Jobs
>
Washington, D.C.

    Incident Response Analyst - Washington, United States - Computer World Services (CWS)Corporation

    Computer World Services (CWS)Corporation
    Computer World Services (CWS)Corporation Washington, United States

    3 weeks ago

    Default job background
    OTHER
    Description
    Job Description

    The mission of the OFR is to support the Financial Stability Oversight Council (FSOC) in promoting financial stability by: collecting data on behalf of FSOC; providing such data to FSOC and member agencies; standardizing the types and formats of data reported and collected; performing applied research and essential long-term research; developing tools for risk measurement and monitoring; performing other related services; making the results of the activities of the OFR available to financial regulatory agencies; and assisting such member agencies in determining thetypes of formats of data authorized to be collected by such member agencies.


    The Incident Response Analyst is an on-call role providing day-to-day incident response across the OFRAE and JADE networks.

    This includes investigating alerts from the SOC, third party notifications, and other security tools; working with Enterprise System owners to remediate immediate threats and incidents; knowledge capture and investigation tracking documentation to maintain knowledge on the team; monitor and notify of security tool outages and issues; participate in process enhancements through after-action reports, tabletop exercises, and peer consulting as needed.

    The role is to advise and build automations and playbooks to further grow the response capability of the team.

    This is a junior role that requires a basic understanding of incident response and security practices.

    As part of a growing team this role will have the ability to leverage and work with new capabilities as they are deployed including deception infrastructure, continuous penetration testing, data loss prevention (DLP), and machine learning capabilities.

    The analyst should have basic experience in ticketing workflow, understanding of Endpoint Detection and Response (EDR) and endpoint data investigations, security investigation, and other security tool alerting workflow and pivoting.

    This role is expected to contribute to maturing the overall IR and security capability.

    Key Tasks and Responsibilities

    Assess cybersecurity incidents to investigate, validate, respond, and recover the environment, and perform additional activities such as root cause analysis and resilience recommendations.

    Serve as the primary escalation point for the SOC in the event of an incident.

    Communicate and coordinate with internal and external teams during incidents and breaches.

    Implement, and document IR processes, procedures, playbooks, and guidelines.

    Participate in breach and attack simulation and purple teaming exercises to stress test the incident response plans and playbooks.


    Analyze emerging threats to improve and maintain the detection and response capabilities of the organization.

    Apply knowledge of monitoring, analyzing, detecting, and responding to cyber events to develop clever, efficient methods and technology to detect all types of threat.


    Document specifications, playbooks, and detections - not as an afterthought, but through the whole process.

    Work with developers to build security automation workflows, enrichments, and mitigations.

    Evaluate policies and procedures and recommend updates to management as appropriate.

    Education & Experience

    Bachelor's degree or equivalent practical experience in incident response, computer science, cybersecurity, information technology, software engineering, information systems, or computer engineering.


    1-2 years Security Operations Center (SOC) environment experience with security engineering and monitoring experience.

    Programming and scripting languages, preferably Python and PowerShell.

    Dedicated monitoring and analysis of cyber security events.

    Excellent written and oral communication skills.

    Self-motivated and able to work in an independent manner.

    Certifications

    Preference given for CCE, CCFE, CEH, CPT, CREA, GCFE, GCFA, GCIH, GCIA GIAC, Splunk Core, OSCP, SANS Security 500 Series or other industry standard equivalent but not required.


    Security Clearance

    Public Trust

    Must be US Citizen

    Other (Travel, Work Environment, DoD 8570 Requirements, Administrative Notes, etc.)

    This is a remote/work from home role.

    Computer World Services is an affirmative action and equal employment opportunity employer.

    Current employees and/or qualified applicants will receive consideration for employment without regard to race, color, religion, sex, disability, age, sexual orientation, gender identity, national origin, disability, protected veteran status, genetic information or any other characteristic protected by local, state, or federal laws, rules, or regulations.


