Requirements:

• Must be a US citizen, no clearance required, prefer Secret Clearance withthe ability to obtain TS/SCI. - Bachelor’s degree in Science or Engineering Field,IT, or Cybersecurity or related field
• 3 years of experience be in the areas of incident detection andresponse, remediation malware analysis, or computer forensics.
• Prior relevant experience should be in the areas of incident detectionand response, malware analysis, or computer forensics.
• Ability to script in one more of the following computer languages Python,Bash, Visual Basic or Powershell
• Must have one of the following: CCNA Security CCNP Security CCSP –Certified Cloud Security Professional CEH – Certified Ethical Hacker CNDA –Certified Network Defense Architect Cyber Analyst Course (DCITA) ECES –EC-Council Certified Encryption Specialist ECSA – EC-Council Certified SecurityAnalyst ECSP – EC-Council Certified Secure Programmer ECSS – EC-CouncilCertified Security Specialist ENSA – EC-Council Network Security AdministratorGCIA – Intrusion Analyst GCIH – Incident Handler GISF – Security FundamentalsGNFA – Network Forensic Analyst GPPA – Perimeter Protection Analyst GWEB – WebApplication Defender LPT – Licensed Penetration Tester OSCP (CertifiedProfessional) OSEE (Exploitation Expert) SEI (Software Engineering Institute)GWEB – Web Application Defender LPT – Licensed Penetration Tester OSCP(Certified Professional) OSEE (Exploitation Expert) SEI (Software EngineeringInstitute)

Preferred Qualifications:

• Experience in Federal Government, DOD or Law Enforcement in CND, IR orSOC role
• Cyber Kill Chain Knowledge

Essential Requirements:

• US Citizenship is required.
• Prefer Secret Clearance with the ability to obtain TS/SCI

Physical Demands: The physical demands described here are representative of those thatmust be met by an employee to successfully perform the essential functions ofthis job with or without reasonable accommodation. While performing theduties of this job, the employee will regularly sit, walk, stand and climbstairs and steps. May require walking long distance from parking to workstation. Occasionally, movement that requires twisting at the neck and/or trunkmore than the average person, squatting/ stooping/kneeling, reaching above thehead, and forward motion will be required. The employee will continuously berequired to repeat the same hand, arm, or finger motion many times. Manual andfinger dexterity are essential to this position. Specific vision abilitiesrequired by this job include close, distance, depth perception and tellingdifferences among colors. The employee must be able to communicate throughspeech with clients and public. Hearing requirements include conversation inboth quiet and noisy environments. Lifting may require floor to waist, waist toshoulder, or shoulder to overhead movement of up to 20 pounds. This positiondemands tolerance for various levels of mental stress.

Job Duties:

• Utilize state of the art technologies such as host forensicstools(FTK/Encase), Endpoint Detection & Response tools, log analysis(Splunk) and network forensics (full packet capture solution) to perform huntand investigative activity to examine endpoint and network-based data.
• Conduct malware analysis, host and network, forensics, log analysis, andtriage in support of incident response.
• Recognize attacker and APT activity, tactics, and procedures asindicators of compromise (IOCs) that can be used to improve monitoring,analysis and incident response.
• Develop and build security content, scripts, tools, or methods to enhancethe incident investigation processes.
• Lead Incident Response activities and mentor junior SOC staff.
• Work with key stakeholders to implement remediation plans in response toincidents.
• Effectively investigative and identify root cause findings thencommunicate findings to stakeholders including technical staff, and leadership.
• Flexible and adaptable self-starter with strong relationship-buildingskills
• Strong problem solving abilities with an analytic and qualitative eye forreasoning
• Ability to independently prioritize and complete multiple tasks withlittle to no supervision