- Knowledge of computer network defense concepts, DISA Security Technical Information Guides, DoD A&A Process, NIST SP 800-53, NIST SP 800-61, CJCSM B, United States Cyber Command guidelines, and other applicable DoD Cybersecurity and Computer Network Defense Policies Cybersecurity and Computer Network Defense policies
- Experience developing and reporting metrics, preferably in a near-real time dashboard or common operating picture
- Develop, maintain, and provide a weekly brief that captures all the cyber events including metrics and trends
- Liaise with internal and external partners at all levels, government, and private sector, in order to benefit the organization and provide for more uniform situational awareness and common defense
- Correlate warning intelligence and attack sensing and warning (AS&W) data to search for advanced, persistent, and coordinated threats across the enterprise
- Analyze impact of cyber warning intelligence and AS&W
- Strong knowledge of Forescout Software
-
Cyberdefense Incident Responder
2 weeks ago
Apexon Arlington, United States**Location · - Arlington, VA - Hybrid** · **Position - 1** · **Rate: Market** · **W2 and US citizens only** · **Required Skills**: · - 2+ years of investigations work experience involving insider risk investigations, security incident response, technical investigations, intellect ...
-
ASRC Federal Holding Company Quantico, United States**JOB DESCRIPTION**: · Analysis reports, forensics investigations, trend reports. Analysis reports are conducted daily, covering the Security Information and Event Manager (SIEM), end point security, network access control, and vulnerability scanners, threat hunt operations. Anal ...
-
Cyber Security Incident Responder
3 weeks ago
Bespoke Corps LLC Washington, United States**Position**: · Cybersecurity Service Provider/Incident Response (CSSP/IR) Analyst · **Position Identifier**: · ARLI-CSSP/IR-001 · **Position Description**: · **Demonstrated Experience (Minimum 3 years)**: · - Knowledge of Advanced Persistent Threats (APT), network attack pattern ...
-
CyberDefense Incident Responder
1 week ago
Apexon Arlington, United StatesRequired Skills: " 2+ years of investigations work experience involving insider risk investigations, security incident response, technical investigations, intellectual property investigations, and/or financial fraud investigations · 3-5+ years of experience in UEBA and/or Splunk ...
-
CyberDefense Incident Responder
1 week ago
Nasscomm, Inc. Arlington, United States2+ years of investigations work experience involving insider risk investigations, security incident response, technical investigations, intellectual property investigations, and/or financial fraud investigations · 3-5+ years of experience in UEBA and/or Splunk Enterprise Security ...
-
CyberDefense Incident Responder
1 week ago
Ark Solutions Arlington, United StatesRole: CyberDefense Incident Responder · Arlington, VA (Hybrid) · 18 months Contract · The scope of this Task Order is to support Security Operations by providing support for the client's Security Response Team, Insider Threat program and select Vulnerability Assessment and Sca ...
-
CyberDefense Incident Responder
1 week ago
Apexon Arlington, United StatesAbout Apexon: · Apexon is a digital-first technology services firm specializing in accelerating business transformation and delivering human-centric digital experiences. We have been meeting customers wherever they are in the digital lifecycle and helping them outperform their co ...
-
Cyber Defense Incident Responder
1 week ago
ARK Solutions, Inc. Arlington, United StatesRole Title: CyberDefense Incident Responder · Location: Arlington, VA (Hybrid) · Duration: 18+ months Contract · Job Description: · The scope of this Task Order is to support Security Operations by providing support for the client's Security Response Team, Insider Threat program ...
-
Cyber Security Incident Responder
3 weeks ago
Nodel Arlington, United StatesCyber Security Incident Responder / Information System Security Analyst · Node.Digital · Market leader in Digital Transformation & Automation using Artificial Intelligence and Machine Learning · View company page · Cyber Security Incident Responder/ Information System Securit ...
-
Cyber Security Incident Responder
3 weeks ago
Node Arlington, United StatesCyber Security Incident Responder/ Information System Security Analyst · Location: Arlington, VA · Must have Top Secret Security Clearance · Node is supporting a U.S. Government customer on a large mission-development and sustainment program to design, build, deliver, and operate ...
-
Cyber Security Incident Responder
3 weeks ago
BCMC, LLC Arlington, United StatesBCMC is supporting a U.S. Government customer on a large mission critical development and sustainment program to design, build, deliver, and operate a network operations environment; including introducing new cyber capabilities to address emerging threats. In support of the custo ...
-
Cyber Security Incident Responder
2 days ago
Nodel Arlington, United States PermanentCyber Security Incident Responder/ Information System Security Analyst · Location: Arlington, VA · Must have Top Secret Security Clearance · Node is supporting a U.S. Government customer on a large mission-development and sustainment program to design, build, deliver, and opera ...
-
Cyber Security Incident Responder
3 weeks ago
BCMC, LLC Arlington, United StatesBCMC is supporting a U.S. Government customer on a large mission critical development and sustainment program to design, build, deliver, and operate a network operations environment; including introducing new cyber capabilities to address emerging threats. In support of the custo ...
