Incident Manager II

Incident Manager II

Location: Arlington, VA

About the Role

We are seeking a highly skilled Incident Manager II to lead investigations, assess the severity of breaches, develop effective mitigation plans, and assist in restoring services.

This role requires expertise in cyber incident management and cybersecurity operations, with a proactive approach to safeguarding enterprise IT environments.

Eligibility Requirements

U.S. Citizenship

Active TS/SCI Clearance

Ability to obtain DHS Suitability prior to employment

Minimum of 2 years of directly relevant experience in cyber incident management or cybersecurity operations

Key Responsibilities

Research and compile resolution steps or workarounds to mitigate potential

Computer Network Defense (CND) incidents.

Apply knowledge of tactics, techniques, and procedures (TTPs) used by various threat actors to identify and validate threats.

Utilize cybersecurity concepts to detect and defend against intrusions in IT networks, including log data analysis.

Monitor external data sources (e.g., vendor sites, CERTs, SANS) to stay updated on CND threats and assess their potential impact on the enterprise.

Identify the root cause of incidents and collaborate with external entities to determine the infection vector and background of incidents.

Receive and analyze network alerts, determine their causes, and coordinate appropriate responses.

Track and document CND incidents from detection through resolution.

Collaborate with organizational components to obtain and share information related to ongoing incidents.

Provide support during assigned shifts to ensure comprehensive incident management coverage.

Required Skills

Expertise in incident response and handling methodologies.

Familiarity with the NCCIC National Cyber Incident Scoring System for prioritizing incident triage.

Understanding of general attack stages (e.g., scanning, gaining access, privilege escalation).

Ability to recognize and categorize types of vulnerabilities and associated attacks.

Knowledge of system administration and operating system hardening techniques.

Understanding of CND policies, procedures, and regulations.

Awareness of operational threat environments (e.g., script kiddies, nation-state actors).

Knowledge of system and application security vulnerabilities, such as buffer overflow, cross-site scripting, injections, and malicious code.

Ability to work collaboratively across multiple locations. Desired Skills Advanced knowledge of system administration and operating system hardening.

Familiarity with diverse operational threat environments and associated risks.

Proficiency in addressing application security threats and vulnerabilities.

Desired Certifications

GCIH, GCFA, GISP, GCED, CCFP, or CISSP

Required Education

• Bachelor's degree in Incident Management, Operations Management, Cybersecurity, or a related field
• OR High School Diploma with 4 years of incident management or cybersecurity experience

Why Join Us?

This position offers an opportunity to work in a high-stakes, dynamic environment where you can apply your expertise to protect critical infrastructure and systems. The hiring company offered competitive compensation, career growth opportunities, and a collaborative culture.

Apply online TODAY to be part of a team dedicated to protecting enterprises from evolving cyber threats!​​

EOE