 - 2 days ago
Peraton Arlington, VA, United StatesAbout Peraton Peraton is a next-generation national security company that drives missions of consequence spanning the globe and extending to the farthest reaches of the galaxy · As the world's leading mission capability integrator and transformative enterprise IT provider, we del ...
-
Cyber Incident Response Analyst
Found in: Lensa US 4 C2 - 1 day ago
Peraton Arlington, United StatesResponsibilities: · Peraton is currently hiring a Cyber Incident Response Analyst for its' Federal Strategic Cyber sector. · Location: On-site, Arlington, VA · In this role, you will have the following duties: · Identify, log, categorize, perform initial triage, assign to ot ...
-
Incident Response Analyst with Security Clearance
Found in: Dice One Red US C2 - 1 day ago
Base One Technologies Arlington, United StatesRequired Education/Experience · BS degree in Science, Technology, Engineering, Math or related field and 8+ years of prior relevant experience with a focus on cybersecurity OR Masters with 4-6 years of prior relevant experience. Primary Responsibilities · Our govt client has an i ...
-
Incident Response Analyst with Security Clearance
Found in: Dice One Red US C2 - 4 days ago
Agile Defense, Inc. Arlington, United StatesAgile Defense provides leading-edge Digital Transformation solutions to support and advance our customers' mission. We deliver innovative and high-quality services to our customers worldwide through an empowered and engaged workforce. Job Title: Incident Response Analyst Location ...
-
Incident Response Analyst with Security Clearance
Found in: Dice One Red US C2 - 2 days ago
Agile Defense, Inc. Arlington, VA, United StatesAt Agile Defense we know that action defines the outcome and new challenges require new solutions · That's why we always look to the future and embrace change with an unmovable spirit and the courage to build for what comes next · Our vision is to bring adaptive innovation to sup ...
-
Incident Response Analyst with Security Clearance
Found in: Lensa US 4 C2 - 3 days ago
Base One Technologies Arlington, United StatesRequired Education/Experience · BS degree in Science, Technology, Engineering, Math or related field and 8+ years of prior relevant experience with a focus on cybersecurity OR Masters with 4–6 years of prior relevant experience. Primary Responsibilities · Our govt client has an i ...
-
Privacy Analyst, Regulatory Response
Found in: One Red Cent US C2 - 2 days ago
Venable LLP Washington, United StatesVenable LLP's Technology & Innovation Group seeks a Privacy Analyst, Regulatory Response to join the Venable Blue team in the Washington, D.C., New York, Los Angeles, or San Francisco office. The Privacy Analyst, Regulatory Response oversees and manages all aspects of client-base ...
-
Cyber Incident Response Analyst
Found in: One Red Cent US C2 - 2 days ago
RedTrace Technologies Inc Washington, United StatesJob Description · Job DescriptionSECURITY CLEARANCE REQUIREMENT: TS, WITH SCI ELIGIBILITY · ***POSITION REQUIRES US CITIZENSHIP*** · Company Overview: As a Cybersecurity, Information Technology, and Management Consulting firm focused on assisting our commercial and U.S. Intellige ...
-
Incident Response Analyst
Found in: Lensa US 4 C2 - 4 days ago
Edgewater Federal Solutions Bethesda, United StatesOverview: · Edgewater is seeking an Incident Response Analyst to provide support to an Edgewater Federal government contract. · Responsibilities: · As a Incident Response Analyst, you and team will be responsible for: · Manning a 24x7x365 cybersecurity operations center and r ...
-
Incident Response Analyst with OT/ICS/SCADA
Found in: Dice One Red US C2 - 4 days ago
Peraton Arlington, United StatesAbout Peraton Peraton is a next-generation national security company that drives missions of consequence spanning the globe and extending to the farthest reaches of the galaxy. As the world's leading mission capability integrator and transformative enterprise IT provider, we deli ...
-
Incident Response Analyst with OT/ICS/SCADA
Found in: Dice One Red US C2 - 2 days ago
Peraton Arlington, VA, United StatesAbout Peraton Peraton is a next-generation national security company that drives missions of consequence spanning the globe and extending to the farthest reaches of the galaxy · As the world's leading mission capability integrator and transformative enterprise IT provider, we del ...
