Cybersecurity Incident Response Analyst II
Merit 321
Tier 2 Cybersecurity Incident Response Analyst
The Tier 2 Cybersecurity Incident Response Analyst provides advanced incident response support for NIH enterprise and cloud environments. This role responds to hotline-reported incidents and performs investigation, containment, and recovery activities in accordance with NIH policies, HHS requirements, NIST standards, and Client CISA guidance.
Key Responsibilities
- Respond to and manage incidents reported through the NIH cybersecurity hotline
- Log, categorize, investigate, and escalate incidents per NIH procedures
- Perform Tier 2/3 incident response across on-premises and cloud environments (Azure, AWS, GCP)
- Conduct forensic analysis, threat hunting, and log correlation
- Coordinate response activities with NIH stakeholders and service providers
- Develop executive summaries for significant incidents and third-party events
- Develop and maintain incident response playbooks, SOPs, and KB documentation
- Support annual updates to the NIH Incident Response Plan
- Contribute to incident response maturity assessments and improvement roadmaps
Required Qualifications
- At least 3 years of cybersecurity incident response experience
- Bachelor’s degree in related field
- Experience supporting federal, NIH, HHS, or healthcare environments
- Working knowledge of:
- NIST Cybersecurity Framework (CSF)
- NIST SP 800-61 Rev. 2
- NIST SP 800-53 Rev. 5 (IR, AU, SI, CA families)
- Client CISA guidance
- Hands-on experience responding to incidents in cloud environments
- Strong written communication skills, including executive-level reporting
Preferred Qualifications
- Experience developing or maintaining incident response playbooks
Incident response or security certifications (GCIH, GCIA, CISSP, etc.)
Vacancy posted 4 days ago
Similar jobs that could be interesting for youBased on the Cybersecurity Incident Response Analyst II in Bethesda, MD vacancy
- ...Industries in Washington, D.C. is seeking a SOC Analyst II to join our Security Operations team.... ..., triaging, and responding to cybersecurity threats. The ideal candidate will possess... ...The SOC Analyst II will handle security incidents, conduct investigations, and...Suggested
- ...detection/prevention and cybersecurity tools administration.... ...holiday workdays. Responsibilities Provide on-site CSSP/... ...triage of CSSP/IR incidents including implementing... ...certification. DoD 8570 IAT-II or above professional... .../INCIDENT RESPONSE ANALYST #J-18808-Ljbffr...SuggestedWork at officeMonday to FridayWeekend work
- Njvc LLC is seeking a Security Operations Center Analyst II in Arlington, VA. The ideal candidate will monitor and manage security events on program networks, ensuring effective incident response and management. A Bachelor’s degree or equivalent experience and a DoD Top...Suggested
- ...A cybersecurity consulting firm is seeking an Incident Response Analyst to support incident management for federal contracts. The role includes event triage, incident investigations, and close coordination with federal cybersecurity teams. Ideal candidates will have experience...SuggestedRemote work
Cyber Synergy Inc
Washington DC1 day ago - ...Incident Response Analyst (Task 4 – Federal Cybersecurity Contract) Location: Remote with occasional on-site (Washington, D.C. Metro Area) Employment Type: Full-Time Clearance: Public Trust (or eligibility to obtain) We are seeking an experienced Incident Response Analyst...SuggestedFull timeContract workRemote workMonday to Friday
Cyber Synergy Inc
Washington DC1 day ago - A cybersecurity firm is seeking a qualified Cybersecurity Service Provider/Incident Response Analyst in Arlington, VA. The ideal candidate will provide on-site support for DoD customers, possessing technical skills in intrusion detection and prevention, and will have a...
- A cybersecurity firm is looking for a Tier 2 Incident Response Analyst to support law enforcement in Washington, DC. You will monitor security tools, triage alerts, and investigate cyber threats. Ideal candidates have six years in cybersecurity, preferably three in SOC...
- ...Global Solutions in Washington, DC is seeking a Senior Security Operations Analyst to monitor and respond to cybersecurity threats. The candidate will analyze security events, manage incident response, and support the National Indian Gaming Commission's cybersecurity...
