Cybersecurity Incident Response Analyst II
Merit 321
Tier 2 Cybersecurity Incident Response Analyst
The Tier 2 Cybersecurity Incident Response Analyst provides advanced incident response support for NIH enterprise and cloud environments. This role responds to hotline-reported incidents and performs investigation, containment, and recovery activities in accordance with NIH policies, HHS requirements, NIST standards, and Client CISA guidance.
Key Responsibilities
- Respond to and manage incidents reported through the NIH cybersecurity hotline
- Log, categorize, investigate, and escalate incidents per NIH procedures
- Perform Tier 2/3 incident response across on-premises and cloud environments (Azure, AWS, GCP)
- Conduct forensic analysis, threat hunting, and log correlation
- Coordinate response activities with NIH stakeholders and service providers
- Develop executive summaries for significant incidents and third-party events
- Develop and maintain incident response playbooks, SOPs, and KB documentation
- Support annual updates to the NIH Incident Response Plan
- Contribute to incident response maturity assessments and improvement roadmaps
Required Qualifications
- At least 3 years of cybersecurity incident response experience
- Bachelor’s degree in related field
- Experience supporting federal, NIH, HHS, or healthcare environments
- Working knowledge of:
- NIST Cybersecurity Framework (CSF)
- NIST SP 800-61 Rev. 2
- NIST SP 800-53 Rev. 5 (IR, AU, SI, CA families)
- Client CISA guidance
- Hands-on experience responding to incidents in cloud environments
- Strong written communication skills, including executive-level reporting
Preferred Qualifications
- Experience developing or maintaining incident response playbooks
Incident response or security certifications (GCIH, GCIA, CISSP, etc.)
Vacancy posted 2 days ago
Similar jobs that could be interesting for youBased on the Cybersecurity Incident Response Analyst II in Bethesda, MD vacancy
- ...Incident Response Analyst (Task 4 – Federal Cybersecurity Contract) Location: Remote with occasional on-site (Washington, D.C. Metro Area) Employment Type: Full-Time Clearance: Public Trust (or eligibility to obtain) We are seeking an experienced Incident Response...SuggestedFull timeContract workRemote workMonday to Friday
Cyber Synergy
Washington DC4 days ago $60 per hour
...Description Tyto Athene is searching for a Part-Time Tier 2 Incident Response Analyst (IR) to support a law enforcement customer in Washington, DC. Our IR analysts form the backbone of our cybersecurity services. You will play a critical role in securing our...SuggestedPart timeWorldwideShift workNight shiftWeekend workDay shiftTyto Athene, LLC
Washington DC4 days ago- ...Full-Time Description RiVidium is seeking an Incident Response Analyst to support our planned MODES III team supporting Military... ...and Family Policy (MC&FP). This role supports IT, Cybersecurity, and Data Operations - Core Operations and helps deliver...SuggestedFull timeContract workPart timeShift workNight shift
Rividium Inc
Alexandria, VA4 days ago - A cybersecurity consulting firm is seeking an Incident Response Analyst to support incident management for federal contracts. The role includes event triage, incident investigations, and close coordination with federal cybersecurity teams. Ideal candidates will have experience...SuggestedRemote job
- A cybersecurity firm is looking for a Tier 2 Incident Response Analyst to support law enforcement in Washington, DC. You will monitor security tools, triage alerts, and investigate cyber threats. Ideal candidates have six years in cybersecurity, preferably three in SOC...Suggested
- Tyto-Athene is seeking a Part-Time Tier 2 Incident Response Analyst to support law enforcement in Washington, DC. You will monitor cybersecurity tools, triage alerts, and respond to incidents. Ideal candidates have significant cybersecurity experience and a Bachelor's...Part time
$127k - $140k
...join Deepwatch’s team of world-class cybersecurity professionals and the brightest... ...comprehensive detection and automated response to cyber threats together with tailored... ...Manager of Adversary Response, the Incident Response Analyst operates on the front lines of active...Permanent employmentWork experience placementWork at officeRemote workWork from homeHome officeFlexible hours- ...Global Solutions in Washington, DC is seeking a Senior Security Operations Analyst to monitor and respond to cybersecurity threats. The candidate will analyze security events, manage incident response, and support the National Indian Gaming Commission's cybersecurity...