-
Cyber Security Incident Responder
2 weeks ago
Nodel Cape Charles, United StatesCyber Security Incident Responder/ Information System Security Analyst · Scroll down to find an indepth overview of this job, and what is expected of candidates Make an application by clicking on the Apply button. · Location: Arlington, VA · Must have Top Secret Security Clearan ...
-
Cyber Security Incident Responder
1 week ago
Nodel Arlington, United StatesJob Description · Job DescriptionCyber Security Incident Responder/ Information System Security Analyst · Location: Arlington, VA · Must have Top Secret Security Clearance · Node is supporting a U.S. Government customer on a large mission-development and sustainment program to d ...
-
Senior Cyber Security Incident Responder
2 weeks ago
V2X Arlington, United StatesOverview · Vectrus is seeking a Sr. Cyber Security Incident Responder who can support our customer in the detection, response, mitigation, and reporting of cyber threats affecting the client networks. The selected candidate will support a U.S. Government customer on a large missi ...
-
Technical Cyber Incident Responder US REMOTE
2 weeks ago
Jacobs Arlington, United StatesYour Impact: · At Jacobs, we are dedicated to pushing the boundaries of innovation and delivering exceptional solutions to our clients. As a leader in our industry, we recognize the critical importance of synergies between cybersecurity, infrastructure, data, applications, and cl ...
-
Cyber Incident Responder(TS/SCI)-Reston, VA
3 weeks ago
iSenpai Reston, United StatesiSenpai is a Woman-Owned Small Business (WOSB) that provides enterprise IT and cyber security services, cloud technology, and data analytics solutions for US Government and commercial customers. We specialize in cloud-based solutions with cyber security integrated into the design ...
-
Helpdesk Analyst
2 weeks ago
BuddoBot Inc Quantico, United States**Position**:Helpdesk Analyst II · **Position Summary**: · **Clearance Eligibility**:Active DoD - Secret · **Shift Schedule**: , Monday - Friday · **Salary**:The salary offered will depend on education, certifications, length and relevance of work history, and professional experi ...
-
iSenpai, LLC Herndon, VA, United StatesiSenpai is a Woman-Owned Small Business (WOSB) that provides enterprise IT and cyber security services, cloud technology, and data analytics solutions for US Government and commercial customers · We specialize in cloud-based solutions with cyber security integrated into the desig ...
CYBER DEFENSE INCIDENT RESPONDER(Primarily Remote) - Quantico, United States - ASRC Federal
Description
JOB DESCRIPTION:
ASRC is hiring an Incident Responder to support onsite in Quantico, VA. This position has been approved for hybrid support (2 days onsite/3 days remote).
The Incident Responders support includes continuous monitoring, data to include but not limited to network and host vulnerability scanning IDS, firewall, network sensor tuning, net flow/packet capture (PCAP). Collect and keep audit data to conduct a technical analysis relating to misuse, penetration, or other incidents.
Traffic analysis, vulnerability analysis, cyber threat hunting, wireless scanning, end point security analysis, vulnerability analysis, network access control, network and computer forensics investigations, insider threat support, web traffic analysis, and various cybersecurity application/tools installed on (servers, workstations, to include maintenance and upkeep of the server.
Analysis reports, forensics investigations, trend reports. Analysis reports are conducted daily, covering the Security Information and Event Manager (SIEM), end point security, network access control, and vulnerability scanners, threat hunt operations. Analysis reports are produced daily covering 30 plus activities that are used to depict current network security and any anomalous activity.
BASIC QUALIFICATIONS:
#Broadleaf
YEARS EXPERIENCE:
At least two (2) Years System Level Cybersecurity Experience to include Incident response and Threat Hunting
EDUCATION REQUIREMENTS:
Bachelor's Degree, or equivalent experience in Cybersecurity, and/or Information Systems Management, Information Technology
CERTIFICAITON(S):
8570 IAT Level II required e.g., CCNA-Security, CySA+, GICSP, GSEC, Security+CE, CND, SSCP or Higher tiered certification
In addition to the above, CEH or the like e.g., Pentest+, OSCP, CSSP-IR is preferred
CLEARANCE LEVEL:
Active Top Secret Required and eligibility for TS/SCI
WORK ENVIRONMENT AND PHYSICAL DEMANDS:
This is primarily a Telework position with a requirement to be onsite at least two (2) days a week at Quantico Marine Corps Base VA.
If alternate worksite is other than DCSA facilities or corporate office space, must have the reliable ability to communicate over voice (cell phone preferred) and stable, capable internet connection.
Must speak English well enough to communicate complex technical ideas to a diverse customer both verbally and in written form.
ASRC Federal and its Subsidiaries are Equal Opportunity / Affirmative Action employers. All qualified applicants will receive consideration for employment without regard to race, gender, color, age, sexual orientation, gender identification, national origin, religion, marital status, ancestry, citizenship, disability, protected veteran status, or any other factor prohibited by applicable law.