What are the responsibilities and job description for the Senior Incident Response Analyst position at Federal Staffing Solutions Inc.?

lt;span>

We connect our employees with some of the best opportunities around.
< / div>

< / div>

Time and again our employees tell us that the most important thing we offer is respect. Federal Staffing Solutions puts people to work in all types of jobs. When you work with us you build a relationship with a team of employment professionals in your community who have in turn built professional relationships with the businesses that are hiring.
< / div>

< / div>

We are looking for a Senior Incident Response Analyst to work in Arlington VA supporting our client.
< / div>

< / div>

Clearance : US Citizen
< / div>

< / div>

Salary : $111000
< / div>

< / div>

Requirements :

Bachelors degree in Computer Science Engineering Information Technology Cyber Security or related field and 1215 years of related experience. Additional years of experience and / or cyber certifications may be considered in lieu of degree. 
< / li>
Indepth knowledge of each phase of the Incident Response life cycle
< / li>
Expertise of Operating Systems (Windows / Linux) operations and artifacts 
< / li>
Expertise of Enterprise Network Architectures to include routing / switching common protocols (DHCP DNS HTTP etc) and devices (Firewalls Proxies Load Balancers VPN etc) 
< / li>
Ability to recognize suspicious activity / events common attacker TTPs and perform logical analysis and research to determine root cause and scope of Incidents 
< / li>
Expertise with Cyber Kill Chain and have utilized the ATT&CK Framework
< / li>
Have scripting experience with Python PowerShell and / or Bash 
< / li>
Ability to independently prioritize and complete multiple tasks with little to no supervision 
< / li>
Flexible and adaptable selfstarter with strong relationshipbuilding skills 
< / li>
Strong problemsolving abilities with an analytic and qualitative eye for reasoning 
< / li>
Strong verbal and written communication skills 
< / li>
Ability to communicate with all levels of audiences (subordinates peers & leadership) 
< / li>
Candidates will have at least one of the following certifications : SANS GIAC : GCIH GCIA GCFA GPEN GCFE GREM CISSP OSCP OSCE OSWP 

< / li>< / ul>
Preferred Qualifications : 

Experience in cyber government and / or federal law enforcement FISMA systems. 
< / li>< / ul>

Essential Requirements : US Citizenship is required. 


Physical Demands : The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job with or without reasonable accommodation. While performing the duties of this job the employee will regularly sit walk stand and climb stairs and steps. May require walking long distance from parking to work station. Occasionally movement that requires twisting at the neck and / or trunk more than the average person squatting / stooping / kneeling reaching above the head and forward motion will be required. The employee will continuously be required to repeat the same hand arm or finger motion many times. Manual and finger dexterity are essential to this position. Specific vision abilities required by this job include close distance depth perception and telling differences among colors. The employee must be able to communicate through speech with clients and public. Hearing requirements include conversation in both quiet and noisy environments. Lifting may require floor to waist waist to shoulder or shoulder to overhead movement of up to 20 pounds. This position demands tolerance for various levels of mental stress. 



Job Duties : 

Coordinate investigation and response efforts throughout the Incident Response lifecycle 
< / li>
Correlate and and analyze events and data to determine scope of Cyber Incidents 
< / li>
Acquire and analyze endpoint and network artifacts volatile memory malicious files / binaries and scripts 
< / li>
Recognize attacker tactics techniques and procedures as potential indicators of compromise (IOCs) that can be used to improve monitoring analysis and Incident Response. 
< / li>
Develop document and maintain Incident Response process procedures workflows and playbooks 
< / li>
Tune and maintain security tools (EDR IDS SIEM etc) to reduce false positives and improve SOC detection capabilities 
< / li>
Document Investigation and Incident Response actions taken in Case Management Systems and prepare formal Incident Reports
< / li>
Create metrics and determine Key Performance Indicators to drive maturity of SOC operations 
< / li>
Develop security content such as scripts signatures and alerts

< / li>< / ul>
Equal Opportunity Employer
< / div>
Requirements : Bachelors degree in Computer Science, Engineering, Information Technology, Cyber Security, or related field and 12-15 years of related experience. Additional years of experience and / or cyber certifications may be considered in lieu of degree. In-depth knowledge of each phase of the Incident Response life cycle Expertise of Operating Systems (Windows / Linux) operations and artifacts Expertise of Enterprise Network Architectures to include routing / switching, common protocols (DHCP, DNS, HTTP, etc), and devices (Firewalls, Proxies, Load Balancers, VPN, etc) Ability to recognize suspicious activity / events, common attacker TTPs, and perform logical analysis and research to determine root cause and scope of Incidents Expertise with Cyber Kill Chain and have utilized the ATT&CK Framework Have scripting experience with Python, PowerShell, and / or Bash Ability to independently prioritize and complete multiple tasks with little to no supervision Flexible and adaptable self-starter with strong relationship-building skills Strong problem-solving abilities with an analytic and qualitative eye for reasoning Strong verbal and written communication skills Ability to communicate with all levels of audiences (subordinates, peers & leadership) Candidates will have at least one of the following certifications : SANS GIAC : GCIH, GCIA, GCFA, GPEN GCFE, GREM CISSP OSCP, OSCE, OSWP Preferred Qualifications : Experience in cyber government, and / or federal law enforcement FISMA systems. Essential Requirements : US Citizenship is required.
Key Skills
Children Activity,Apprentice,Advertising,Gallery,IT Software,Barista
Employment Type : Full Time
Vacancy : 1
About Company : Federal Staffing Solutions Inc.

Salary : $111,000

Apply for this job

Receive alerts for other Senior Incident Response Analyst job openings

Senior Incident Response Analyst

What are the responsibilities and job description for the Senior Incident Response Analyst position at Federal Staffing Solutions Inc.?

What is the career path for a Senior Incident Response Analyst?

Job openings at Federal Staffing Solutions Inc.

Not the job you're looking for? Here are some other Senior Incident Response Analyst jobs in the Arlington, VA area that may be a better fit.

We don't have any other Senior Incident Response Analyst jobs in the Arlington, VA area right now.

AI Assistant is available now!