    Computer World Services is committed to the full inclusion of all qualified individuals. As part of this commitment, Computer World Services will ensure that individuals with disabilities (IWD) are provided reasonable accommodations. If reasonable accommodation is needed to participate in the job application or interview process, to perform essential job functions, and/or to receive other benefits and privileges of employment, please contact Aaron McClellan in Human Resources at or
  • OneZero Solutions

    Incident Response Analyst

    2 weeks ago

    OneZero Solutions Washington, United States

    Job Description · Job DescriptionWe are an employee-centric company that truly appreciates our team members and their value to our customers and the missions they support. We pride ourselves on being forward-leaning thinkers and fostering teams that are and continue to be technic ...

  • cFocus Software Incorporated

    Cyber Incident Response Analyst

    2 weeks ago

    cFocus Software Incorporated Washington, United States

    Job Description · Job DescriptioncFocus Software seeks a Cyber Incident Response Analyst (Senior) to join our program supporting United States Courts, Information Technology Security Office in Washington, DC. This position requires US Citizenship and the ability to obtain a Publi ...

  • RedTrace Technologies Inc

    Cyber Incident Response Analyst

    3 weeks ago

    RedTrace Technologies Inc Washington, United States

    Job Description · Job DescriptionSECURITY CLEARANCE REQUIREMENT: TS, WITH SCI ELIGIBILITY · ***POSITION REQUIRES US CITIZENSHIP*** · Company Overview: As a Cybersecurity, Information Technology, and Management Consulting firm focused on assisting our commercial and U.S. Intellige ...

  • cFocus Software Incorporated

    Cyber Incident Response Analyst

    2 weeks ago

    cFocus Software Incorporated Washington, United States

    Job Description · Job DescriptioncFocus Software seeks a Cyber Incident Response Analyst (Mid-Level) to join our program supporting to join our program supporting United States Courts, Information Technology Security Office in Washington, DC. This position requires US Citizenship ...

  • Computer World Services (CWS)Corporation

    Incident Response Analyst

    3 weeks ago

    Computer World Services (CWS)Corporation Washington, United States OTHER

    · Job Description · The mission of the OFR is to support the Financial Stability Oversight Council (FSOC) in promoting financial stability by: collecting data on behalf of FSOC; providing such data to FSOC and member agencies; standardizing the types and formats of data reported ...

  • Computer World Services (CWS)Corporation

    Incident Response Analyst

    1 month ago

    Computer World Services (CWS)Corporation Washington, United States OTHER

    · Job Description · The mission of the OFR is to support the Financial Stability Oversight Council (FSOC) in promoting financial stability by: collecting data on behalf of FSOC; providing such data to FSOC and member agencies; standardizing the types and formats of data reporte ...

  • Computer World Services (CWS)Corporation

    Incident Response Analyst

    4 days ago

    Computer World Services (CWS)Corporation Washington, United States OTHER

    · Job Description · The mission of the OFR is to support the Financial Stability Oversight Council (FSOC) in promoting financial stability by: collecting data on behalf of FSOC; providing such data to FSOC and member agencies; standardizing the types and formats of data reported ...

  • Sikich LLP

    Incident Response Analyst

    3 weeks ago

    Sikich LLP Washington, United States

    **Description**: · **Incident Response Analyst (II)** · **What to expect when you join the Sikich family** · Team members at Sikich have a lot in common while also being part of a rich and diverse group of contributors, creating a distinct and thriving culture. Chief among our co ...

  • Gridiron IT

    Incident Response Analyst

    3 weeks ago

    Gridiron IT Washington, United States

    **Role Description**: · - Support the development of staff schedules and staffing forecasts for approval · - Ensure shift members follow the appropriate incident escalation and reporting procedures · - Ingest, triage, prioritize, assign, track, document, and manage incidents and ...

  • Rapid7

    Detection and Response Analyst

    4 weeks ago

    Rapid7 Arlington, United States Full time

    Detection & Response Analyst · We are looking for people with a passion for investigation and forensic analysis to join our MDR SOC team at Rapid7. As a Detection & Response Analyst, you will utilize Rapid7's advanced tools to investigate and triage security events and work side- ...

