Incident Response Analyst with Security Clearance - Washington, DC, United States - Delviom LLC

Description

Please share resume to IR Team Key skills include: Experienced with working in a SOC and can support VDP and VM tasks
Able to use Microsoft Office i.e
Word, PowerPoint, Excel products to generate documents
Experience building incident response plans and playbooks
Looking for tool agnostic, ability to operate in various SIEM tools and can provide recommendations on how to improve IR
Need experience with ServiceNow Incident Response Module
Splunk – ability to build reports and dashboards
Ability to create reports and dashboards from ServiceNow Incident Response Module
Dashboard development - Able to support the development of an incident review board
Log Management skills to be able to help them develop a process and to receive access to logs and log consolidation
Forensics Skills and can assist in identifying and investigating incidents and analyzing logs
Incident Response will be on-call to support government lead during operating/business hours 7:00 am – 5:00 pm, there will be 7 day on, 7 day off for on call
Incidents usually do not happen often after hours