Cyber SME/Incident Responder

Location: Dulles, VA (Hybrid-Remote)

Job Description:

Serves Sr. Cyber Security Subject Matter Expert (SME)

Support detection, response, mitigation, reporting of cyber threats affecting networks

Support continuous monitoring and incident response for hybrid cloud/ on-prem networks

Produce reports and briefs to provide an accurate depiction of:

• The current threat landscape
• Associated risk based on customer, community, and open-source reporting

Investigate cyber activity targeting customer information and its infrastructure

Analyze and report cyber threats

Assist in deterring, monitoring, investigating, and analyzing computer network intrusions

Develop and implement training standards and procedures

Oversee the training of newly assigned analysts

Qualifications:

BS Incident Management, Operations Management, Cybersecurity or related degree

• HS Diploma with 22 years of incident management experience

10 years of cyber security/incident management experience

Must pass internal qualification requirements within specified time constraints

Hands-on experience in a SOC, performing:

• Detection, response, mitigation, and/or reporting of cyber threats

Experience with one or more of the following:

• Computer intrusion analysis and incident response
• Network protocols, network devices, multiple operating systems, and secure architectures

Strong experience with Cyber Security Incident Response training

Current experience with network intrusion detection and response operations

Current experience with cyber threats

MITRE Adversary Tactics, Techniques and Common Knowledge (ATT&CK)

Experience with cloud-based security (preferred)

Experience in computer evidence seizure, and intrusion detection (preferred)

Experience in computer/network forensic analysis, or data recovery (preferred)

Prior experience with SIEM Technologies (Splunk)

Scripting experience (Linux/Windows command line, Python, Perl, etc.)

Required Certifications:

• IAT Level II Technical Certification (Security CE, CCNA Security, SSCP, CYSA ) or equivalent
• AND an Incident Response Certification (CEH, GCIH, GCIA, GNFA, or comparable certification)
• AND relevant Cloud Security Certification (AWS or Azure)

(This position requires shift work which may include nights/weekends)

Active DoD Top-Secret Clearance

Job Type: Full-time

Salary: $110,000-$150,000

Job Type: Full-time

Pay: $110,000.00 - $150,000.00 per year

Benefits:

• 401(k)
• 401(k) matching
• Dental insurance
• Employee assistance program
• Flexible schedule
• Flexible spending account
• Health insurance
• Health savings account
• Life insurance
• Paid time off
• Parental leave
• Professional development assistance
• Relocation assistance
• Retirement plan
• Tuition reimbursement
• Vision insurance

Compensation package:

• Bonus opportunities
• Performance bonus
• Signing bonus
• Yearly pay

Schedule:

• Monday to Friday

Education:

• Bachelor's (Preferred)

Experience:

• Cyber security: 10 years (Preferred)
• Incident response: 3 years (Preferred)
• working in a SOC: 3 years (Preferred)

Security clearance:

• Top Secret (Required)

Work Location: In person