5 CyberDefense Incident Responder Jobs in Arlington, VA
SORT BY
N
N
A
A
N
CyberDefense Incident Responder
$104k-133k (estimate)
Full Time
3 Days Ago
ACI Federal is Hiring a CyberDefense Incident Responder Near Arlington, VA
ACI Federal is seeking a CyberDefense Incident Responder to join our vibrant team located in Arlington, VA with a hybrid work schedule.
Overall Position Summary and Objectives
The scope of this task order is to support Security Operations at FDIC by providing support for the FDIC Security
Response Team, Insider Threat program and select Vulnerability Assessment and Scanning tasks.
Required Skills:
•2 years of investigations work experience involving insider risk investigations, security incident response, technical investigations, intellectual property investigations, and/or financial fraud investigations
•3-5 years of experience in UEBA and/or Splunk Enterprise Security
•7 years of experience in Cyber Security domain
•Experience thriving in a heavily regulated environment
•Experience in Splunk content development and Splunk Search Processing Language (SPL)
•Knowledge of Machine Learning (ML) and how it applies to Insider Risk programs.
Preferred Skills: Splunk ES/UBA
Day-to-day Responsibilities:
•Assist in maturing an Insider Risk Program's operational support, including the development of playbooks and workflows for monitoring against potential insider risks, developing detection use cases, and conducting incident analysis.
•Implement federal government and industry standards and best practices regarding insider risk programs, including development and maintenance of OCISO programmatic gap analyses and implementation roadmaps.
•Assist in the creation of Gap Analysis on current tool usage for the Insider Risk program and make recommendations based on industry best practices and client organization.
•Develop and maintain a convergence model for insider risk mitigation that reduces risk to client's personnel and assets.
•Develop and improve insider risk modeling that leverages Splunk User Behavior and Entity Analytics (UEBA), Data Loss Prevention (DLP), Splunk Enterprise Security (ES), Microsoft Purview, Machine Learning, and automated solutions in place."
Expected Deliverables:
•Develop and improve insider risk modeling that leverages Splunk User Behavior and Entity Analytics (UEBA), Data Loss Prevention (DLP), Splunk Enterprise Security (ES), Microsoft Purview, Machine Learning, and automated solutions in place.
•Develop and expand situational playbooks that leverage client's automated capabilities.
•Leverage excellent interpersonal skills to coordinate with client's business and technology leaders to develop and maintain programmatic solutions to insider risk.
•Lead and assist in the investigation of all incidents involving insider risk.
Education: minimum Bachelors
Apply now!
Overall Position Summary and Objectives
The scope of this task order is to support Security Operations at FDIC by providing support for the FDIC Security
Response Team, Insider Threat program and select Vulnerability Assessment and Scanning tasks.
Required Skills:
•2 years of investigations work experience involving insider risk investigations, security incident response, technical investigations, intellectual property investigations, and/or financial fraud investigations
•3-5 years of experience in UEBA and/or Splunk Enterprise Security
•7 years of experience in Cyber Security domain
•Experience thriving in a heavily regulated environment
•Experience in Splunk content development and Splunk Search Processing Language (SPL)
•Knowledge of Machine Learning (ML) and how it applies to Insider Risk programs.
Preferred Skills: Splunk ES/UBA
Day-to-day Responsibilities:
•Assist in maturing an Insider Risk Program's operational support, including the development of playbooks and workflows for monitoring against potential insider risks, developing detection use cases, and conducting incident analysis.
•Implement federal government and industry standards and best practices regarding insider risk programs, including development and maintenance of OCISO programmatic gap analyses and implementation roadmaps.
•Assist in the creation of Gap Analysis on current tool usage for the Insider Risk program and make recommendations based on industry best practices and client organization.
•Develop and maintain a convergence model for insider risk mitigation that reduces risk to client's personnel and assets.
•Develop and improve insider risk modeling that leverages Splunk User Behavior and Entity Analytics (UEBA), Data Loss Prevention (DLP), Splunk Enterprise Security (ES), Microsoft Purview, Machine Learning, and automated solutions in place."
Expected Deliverables:
•Develop and improve insider risk modeling that leverages Splunk User Behavior and Entity Analytics (UEBA), Data Loss Prevention (DLP), Splunk Enterprise Security (ES), Microsoft Purview, Machine Learning, and automated solutions in place.
•Develop and expand situational playbooks that leverage client's automated capabilities.
•Leverage excellent interpersonal skills to coordinate with client's business and technology leaders to develop and maintain programmatic solutions to insider risk.
•Lead and assist in the investigation of all incidents involving insider risk.
Education: minimum Bachelors
Apply now!
Job Summary
JOB TYPE
Full Time
SALARY
$104k-133k (estimate)
POST DATE
06/22/2024
EXPIRATION DATE
07/09/2024
HEADQUARTERS
FREDERICKSBURG, VA
SIZE
100 - 200
FOUNDED
2010
CEO
TONY ASEFI
REVENUE
$10M - $50M
INDUSTRY
IT Outsourcing & Consulting
Related Companies
Show more
Similar Jobs
Popular Articles
Top 10 Things to Avoid Putting on a Job Application
Read Article
How to Describe Your Education in a Resume
Read Article
How to Write a Memorable Cover Letter in 5 Ways
Read Article
4 Personal Finance Tips to Make During Job Transition
Read Article
4 Best Camera Setups for Interview
Read Article
Keeping a Job Search Journal: 9 Types of Journaling You Can Do
Read Article
