Text code IREO to 202-915-6712 to apply! MindPoint Group delivers industry-leading cybersecurity solutions, services, and products. We are trusted cybersecurity advisors to key government and commercial decision-makers and support security operations for some of the most security-conscious organizations globally. Our relationship with you is for the long run because your success is our success.We invest in your success through fantastic benefits (healthcare, generous PTO, paid parental leave, and tuition reimbursement, to name a few). Beyond just excellent pay and benefits, you'll want to work here for reasons that can't be written into an offer letter-the challenge, growth opportunities, and most important: the culture of a company that cares about you. A position at MPG promises you * A diverse organization * A safe workplace with zero tolerance for discrimination or harassment of any kind * A balanced work life. Seriously. * A stable, established, and growing business * A leadership team focused on your professional growth and development Job Description This role is contingent upon award. MindPoint Group is seeking a forward-thinking and self-motivated Incident Response Analyst - Tier 3. This exciting role requires an appetite for learning, superior attention to detail, the ability to meet tight deadlines, great organizational skills, and the ability to work in a highly collaborative work environment. The successful candidate will possess the ability to complete complex tasks and projects quickly with little to no guidance, react with appropriate urgency to situations that require a quick turnaround, and provide the appropriate attention and support to overcome technical obstacles. What you get to do every day: * Utilize state-of-the-art technologies such as host forensics tools (FTK/Encase), Endpoint Detection & Response tools, log analysis (Splunk), and network forensics (full packet capture solution) to perform hunt and investigative activity to examine endpoint and network-based data * Conduct malware analysis, host and network, forensics, log analysis, and triage in support of incident response * Recognize attacker and APT activity, tactics, and techniques that can be used to improve monitoring, analysis, and incident response * Develop and build security content, scripts, tools, or methods to enhance the incident investigation processes * Lead Incident Response activities and mentor junior staff * Work with key stakeholders to implement remediation plans in response to incidents * Effectively investigative and identify root cause findings then communicate findings to stakeholders including technical staff, and leadership * Author Standard Operating Procedures (SOPs) and training documentation when needed * Generates end-of-shift reports for documentation and knowledge transfer to subsequent analysts on duty Qualifications *Active Top Secret required with SCI eligibility* What skills do you need? * 4( ) years in an Incident Responder/Handler role * Full understanding of Tier 1 responsibilities/duties and how the duties feed into Tier 2. The ability to take lead on incident research when appropriate and be able to mentor junior analysts * Advanced knowledge of TCP/IP protocols * Knowledge of Windows, Linux operating systems * Knowledge of Intrusion Detection Systems (IDS) and SIEM technologies; Splunk or ArcSight experience * Deep packet and log analysis * Some Forensic and Malware Analysis * Cyber Threat and Intelligence gathering and analysis * Bachelor's degree or equivalent experience What is ideal? * Knowledge and experience with scripting and programming (Python, PERL, etc.) are also highly preferred * Desirable certifications include, but not limited to: * GCIH, GCIA, GCFE, GREM, GCFA, GSEC * Security * CEH, CISSP, CCNA (Security) or equivalent Certifications. * CySA Location: * There is a hybrid role with expectations of being on the client site a few days a week. Additional Information * All offers are contingent upon proof of full vaccination against COVID-19 or successful accommodation for an exemption. * All your information will be kept confidential according to EEO guidelines. * Highlights of our benefits include Health/Dental/Vision, 401(k) match, Flexible Time Off, STD/LTD/Life Insurance, Referral Bonuses, professional development reimbursement, maternity/paternity leave, mobile phone stipend, pre-tax commuter benefits, the opportunity to participate in our mentorship program, and more! * MindPoint is committed to maintaining a diverse environment. All qualified applicants will receive consideration for employment without regard to sex, race, ethnicity, age, national origin, citizenship, religion, physical or mental disability, medical condition, genetic information, pregnancy, family structure, marital status, ancestry, domestic partner status, sexual orientation, gender identity or expression, veteran or military status, or any other basis prohibited by law. Text code IREO to 202-915-6712 to apply!