Назад
Company hidden
2 дня назад

Security Analyst (Incident Responder)

Формат работы
hybrid
Тип работы
fulltime
Английский
b2
Страна
US
Вакансия из списка Hirify.GlobalВакансия из Hirify Global, списка международных tech-компаний
Для мэтча и отклика нужен Plus

Мэтч & Сопровод

Для мэтча с этой вакансией нужен Plus

Описание вакансии

Текст:
/

TL;DR

Security Analyst (Incident Responder) (Cybersecurity): Lead incident response and vulnerability management activities, including triage, investigation, reporting, and playbook/plan updates with an accent on SIEM/EDR monitoring and log analysis. Focus on managing Splunk queries, running Tenable/Qualys scans, prioritizing findings for remediation, and coordinating with GRC and technical stakeholders to restore operations.

Location: Alexandria, VA (Hybrid; periodic onsite attendance at customer location in Alexandria, VA). Applicants must be within commuting distance or explain how they will satisfy this requirement. Remote status is subject to change at the customer’s direction.

Company

hirify.global provides advanced software and systems engineering solutions for the U.S. Federal Intelligence Community.

What you will do

  • Lead and manage incident response activities: triage, investigation, interviewing, resolution, and event reporting; create and maintain IR playbooks and plans.
  • Monitor and administer policies and rules in EDR/SIEM tools (e.g., CrowdStrike, Splunk) and ensure enterprise SIEM log monitoring.
  • Perform vulnerability management: run scans (Tenable SC and/or Qualys), analyze results, prioritize by risk/impact, coordinate remediation, and validate false positives.
  • Conduct log analysis by managing Splunk queries and examining log data from the Enterprise Logging as a Service system.
  • Maintain incident ticket tracking in Remedy (or similar) and produce weekly security metrics dashboards and charts.
  • Interact with GRC tooling (e.g., CSAM) for daily/weekly vulnerability analysis and present findings to system admins, owners, and leadership.

Requirements

  • Location/commute requirement: must reside within commuting distance to Alexandria, VA, or describe how the requirement will be satisfied.
  • 6 years of experience as a Security Administrator (or equivalent) with hands-on incident response and vulnerability analysis across systems, applications, security tools, databases, and network logs.
  • Hands-on experience with vulnerability scanning tools such as Tenable or Qualys.
  • Experience with CrowdStrike, TenableSC, and Splunk (or comparable tools).
  • Experience with NIST SP 800-61 rev2 Computer Security Incident Handling Guide.
  • Security+ certification required; excellent oral and written communication skills; ability to use tools like Wireshark and perform online research to analyze attack signatures.

Culture & Benefits

  • Generous cost sharing for medical insurance; 100% company-paid dental, vision, and disability insurance.
  • 401k plan with generous match and 100% immediate vesting.
  • Generous paid leave and holiday package, plus tuition and training reimbursement.
  • Life and AD&D insurance and competitive pay.

Hiring process

  • Interviews and evaluation of incident response and vulnerability management experience.
  • Assessment of tool familiarity (EDR/SIEM, scanning, ticketing) and communication skills.
  • Public Trust requirement must be met.

Будьте осторожны: если работодатель просит войти в их систему, используя iCloud/Google, прислать код/пароль, запустить код/ПО, не делайте этого - это мошенники. Обязательно жмите "Пожаловаться" или пишите в поддержку. Подробнее в гайде →