$80k - $92k
...Job Description SkyePoint Decisions is a leading Cybersecurity Architecture and Engineering, Critical Infrastructure... ...SkyePoint Decisions is seeking an experienced Tier 2 Analyst for the Cyber Incident Response Team to support our customer's Federal Strategic Cyber...Contract workLocal areaSkyePoint Decisions
Beltsville, MDa month ago$131.3k - $237.35k
...programs, allowing us to better serve our customers through scale and repeatability. Leidos has a critical need for a Senior Incident Response Analyst to support the DHS CISA Program. The Department of Homeland Security (DHS), Security Operations Center (SOC) Support...Local areaImmediate startRemote workFlexible hoursLeidos
Arlington, VA1 day ago$131.3k - $237.35k
...Digital Modernization sector is seeking an experienced SME Incident Response Analyst to support the delivery, enhancement, and adoption of... ...Responsibilities: Design, implement, and operate Cybersecurity Incident and Spillage processes and procedures. Prepare...Local areaImmediate startLeidos
Alexandria, VA4 days ago$40 per hour
...We are looking for experienced cybersecurity professionals to join our team to help train... ..., Ireland, Australia, and New Zealand Responsibilities Evaluate AI-generated cybersecurity content... ...g., penetration testing, red teaming, incident response, detection engineering, DFIR,...Hourly payFull timePart timeRemote workDataAnnotation
Washington DC2 days ago$30 - $39 per hour
...Overview Job Title: ITSM Incident Response Analyst Location: Remote Type: Independent Contract - Corp to Corp/1099 Start Date: ASAP Pay Rate: $30-39/hr (Independent Contract) Contract Length: throughAugust 31 Responsibilities Serve as a...Contract workFor contractorsWork experience placementLocal areaImmediate startRemote workCayuse Holdings
Washington DC3 days ago- Ernst & Young Oman is looking for a Cyber Triage and Forensics (CTF) Incident Analyst to be a senior member of the technical team handling security incidents. Responsibilities include performing digital forensic analysis, responding to security incidents, and developing...Flexible hours
- ...seeking a Security Operations Center (SOC) Analyst to support 24x7 security monitoring, alert triage, and incident response activities. This role involves validating alerts... ...should have a bachelor's degree in Cybersecurity, at least four years of SOC experience, and...Remote job
$130.36k - $221.6k
...Data Analyst BAE Systems is seeking a Data Analyst to join our team and provide... ...by Q3/Q4 of 2026. The Data Analyst responsibilities include, but are not limited to:... ...Skills Bachelor's Degree in IT, Cybersecurity, Computer Science, Information Systems...Full timeContract workLocal areaBAE Systems USA
Washington DC2 days ago- ...Business Analyst II Location: Rockville, MD Duration: 3 months, Onsite Day-to-day Responsibilities: Architect, develop, and implement AWS infrastructure (VPCs, subnets... ...high system reliability and rapid incident response. Stay current with evolving...
Ark Solutions
Rockville, MD5 days ago $120k - $145k
...Corporation is looking for an experienced Information Security Analyst (SME) to join their team in Washington, DC. The ideal... ...Degree and over 4 years of experience in security analysis and incident response. Responsibilities include maintaining threat awareness, developing...$71k - $119k
...Application Development, Cybersecurity, Virtualization, Cloud... ...seeking a ServiceNow Analyst to join our team at... ...platform. You will be responsible for requirements... ...support role. IAT Level II Certification equivalent... ...modules such as Incident, Problem, Change, CMDB...Hourly payContract workTemporary workWork experience placementRemote workRelocation packageLink Solutions, Inc.
