Cyber Incident Manager (Cybersecurity)

TL;DR

Cyber Incident Manager (Cybersecurity): Performing onsite incident response and investigation for US Government agencies with an accent on breach characterization and mitigation planning. Focus on correlating incident data, triaging CND incidents, and applying NIST 800-62 and FISMA standards.

Location: Onsite (USA). US Citizenship and active TS/SCI clearance required.

Company

Small business specializing in IT, Cybersecurity, and Information Assurance for Federal, State, and Local agencies.

What you will do

• Correlate incident data to identify trends and recommend defense-in-depth practices.
• Perform Computer Network Defense (CND) triage to determine scope, urgency, and impact.
• Research and compile resolution steps and workarounds to mitigate enterprise incidents.
• Detect and defend against intrusions in small and large-scale IT networks via log analysis.
• Monitor external data sources to track threat conditions and their potential impact.
• Track and document CND incidents from detection through final resolution.

Requirements

• U.S. Citizenship and active TS/SCI clearance.
• Ability to obtain DHS Suitability.
• 1+ years of experience in cyber incident management or cybersecurity operations.
• Knowledge of NIST 800-62 and FISMA standards for incident reporting.
• Familiarity with the NCCIC National Cyber Incident Scoring System.
• BS in Cybersecurity or related field (or HS Diploma with 3 years of experience).

Nice to have

• Certifications such as GCIH, GCFA, GISP, GCED, CCFP, or CISSP.

Culture & Benefits

• Competitive salary and 401k with company match and profit sharing.
• Comprehensive health coverage (95% employer paid medical, dental, and vision).
• 100% employer-paid life, STD, and LTD disability insurance.
• Flexible Spending Account (FSA) for healthcare and dependents.
• 11 standard holidays and 3 weeks of annual leave.