-
Cyber Incident Response Analyst
1 day ago
Leidos Ashburn, United States**Description** · Our Security Operations Center (SOC) Support Services is a US Government program responsible to monitor, detect, analyze, mitigate, and respond to cyber threats and adversarial activity on the government Enterprise. We have primary responsibility for monitoring ...
-
Incident Response Analyst
2 days ago
MindPoint Group Washington, United StatesMindPoint Group is seeking a Security Operations Center (SOC) Analyst that will collaborate with members of the SOC team to improve procedures for the SOC to enhance coordination and incident response operations. You must be willing to work in a 24x7x365 SOC environment demonstra ...
-
Incident Response Analyst
3 days ago
MindPoint Group Washington, United StatesMindPoint Group is seeking a Tier 2 Incident Response Analyst to support threat monitoring, detection, event analysis, and incident reporting. The Security Operations Center is a 24/7 environment. You will be responsible for monitoring enterprise networks and systems, detecting e ...
-
Incident Response Analyst
4 days ago
Agile Defense Ashburn, United StatesAgile Defense · We are in the business of innovation through information technology and cybersecurity, delivered exceptionally. · View company page · Agile Defense provides leading-edge Digital Transformation solutions to support and advance our customers' mission. We deliver ...
-
Cyber Incident Response Analyst
5 days ago
Leidos Ashburn, United StatesDescription · Leidos is seeking an Incident Response Analyst to join our team on a highly visible cyber security single-award IDIQ vehicle that provides security operations center (SOC) support, cyber analysis, application development, and a 24x7x365 support staff. · Our Securi ...
-
Cyber Incident Response Analyst
1 week ago
Leidos Ashburn, United States Full timeDescription · Leidos is seeking an Incident Response Analyst to join our team on a highly visible cyber security single-award IDIQ vehicle that provides security operations center (SOC) support, cyber analysis, application development, and a 24x7x365 support staff. · Our Securi ...
-
Agile Defense, Inc. Ashburn, United StatesAt Agile Defense we know that action defines the outcome and new challenges require new solutions. That's why we always look to the future and embrace change with an unmovable spirit and the courage to build for what comes next. Our vision is to bring adaptive innovation to suppo ...
-
Incident Response Analyst Tier 2
1 week ago
Gray Tier Technologies LLC Ashburn, United StatesGray Tier technologies is seeking an experienced Incident Response Analyst to support this highly visible cyber security operations center (SOC) for Customs Border Protection (CBP), cyber analysis, application development, and a 24x7x365 support staff. · Primary Responsibilities ...
-
Base One Technologies Ashburn, United StatesOur Ashburn VA based client is looking for multiple Senior Incident Response Analyst. If you are qualified for this position, please email your updated resume in word format to · Required Education/Experience · A bachelor's degree in Computer Science, Engineering, Information Te ...
-
Leidos Ashburn, United StatesR Description Leidos is seeking an Incident Response Analyst to join our team on a highly visible cyber security single-award IDIQ vehicle that provides security operations center (SOC) support, cyber analysis, application development, and a 24x7x365 support staff. Our Security O ...
-
Base One Technologies Ashburn, United StatesOur Ashburn VA based client is looking for multiple Senior Incident Response Analyst. If you are qualified for this position, please email your updated resume in word format to · Required Education/Experience · A bachelor's degree in Computer Science, Engineering, Information Tec ...
-
Incident Response Analyst
4 days ago
Uvcyber Herndon, United StatesMake a difference here. · UltraViolet Cyber is a leading platform-enabled unified security operations company providing a comprehensive suite of security operations solutions. Founded and operated by security practitioners with decades of experience, the UltraViolet Cyber securit ...
-
MindPoint Group Washington, United StatesText code IRAWD to to apply · MindPoint Group delivers industry-leading cybersecurity solutions, services, and products. We are trusted cybersecurity advisors to key government and commercial decision-makers and support security operations for some of the most security-conscious ...
-
Incident Response Analyst
1 week ago
Oracle Reston, United StatesJob Description · *US Citizenship with preference for TS/SCI and FSP · Are you interested in securing a large-scale distributed SaaS environment? Oracle's SaaS Cloud Security team is building new technologies that operate at high scale in our broadly distributed multi-tenant clou ...
-
Leidos Ashburn, United StatesR Description Leidos is seeking an experienced Incident Response Analyst to support this highly visible cyber security operations center (SOC) for Customs Border Protection (CBP), cyber analysis, application development, and a 24x7x365 support staff. Department of Homeland Securi ...
-
Leidos Ashburn, United StatesR Description Leidos is seeking an experienced Incident Response Analyst to support this highly visible cyber security operations center (SOC) for Customs Border Protection (CBP), cyber analysis, application development, and a 24x7x365 support staff. Department of Homeland Securi ...
-
Incident Response Analyst
4 days ago
Oracle Reston, United StatesJob Description · *US Citizenship with preference for TS/SCI and FSP · Are you interested in securing a large-scale distributed SaaS environment? Oracle's SaaS Cloud Security team is building new technologies that operate at high scale in our broadly distributed multi-tenant clou ...
