Cybersecurity Engineer/Senior Incident Response Analyst

Overview : IDA’s Cyber Security Operations team is seeking an experienced incident response analyst with experience in network / endpoint security engineering.

The analyst maintains the computer and information security incident, damage, and threat assessment programs and leads efforts that identifies and resolves potential security breaches and vulnerabilities and leads cross divisional project teams to implement organization wide cyber security enhancements.

Provides oversight and mentoring or junior and mid-level analyst.

Primary Responsibilities :

Manage and Lead Incident Response Teams

• Forensic analysis of information systems and portable devices
• Malware analyses on trojans, viruses, or malicious code
• Forensic recovery of data using industry tools
• Behavioral analysis of malware to provide indicators for monitoring.

Manage and Lead Information Security Monitoring / Testing

• Monitors and analyzes information security alerts from network devices and information systems.
• Responds and / or directs the response to information security incidents.
• Analyzes indicators of compromise for use in detection
• Assesses risk posture of information systems.
• Collaborates with industry and government sponsors on new threat indicators.

Plan and Lead Information System Security Evaluation and Hardening

• Evaluates new information security technologies.
• Configures and implement information security technologies.
• Validates system hardening and provides guidance for security configuration.
• Manages vendor deliverables and performance.

Leads Information Security Training and Projects

• Develops and conducts employee awareness training for relevant information security trends.
• Recommends tools and techniques to protect IDA information assets.
• Manages and / or contributes to information technology projects.

Performs other duties as assigned.

Minimum Job Qualifications :

Education / Experience :

• Master’s Degree (preferred) or bachelor’s degree in computer science, computer security, or related discipline or equivalent experience in a related field.
• Ten years of experience in Information Technology which includes at least seven years of experience in cyber security.

Knowledge / Skills / Abilities :

• Solid experience with incident handling, threat indicators, tools tactics and procedures, and identification of internet and computer-based threats.
• Extensive experience with a variety of vulnerability scanners, monitoring, intrusion detection systems, endpoint protection software, and forensic or incident response actions.
• Solid experience working in IT or Cyber Security projects and managing project scope, schedule, and budget.
• Possesses or able to obtain within six months an information security certification commensurate with DoD Manual 8140.

03 (including but not limited to ISC2 CISSP or SANS GSLC) preferred.

• Excellent written and oral communications skills, excellent interpersonal skills and the ability to interface with all levels of employees.
• Experience with NIST 800-171 and certification and accreditation of Department of Defense and government computer systems.
• Ability to obtain and maintain appropriate security clearance.
30+ days ago