Cyber Incident Management Analyst (Cybersecurity)
Мэтч & Сопровод
Для мэтча с этой вакансией нужен Plus
Описание вакансии
TL;DR
Cyber Incident Management Analyst (Cybersecurity): Providing onsite incident response for civilian government agencies and critical infrastructure with an accent on investigation, triage, and mitigation of cyber-attacks. Focus on correlating incident data, performing network defense triage, and coordinating resolution efforts during weekend night shifts.
Location: Must be based in Arlington, VA (Onsite)
Salary: $99,000–$206,000
Company
provides advanced full-spectrum cyber, data operations, and systems integration services to support critical U.S. government missions.
What you will do
- Perform Computer Network Defense incident triage to determine scope, urgency, and impact.
- Correlate incident data to identify trends and research resolution steps for mitigation.
- Monitor external data sources to maintain awareness of threat conditions.
- Track and document incidents from initial detection through final resolution.
- Coordinate with internal and external components to gather information on ongoing incidents.
- Apply cybersecurity concepts to detect and defend against intrusions in large-scale networks.
Requirements
- U.S. Citizenship required
- Active TS/SCI clearance required
- Ability to obtain DHS Suitability
- 5+ years of relevant experience in cyber incident management or cybersecurity operations.
- Familiarity with NIST 800-62 and FISMA standards.
- Knowledge of attack stages, system administration, and OS hardening techniques.
Nice to have
- GCIH, GCFA, GISP, GCED, CCFP, or CISSP certifications.
Culture & Benefits
- Medical, vision, and dental insurance coverage.
- 401k retirement plan.
- Paid Time Off (PTO) and Holidays.
- Opportunity to work on mission-critical national security initiatives.
- Collaborative team environment focused on innovation and problem-solving.
Будьте осторожны: если работодатель просит войти в их систему, используя iCloud/Google, прислать код/пароль, запустить код/ПО, не делайте этого - это мошенники. Обязательно жмите "Пожаловаться" или пишите в поддержку. Подробнее в гайде →