Incident Response (IR) Analyst

Remote: N
Salary: $50-60/hr
Location: Pensacola, FL
Clearance: Top Secret

 

We are seeking a Cyber Security Incident Responder who can support our customer in the detection, response, mitigation, and reporting of cyber threats affecting the client networks. This position requires shift work including nights/weekends.

 

Qualifications:

  • Required Education: Bachelor of Science
  • Must be a US Citizen
  • Must have an active TOP SECRET clearance with ability to obtain a TS/SCI
  • Must be able to obtain DHS Suitability prior to starting employment
  • 5+ years of related experience
  • Hands-on experience in the detection, response, mitigation, and/or reporting of cyber threats affecting client networks and one or more of the following:
    • Experience in computer intrusion analysis and incident response
    • Experience with Intrusion detection
    • Computer network surveillance/monitoring
    • Knowledge and understanding of network protocols, network devices, multiple operating systems, and secure architectures
    • Experience in computer evidence seizure, computer forensic analysis, and data recovery
    • Computer network forensics
    • System log analysis
    • Experience with current cyber threats and the associated tactics, techniques, and procedures used to infiltrate computer networks
    • Current experience with network intrusion detection and response operations (Protect, Defend, Respond and Sustain methodology)
    • Current experience with cyber threats and the associated tactics, techniques, and procedures used to infiltrate computer networks
    • Demonstrated ability to document processes
    • The ability to respond to crises objectively
    • Proficiency with MS Office Applications
    • Must be able to work collaboratively across agencies and physical locations

 

Desired Skills:

  • Scripting experience (python, perl etc…)
  • Experience with process development and deployment
  • Excellent writing skills
  • Prior experience with data visualization products such as Analyst Notebook is desired.
  • Prior experience with Splunk
  • Prior experience working in one of the following highly desired: Security Operations Center (SOC/NOSC) Computer Emergency Response Team (CERT/CIRT) DOD/FED Cyber Intel organization DCIO/MCIO, with Cyber Counterintelligence focus

 

Responsibilities:

  • Providing support in the detection, response, mitigation, and reporting of cyber threats affecting client networks
  • Maintain an understanding of the current vulnerabilities, response, and mitigation strategies used in cyber security operations
  • Produce reports and briefs to provide an accurate depiction of the current threat landscape and associated risk.
  • Accomplish this through the use of customer, community, and open source reporting
  • Provide analysis for correlated information sources
  • Facilitate the customer’s posturing itself to aggressively investigate cyber activity targeting customer information and its information infrastructure
  • Assist the customer training department in the education of staff on the cyber threat
  • Liaison with other government cyber threat analysis entities, such as intra-agency and inter-agency Cyber Threat Working Groups
  • Maintaining proficiency in the use and production of visualization charts, link analysis diagrams, and database queries
  • Analyze and report cyber threats as well as assist in deterring, identifying, monitoring, investigating and analyzing computer network intrusions
  • Additional duties may include providing intrusion support to high technology investigations in the form of computer evidence seizure, computer forensic analysis, data recovery, and network assessments
  • Meet and maintain customer required Information Assurance training compliance
Job Category: Information Technology
Job Type: Full Time
Job Location: FL

Apply for this position

Allowed Type(s): .pdf, .doc, .docx