-
Incident Response Analyst
1 week ago
Oracle Reston, United States Regular Employee*US Citizenship with preference for TS/SCI and FSP · Are you interested in securing a large-scale distributed SaaS environment? Oracle's SaaS Cloud Security team is building new technologies that operate at high scale in our broadly distributed multi-tenant cloud environment. The ...
-
Leidos Ashburn, United StatesDescription · JobDescription: · Department of Homeland Security (DHS), Customs and Border Protection (CBP) Security Operations Center (SOC) is a US Government program responsible to prevent, identify, contain and eradicate cyber threats to CBP networks through monitoring, intrus ...
-
Leidos Ashburn, United States**Description** · **Job Description:** · Department of Homeland Security (DHS), Customs and Border Protection (CBP) Security Operations Center (SOC) is a US Government program responsible to prevent, identify, contain and eradicate cyber threats to CBP networks through monitoring ...
Cyber Incident Response Analyst - Ashburn, United States - Leidos
Description
Leidos is seeking an Incident Response Analyst to join our team on a highly visible cyber security single-award IDIQ vehicle that provides security operations center (SOC) support, cyber analysis, application development, and a 24x7x365 support staff.
Our Security Operations Center (SOC) Support Services is a US Government program responsible to monitor, detect, analyze, mitigate, and respond to cyber threats and adversarial activity on the government Enterprise.
We have primary responsibility for monitoring and responding to security events and incidents detected at the Trusted Internet Connection (TIC) and Policy Enforcement Point (PEP) and is responsible for directing and coordinating detection and response activities performed by each Component SOC.
Direction and coordination are achieved through a shared incident tracking system and other means of coordination and communication.Primary Responsibilities
Lead and mentor a team of cybersecurity analysis, fostering a collaborative and high-performance culture.
Provide expert analysis investigative support of large scale and complex security incidents, and in many cases identify incidents for which a technical detection may not be available.
Identify patterns/outliers within data sets that match threat actor TTPs, post compromise behavior, and otherwise unusual activity, such as insider threat.
Drive implementation and improvement of new tools, capabilities, frameworks, and methodologies
Instill and reinforce industry best practices in the domains of incident response, cybersecurity analysis, case and knowledge management, and SOC operations
Monitor external data sources (e.g., cyber defense vendor sites, Computer Emergency Response Teams, Security Focus) to maintain currency of cyber defense threat conditions and determine which security issues may have an impact on the enterprise.
Provide guidance and mentorship to improve analyst skill sets and ensure delivery of high-quality analysis and work products
Establish trust and business relationships with customer and other relevant stakeholders
Basic Qualifications
All Incident Response Analyst candidates shall have a minimum of a bachelor's degree in Computer Science, Engineering, Information Technology, Cybersecurity, or related field PLUS eight (8) years of experience in incident detection and response, malware analysis, and/or cyber forensics.
4+ years of supervising and/or managing teams
5+ years of intrusion detection and/or incident handling experience
Advanced knowledge in planning, directing, and managing Computer Incident Response Team (CIRT) and/or Security Operations Center (SOC) operations for a large and complex Enterprise
In-depth knowledge of each phase of the Incident Response life cycle
Familiarity or experience in Intelligence Driven Defense, Cyber Kill Chain methodology, and/or MITRE ATT&CK framework.
Understanding of Enterprise Network Architectures to include routing/switching, common protocols (DHCP, DNS, HTTP, etc.), and devices (Firewalls, Proxies, Load Balancers, VPN, etc)
Expertise of Operating Systems (Windows/Linux) operations and artifacts
Significant experience supervising and leading employees of various labor categories and technical skill levels in efforts similar in size and scope to a mature Security Operation
Mature understanding of industry accepted standards for incident response actions and best practices related to SOC operations;
Strong written and verbal communication skills, and the ability to create technical reports based on analytical findings.
Strong analytical and troubleshooting skills.
Certification Requirement:
One of the following: CASP, CYSA+, CLNP, Pentest+, GCIH, GCFA, GCFE, GREM, GISF, GXPN, GWEB, GNFA, GCTI, GOSI, OSCP, OSCE, OSWP, OSEE, CCFP, CISSP, CCNA-Security, CCNP-Security
Security Clearance Required:
Active TS/SCI clearance to be considered
Must be US Citizen
In addition to specific security clearance requirements, all SOC employees are required to obtain an Entry on Duty (EOD) clearance to support this program.
Deep technical understanding of core current cybersecurity technologies as well as emerging capabilities.
Hands-on cybersecurity experience (Protect, Detect, Respond and Sustain) within a Computer Incident Response organization including prior experience performing large-scale incident response.
Demonstrated understanding of the life cycle of cybersecurity threats, attacks, attack vectors and methods of exploitation with an understanding of intrusion set tactics, techniques and procedures (TTPs).
Original Posting Date:
While subject to change based on business needs, Leidos reasonably anticipates that this job requisition will remain open for at least 3 days with an anticipated close date of no earlier than 3 days after the original posting date as listed above.
Pay Range:
Pay Range $101, $183,300.00
The Leidos pay range for this job level is a general guideline only and not a guarantee of compensation or salary.
Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.
REQNUMBER:
R
All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or veteran status.