Adelphi, MD5 days ago- ...Cybersecurity Operations Specialist This position is contingent upon award of a government... ...operations, RMF compliance, incident response, and continuous monitoring support.... ...clearance or eligibility IAT Level II certification Experience with RMF, STIGs...Contract workFor contractors
T & T Consulting Services, Inc.
Silver Spring, MD3 days ago - ...SOSi is seeking a Risk and Vulnerability Analyst II to support vulnerability assessment and... ...with our customer. This role is responsible for conducting vulnerability scanning and... ...emergency vulnerability scanning in support of incident investigation and response activities...Contract workWork at officeWorldwideMonday to FridayWeekend workAfternoon shift
SOSi
Washington DC14 days ago $82.55k - $149.23k
...currently has an opening for a Hunt Analyst supporting the HEITS... ...Program (ITP) supporting the Cybersecurity and Infrastructure Security... ...selected candidate will be responsible for the following: Review... ...enforcement and report the incident to the U.S. Federal Trade...Contract workLocal areaImmediate startMonday to FridayWeekend workLeidos
Arlington, VA2 days ago$95k - $105k
...remote from home! What you’ll do: Responsible for supporting the ongoing monitoring efforts... ...approvals, testing, monitoring, and incident reporting processes. Support third-... ...risk (e.g., NIST AI RMF, NIST Cybersecurity Framework, SOC/SSAE, ISO/IEC 27001 concepts...Work experience placementRemote workWork from homeCarrington
Washington DC5 days ago- ...Analyst II (Budget) Arlo Solutions (Arlo) is an information technology consulting services company that specializes in delivering technology... ...reduce costs, but to improve business processes, accelerate response time, improve services to end-users, and give our customers a...Work at office
Arlo Solutions
Alexandria, VA5 days ago - ...great place to work. The Role We're looking for a Sourcing Analyst II. The Procurement Sourcing & Contracts Analyst plays a vital... ...in procurement strategies. Essential Duties and Responsibilities: * Execute tactical activities such as developing and distributing...Full timeContract work
Avalon Bay
Arlington, VA3 days ago - ...ECS is seeking a Senior Tier-3 Analyst to work in the National Capital... ...handling the most complex escalated incidents that cannot be resolved at lower... ...tiers and directing coordinated response activities across engineering, cybersecurity, data operations, and platform operations...Contract work
ECS Limited
Falls Church, VA2 days ago - ...Analyst Coder II Zimmerman Associates, Inc. (ZAI) is seeking an Analyst Coder II to support adverse event reporting and safety data management... ...the Data Management Platform (DMP). This position is responsible for coding and quality review of Individual Case Safety...
Zimmerman Associates
Washington DC6 days ago - ...Analyst II Primary Location: Washington DC Clearance: Active Top Secret, TS/SCI Obsidian Solutions Group (OSG) is seeking... ..., Technical, Training/Facilitation, and Change Management responsibilities. This position also serves as a key resource to clients through...Work at office
Obsidian Solutions Group
Washington DC5 days ago - ...USGI is seeking an Operational Analyst II to provide support that complements the Government's expertise in accomplishing its mission... ..., evaluations, recommendations, training, and services. Responsibilities Formulate and apply mathematical modeling and other...Temporary work
Universal Strategy Group
Arlington, VA3 days ago - ...Leesburg, VA.We specialize in cybersecurity and support multiple... ...We are seeking SOC Analyst for multiple opportunities that... ...investigate various cyber events and incidents using native and security tools... ...highly preferred and a DOD IAT II certification Clearance...Remote workTrial periodMonday to FridayShift workNight shiftDay shiftAfternoon shift
ClearFocus Technologies
Washington DC1 day ago
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Cybersecurity Incident Response Analyst II. Be the first to apply!
Related searches
- cyber security Bethesda, MD
- remote cyber security Bethesda, MD
- cybersecurity software engineer Bethesda, MD
- cyber security incident responder Bethesda, MD
- senior cybersecurity engineer Bethesda, MD
- IT cyber security Bethesda, MD
- cyber security part time Bethesda, MD
- cybersecurity rmf analyst
- comptia cybersecurity analyst
- junior cyber security consultant