Cybersecurity Incident Response Team -CIRT Lead

ASRC Federal NetCentric Technology seeks an on-site Cybersecurity Incident Response Team (CIRT) Lead in Alexandria, Virginia or Seaside California to support our Cybersecurity Support Services contracts. This position performs activities related to leading and coordinating cybersecurity incident response team actions primarily responsible for containing, responding to, and eradicating threats and other malicious activity. This position helps build and improve cybersecurity incident response capabilities by coordinating both internally and externally in routine and/or high-priority investigations, identifying incident response process improvements, preparing reports and briefing technical and non-technical personnel and senior level management. This position may require support to respond to and investigate cyber events should an incident occur after regular business hours.     Key Responsibilities: Incident Management: Act as the primary point of contact for all major security incidents which includes tracking incidents, corrective measures taken, recommendations, and remediation activities; completing incident reports for investigations as needed; providing or contributing to weekly report of events and incidents. Team Leadership: Supervise and mentor a team of cybersecurity incident response professionals, providing guidance and support to ensure proper monitoring and logging across the network infrastructure and endpoints in an effort to detect and respond to cyber incidents promptly. Threat Analysis: Analyze and assess cybersecurity threats, vulnerabilities, and incidents to determine root cause trends or patterns that ultimately lead to the development of appropriate response strategies. Incident Response Planning: Develop and maintain comprehensive incident response plans and procedures. Communication: Serve as the primary point of contact for incident response activities, communicating with stakeholders, including senior management and cross-functionally amongst IT teams, and external partners. Provide regular reports to program leadership, DoD officials, and other stakeholders on the status of security incidents, lessons learned, and the effectiveness of response strategies. Compliance: Provide expert guidance on compliance with cybersecurity directives, ensuring the DoD program meets all required security controls and risk management policies. Continuous Process Improvement: Regularly review and update incident response processes and procedures (SOP) based on new threats and lessons learned from past incidents in accordance with CJCSM 6510.01B, NIST SP 800-61R2, DoD regulations, and industry best practices.   Preferred Skills: Hands-on knowledge and experience with cybersecurity tools such as Splunk, Tanium, Beyond Trust, ACAS, ESS or Microsoft Defender.   Required Qualifications: Bachelor’s degree in Cybersecurity, Information Technology, or a related field (or equivalent additional experience). Active DoD Secret Clearance with the ability to obtain and maintain a Top-Secret Clearance. 7 years of related information technology and cybersecurity experience. 3 years CIRT experience with one year of CIRT lead experience. Active DoD 8570 IAT Level II certification or greater, including at least one of the following certifications in good standing: CCNA Security, CySA , GICSP, GSEC, Security CE, CND, SSCP, CASP CE, CCNP Security, CISA, CISSP (or Associate), GCED, GCIH, or CCSP. Active DoD 8570 CSSP Incident Responder certification a plus, including at least one of the following certifications in good standing: CEH, CFR, CCNA Cyber Ops, CHFI, CySA , GCFA, GCIH, SCYBER, or PenTest Knowledge of Incident Response Handling Procedures (NIST SP 800-61) Familiarity with cyber adversary tactics and frameworks (such as ATT&CK and D3FEND) On-site in Alexandria, Virginia or Seaside, California   Advantages of Working at ASRC Federal: Learning and Development:After 90 days of employment, regular full-time employees are eligible for our professional development program. This includes annual funding for: Pursuing Associate’s, Bachelor’s, or Graduate Degrees. Obtaining industry-standard professional certifications. Participating in professional certificate programs. Covering registration fees for professional conferences. Employee Resource Groups (ERGs):Engage with colleagues through our ERGs, which foster networking and collaboration among individuals with shared interests, backgrounds, and experiences. Our ERGs include: Women’s Impact Network (WIN). Multicultural ERG. Military Community (MILCOM). Pride ERG for LGBTQ employees and allies. Purpose-Driven Careers:Join a company recognized as a: Certified Great Place to Work. Military Times’ Best for Vets Employer. Military.com’s Top 25 Veteran Employer.   Comprehensive Benefits: Insurance Coverage: Comprehensive plans for medical, dental, vision, life insurance, and short-term/long-term disability. Paid Leave: Inclusive policies for bereavement, military obligations, and parental needs, along with 11 paid holidays annually. Retirement Savings: A 401(k) plan with a generous company match and immediate vesting to help secure your financial future. Incentives: Employee referral bonuses to reward you for helping grow the ASRC Federal Family   Embark on a career with ASRC Federal, where your growth, purpose, and well-being are at the forefront of what we do.   We invest in the lives of our employees, both in and out of the workplace, by providing competitive pay and benefits packages. This position is offering a pay range of $130,000.00 - $165,000.00 depending on experience, seniority, geographic locations, and other factors permitted by law. Benefits offered may include healthcare, dental, vision, life insurance; 401(k); education assistance; paid time off including PTO, holidays, and any other paid leave required by law.

Salary : $130,000 - $165,000