  • OMW Consulting

    Cyber Incident response analyst with Security Clearance

    4 days ago

    OMW Consulting San Francisco, United States Permanent

    Cyber Incident Response Analyst Washington, DC - On site TS Clearance - SCI eligible $140k-$150k I am partnered with a leading Cyber security consultancy who is looking to hire a Cyber Incident Response Analyst to be based on site in DC for a federal customer. To be considered fo ...

  • Super Systems Inc

    Incident Response Analyst

    2 weeks ago

    Super Systems Inc Arlington, United States

    Hybrid · - 2x a week onsite (Tuesday and Thursdays) Sometimes there may not be an onsite need. · **Role Description**: · - Support the development of staff schedules and staffing forecasts for approval · - Ensure shift members follow the appropriate incident escalation and report ...

  • Peraton

    Incident Response Analyst with OT/ICS/SCADA

    3 weeks ago

    Peraton Arlington, United States Full time

    Responsibilities · Peraton is currently seeking an experienced Incident Response Analyst with OT/ICS/SCADA experience for its' Federal Strategic Cyber program in Arlington, VA. · Location: On-site role in Arlington, VA. Ideal candidate needs to be amenable to travel, approximate ...

  • Agile Defense, Inc.

    Incident Response Analyst with Security Clearance

    3 weeks ago

    Agile Defense, Inc. Arlington, United States

    At Agile Defense we know that action defines the outcome and new challenges require new solutions. That's why we always look to the future and embrace change with an unmovable spirit and the courage to build for what comes next. Our vision is to bring adaptive innovation to suppo ...

  • cFocus Software Incorporated

    Cyber Incident Response Analyst

    2 weeks ago

    cFocus Software Incorporated Washington, United States

    cFocus Software seeks a Cyber Incident Response Analyst (Mid-Level) to join our program supporting to join our program supporting United States Courts, Information Technology Security Office in Washington, DC. This position requires US Citizenship and the ability to obtain a Publ ...

  • Oracle

    Incident Response Analyst

    3 weeks ago

    Oracle Reston, United States Regular Employee

    *US Citizenship with preference for TS/SCI and FSP · Are you interested in securing a large-scale distributed SaaS environment? Oracle's SaaS Cloud Security team is building new technologies that operate at high scale in our broadly distributed multi-tenant cloud environment. The ...

  • Booz Allen Hamilton

    Responsible AI Operations Research Analyst

    1 week ago

    Booz Allen Hamilton Washington, United States

    Responsible AI Operations Research AnalystThe Opportunity: · Do you love solving problems? Are you passionate about making Responsible AI more practical and actionable? · On our Responsible AI team, you'll work to bring AI Ethics research and Governance to life as a Responsible A ...

  • Peraton

    Incident Response Analyst with OT/ICS/SCADA

    1 week ago

    Peraton Arlington, United States

    Responsibilities · Peraton is currently seeking an experienced Incident Response Analyst with OT/ICS/SCADA experience for its' Federal Strategic Cyber program in Arlington, VA. · Location: On-site role in Arlington, VA. Ideal candidate needs to be amenable to travel, approximate ...

  • Peraton

    Incident Response Analyst with OT/ICS/SCADA

    3 weeks ago

    Peraton Arlington, United States

    About Peraton Peraton is a next-generation national security company that drives missions of consequence spanning the globe and extending to the farthest reaches of the galaxy. As the world's leading mission capability integrator and transformative enterprise IT provider, we deli ...

  • Critical Solutions

    Part Time, Tier 2 Cyber Incident Response Analyst

    1 week ago

    Critical Solutions Washington, United States Part time

    Job Description · Job DescriptionTier 2 Cyber Incident Response Analyst - (w/ active TS) - PART TIME Weekend NightsWashington, DC · Part-time, On-site · Clearance Required:Top Secret · Shift Schedule: Weekend Nights, 10 pm - 10 am EST · JOB DESCRIPTION · Critical Solutions is see ...