$127k - $140k
...join Deepwatch’s team of world-class cybersecurity professionals and the brightest... ...comprehensive detection and automated response to cyber threats together with tailored... ...Manager of Adversary Response, the Incident Response Analyst operates on the front lines of active...Permanent employmentWork experience placementWork at officeRemote workWork from homeHome officeFlexible hours$100k - $125k
A cybersecurity solutions provider is seeking an Incident Response Expert III in Arlington, VA. This role involves serving as a subject matter expert in incident response, requiring strong analytical skills and an active TS/SCI clearance. Candidates should have over 8...- Tyto Athene is searching for a Tier 2 Incident Response Analyst (IR) to support a law enforcement customer in Washington, DC. Our IR analysts form the backbone of our cybersecurity services. You will play a critical role in securing our customers by monitoring our tools...Part timeShift workNight shiftWeekend workDay shift2 days per week
- ...is seeking a Security Operations Center Analyst II in Arlington, VA. This role involves monitoring security events, performing incident management, and utilizing various security... ...7 environment and contribute to incident response efforts. #J-18808-Ljbffr Chenega Corporation
$131.3k - $237.35k
...programs, allowing us to better serve our customers through scale and repeatability. Leidos has a critical need for a Senior Incident Response Analyst to support the DHS CISA Program. The Department of Homeland Security (DHS), Security Operations Center (SOC) Support...Flexible hoursLeidos
Arlington, VA1 day ago- Qualifications At least 2 years of incident response experience Experience with Crowdstrike and Web Application Firewall (WAF) Proficient... ...) Cloud experience is a plus Responsibilities Address cybersecurity incidents: identify, isolate, resolve, recover, document,...Remote workVisa sponsorship
- Cayuse Holdings is seeking an ITSM Incident Response Analyst to support and respond to incidents while collaborating with the Service Desk and Desktop support teams. This remote position emphasizes adherence to ITIL-aligned processes, ensuring effective incident management...Remote jobContract work
$100k - $115k
...member of the Information Services Department, the Senior Analyst, Cybersecurity Operations & Response supports the execution and continuous improvement of... ...responsible for assisting with security operations, incident response activities, and threat and vulnerability management...Full timeContract workWork at office- Cortek, Inc. is seeking a Senior Analyst-CBRN in Washington, DC, to support the Office of WMD Response and Planning. This position involves coordinating interagency... ...and enhancing foreign capabilities against CBRN incidents. Applicants must have an active Top-Secret...Work at office
- ...seeking a skilled Security Operations Center Analyst (SOC) in Arlington, Virginia. This role... ...a bachelor's degree and DoD IAT Level II Certification, offering opportunities for... ...monitor security events, analyze network incidents, and utilize various security tools. Join...
$131.3k - $237.35k
...Digital Modernization sector is seeking an experienced SME Incident Response Analyst to support the delivery, enhancement, and adoption of... ...Primary Responsibilities Design, implement, and operate Cybersecurity Incident and Spillage processes and procedures. Prepare,...- Nightwing Group is seeking a Business Analyst to support onsite incident response for U.S. Government agencies experiencing cyber-attacks. The role involves gathering requirements, stakeholder coordination, and ensuring technology integration aligns with operational priorities...
$110k - $170k
Zachary Piper Solutions is looking for a SOC Analyst in McLean, VA to support a critical... ...experience in cyber threat detection and incident analysis and must possess an active TS/SCI Full Scope Polygraph. Responsibilities include detecting cyber-attacks, analyzing...$131.3k - $237.35k
Leidos Inc is seeking a Senior Incident Response Analyst to join their team in Arlington, Virginia. The role involves coordinating incident response efforts, analyzing cyber threats, and developing security protocols for the Department of Homeland Security's CISA Program...- Eliassen Group is seeking a SOC Analyst to join their team in Washington, DC. This... ...monitoring, detection, analysis, and response to cybersecurity events across hybrid cloud and on-premises... ...with security monitoring and incident response, proficiency with SIEM tools...Remote work
- Chenega Agile Real Time Solutions, LLC is seeking a Security Operations Center Analyst II in Arlington, VA. The role involves monitoring networks, managing events, and conducting incident analysis. Candidates must have a Bachelor's degree or equivalent experience, as well...
- ## (Cyber) Incident Management Analyst - HybridApplylocations: Arlington, VAtime type: Full timeposted... ...provide support for onsite incident response to civilian Government agencies and... ...and validate threats- Applying cybersecurity concepts to the detection and defense...Contract workImmediate startShift work
- NewGen Technologies is seeking a Business Analyst to support a critical U.S. Government mission involving cybersecurity. The role includes leading requirements gathering and facilitating stakeholder coordination for technology initiatives that align with operational goals...
- ...The current contract involves onsite incident response for civilian agencies and critical asset... ...identify and validate threats. Use cybersecurity concepts to detect and defend against... ...Compromise (IOCs) and escalate to specialized analysts. Required Skills U.S. Citizenship....Contract workShift work
- ...Government customer to provide onsite incident response to civilian Government agencies and critical... ...within the enterprise Applying cybersecurity concepts to the detection and defense... ...Compromise (IOCs), escalating to specialized analysts Required Skills U.S. Citizenship...Contract workImmediate startShift workNight shiftWeekend work
- ...Arlington, Virginia is seeking a dedicated professional for Incident Management support. This role involves investigating and mitigating... ...teams. The ideal candidate holds a Bachelor’s degree in Cybersecurity or a related field, has at least 2 years of experience in cybersecurity...
- ...provide support for onsite incident response to civilian Government agencies... .... We are seeking a Business Analyst to support this critical... ...Experience supporting federal cybersecurity programs - Background in technology... ...: - DoD 8140 IAT Level II - ITIL, CBAP, PMI-PBA -...Contract workLocal areaImmediate startFlexible hours
BCMC, LLC
Arlington, VA2 days ago
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Cybersecurity Incident Response Analyst II. Be the first to apply!
Related searches
- senior cybersecurity engineer Bethesda, MD
- IT cyber security Bethesda, MD
- cybersecurity software engineer Bethesda, MD
- remote cyber security Bethesda, MD
- cyber security Bethesda, MD
- cyber security incident responder Bethesda, MD
- junior cyber security specialist
- senior cybersecurity analyst
- cyber-security operations specialist
- cyber security specialist