-
Incident Response Analyst with OT/ICS/SCADA
Found in: Lensa US 4 C2 - 16 hours ago
STEMBoard Arlington, United StatesCurrently hiring an experienced Incident Response Analyst with OT/ICS/SCADA experience for its' Federal Strategic Cyber program in Arlington, VA. · (Ideal candidate needs to be amenable to travel, approximately 40%) · In this role, you will: · + Respond to cybersecurity incidents ...
-
Incident Response Analyst with OT/ICS/SCADA
Found in: Lensa US 4 C2 - 4 days ago
Peraton Arlington, United StatesResponsibilities: · Peraton is currently seeking an experienced Incident Response Analyst with OT/ICS/SCADA experience for its' Federal Strategic Cyber program in Arlington, VA. · Location: On-site role in Arlington, VA. Ideal candidate needs to be amenable to travel, approxima ...
-
Incident Response Analyst with OT/ICS/SCADA
Found in: Talent US A C2 - 4 days ago
Peraton Arlington, United States Full timeResponsibilities · Peraton is currently seeking an experienced Incident Response Analyst with OT/ICS/SCADA experience for its' Federal Strategic Cyber program in Arlington, VA. · Location: On-site role in Arlington, VA. Ideal candidate needs to be amenable to travel, approximate ...
-
Cyber Incident Response Analyst with Security Clearance
Found in: Lensa US 4 C2 - 4 days ago
Peraton Arlington, United StatesAbout Peraton Peraton is a nextgeneration national security company that drives missions of consequence spanning the globe and extending to the farthest reaches of the galaxy. As the world's leading mission capability integrator and transformative enterprise IT provider, we deliv ...
-
Cyber Incident Response Analyst with Security Clearance
Found in: Dice One Red US C2 - 2 days ago
Peraton Arlington, VA, United StatesAbout Peraton Peraton is a next-generation national security company that drives missions of consequence spanning the globe and extending to the farthest reaches of the galaxy · As the world's leading mission capability integrator and transformative enterprise IT provider, we del ...
Senior Cyber Hunt and Incident Response Analyst - Arlington, VA, United States - phia
Description
At phia we hire talented and passionate people who are focused on collaborative, meaningful work, providing technical and operational subject matter expertise and support services to our partners and clientsWe are seeking a Senior Cyber Hunt & Incident Response Analyst to support a large Federal threat hunting organization
In this position, you will be on the front line of supporting national and international cyber intrusions teaming with agency and private sector partners to secure America's critical infrastructure
These engagements entail performing host forensics and endpoint analysis to identify, understand, and counter cyber threat actor activity
Come join our cutting-edge team working on stopping some of the world's most advanced adversaries
This position is a hybrid role, with scheduled on-site work located on a customer site in Arlington, VA What You'll Do
An effective communicator, both verbally and in writing
Customer service-oriented and mission-focused
Critical thinker with excellent problem-solving skills If your experience and qualifications aren't a match for this position, you will remain in our database for consideration for future opportunities that may be a better fit
Who We Are phia, LLC is a Northern Virginia-based, small business established in 2011 with a focus on Cyber Intelligence, Cyber Security/Defense, Intrusion Analysis & Incident Response, Cyber Architecture & Capability Analysis, Cyber Policy & Strategy, and Information Assurance/Security
we proudly support various agencies and offices within the Department of Defense (DoD), Federal government, and private/commercial entities
phia values work-life balance and offers the following benefits to full-time employees: Comprehensive medical insurance to include dental and vision Short Term & Long-Term Disability 401k Retirement Savings Plan with Company Match Tuition and Professional Development Assistance Flex Spending Accounts (FSA) phia does not discriminate on the basis of race, sex, color, religion, age, national origin, marital status, disability, veteran status, genetic information, sexual orientation, gender identity, or any other reason prohibited by law in the provision of employment opportunities and benefits.