Cybersecurity Incident Response Analyst II
Merit 321
Tier 2 Cybersecurity Incident Response Analyst
The Tier 2 Cybersecurity Incident Response Analyst provides advanced incident response support for NIH enterprise and cloud environments. This role responds to hotline-reported incidents and performs investigation, containment, and recovery activities in accordance with NIH policies, HHS requirements, NIST standards, and Client CISA guidance.
Key Responsibilities
- Respond to and manage incidents reported through the NIH cybersecurity hotline
- Log, categorize, investigate, and escalate incidents per NIH procedures
- Perform Tier 2/3 incident response across on-premises and cloud environments (Azure, AWS, GCP)
- Conduct forensic analysis, threat hunting, and log correlation
- Coordinate response activities with NIH stakeholders and service providers
- Develop executive summaries for significant incidents and third-party events
- Develop and maintain incident response playbooks, SOPs, and KB documentation
- Support annual updates to the NIH Incident Response Plan
- Contribute to incident response maturity assessments and improvement roadmaps
Required Qualifications
- At least 3 years of cybersecurity incident response experience
- Bachelor’s degree in related field
- Experience supporting federal, NIH, HHS, or healthcare environments
- Working knowledge of:
- NIST Cybersecurity Framework (CSF)
- NIST SP 800-61 Rev. 2
- NIST SP 800-53 Rev. 5 (IR, AU, SI, CA families)
- Client CISA guidance
- Hands-on experience responding to incidents in cloud environments
- Strong written communication skills, including executive-level reporting
Preferred Qualifications
- Experience developing or maintaining incident response playbooks
Incident response or security certifications (GCIH, GCIA, CISSP, etc.)
Vacancy posted 3 days ago
Similar jobs that could be interesting for youBased on the Cybersecurity Incident Response Analyst II in Bethesda, MD vacancy
- ...Incident Response Analyst (Task 4 – Federal Cybersecurity Contract) Location: Remote with occasional on-site (Washington, D.C. Metro Area) Employment Type: Full-Time Clearance: Public Trust (or eligibility to obtain) We are seeking an experienced Incident Response...SuggestedFull timeContract workRemote workMonday to Friday
Cyber Synergy
Washington DC4 days ago - ...Full-Time Description RiVidium is seeking an Incident Response Analyst to support our planned MODES III team supporting Military... ...and Family Policy (MC&FP). This role supports IT, Cybersecurity, and Data Operations - Core Operations and helps deliver...SuggestedFull timeContract workPart timeShift workNight shift
Rividium Inc
Alexandria, VA4 days ago - Tyto-Athene is seeking a Part-Time Tier 2 Incident Response Analyst to support law enforcement in Washington, DC. You will monitor cybersecurity tools, triage alerts, and respond to incidents. Ideal candidates have significant cybersecurity experience and a Bachelor's...SuggestedPart time
- A cybersecurity firm is looking for a Tier 2 Incident Response Analyst to support law enforcement in Washington, DC. You will monitor security tools, triage alerts, and investigate cyber threats. Ideal candidates have six years in cybersecurity, preferably three in SOC...Suggested
- A cybersecurity consulting firm is seeking an Incident Response Analyst to support incident management for federal contracts. The role includes event triage, incident investigations, and close coordination with federal cybersecurity teams. Ideal candidates will have experience...SuggestedRemote job
$100k - $125k
A cybersecurity solutions provider is seeking an Incident Response Expert III in Arlington, VA. This role involves serving as a subject matter expert in incident response, requiring strong analytical skills and an active TS/SCI clearance. Candidates should have over 8...- ...with expertise in malware analysis and cybersecurity incidents. The ideal candidate will have over 12 years... ..., and an active security clearance. Responsibilities include analysis in a 24x7 environment and training junior analysts. A flexible hybrid schedule is offered for...Full timeFlexible hours
- A federal cybersecurity organization is seeking an experienced CIRT Tier 2 Analyst to work on-site in Beltsville, Maryland. This role... ...responding to cyber security incidents in a 24x7 environment. The... ...including knowledge of incident response, SOAR systems, and SIEM...
$60 per hour
Description Tyto Athene is searching for a Part-Time Tier 2 Incident Response Analyst (IR) to support a law enforcement customer in Washington, DC. Our IR analysts form the backbone of our cybersecurity services. You will play a critical role in securing our customers...Part timeShift workNight shiftWeekend workDay shift$127k - $140k
...join Deepwatch’s team of world-class cybersecurity professionals and the brightest... ...comprehensive detection and automated response to cyber threats together with tailored... ...Manager of Adversary Response, the Incident Response Analyst operates on the front lines of active...Permanent employmentWork experience placementWork at officeRemote workWork from homeHome officeFlexible hours- ...Global Solutions in Washington, DC is seeking a Senior Security Operations Analyst to monitor and respond to cybersecurity threats. The candidate will analyze security events, manage incident response, and support the National Indian Gaming Commission's cybersecurity...
- A cybersecurity consulting firm in Virginia is seeking a Host Forensics Analyst to support critical missions related to cybersecurity incidents. The position requires at least 8 years of relevant... ...an active TS/SCI clearance. Responsibilities include leading forensic teams...
$80k - $128k
...The Role Peraton is seeking an experienced Tier 2 Cyber Incident Response Team (CIRT) Analyst to join Peraton's Department of State (DOS) Diplomatic... .... Coordinate and report incident information to the Cybersecurity and Infrastructure Security Agency (CISA). Collab......Interim roleInternshipWork at officeWorldwideAfternoon shift$110k - $160k
CHAOS Industries in Washington, D.C. is looking for a SOC Analyst II to join the Security Operations team. This role involves monitoring... .... The ideal candidate will have 3-5 years of experience in cybersecurity and strong analytical skills. A competitive salary between $1...$131.3k - $237.35k
Leidos is seeking a Senior Incident Response Analyst to support the DHS CISA Program in Arlington, Virginia. The position involves coordinating investigations and responses to cyber incidents, developing Incident Response processes, and utilizing advanced analytical skills...$40 per hour
...We are looking for experienced cybersecurity professionals to join our team to help train... ..., Ireland, Australia, and New Zealand Responsibilities Evaluate AI-generated cybersecurity content... ...g., penetration testing, red teaming, incident response, detection engineering, DFIR,...Hourly payFull timePart timeRemote workDataAnnotation
Washington DC2 days ago$131.3k - $237.35k
...programs, allowing us to better serve our customers through scale and repeatability. Leidos has a critical need for a Senior Incident Response Analyst to support the DHS CISA Program. The Department of Homeland Security (DHS), Security Operations Center (SOC) Support...Local areaImmediate startRemote workFlexible hoursLeidos
Arlington, VA22 hours ago$131.3k - $237.35k
...Digital Modernization sector is seeking an experienced SME Incident Response Analyst to support the delivery, enhancement, and adoption of... ...Primary Responsibilities: Design, implement, and operate Cybersecurity Incident and Spillage processes and procedures....Local areaImmediate startLeidos
Alexandria, VA7 days ago$30 - $39 per hour
...Overview Job Title: ITSM Incident Response Analyst Location: Remote Type: Independent Contract - Corp to Corp/1099 Start Date: ASAP Pay Rate: $30-39/hr (Independent Contract) Contract Length: throughAugust 31 Responsibilities Serve as a...Contract workFor contractorsWork experience placementLocal areaImmediate startRemote workCayuse Holdings
Washington DC4 days ago$80k - $128k
Itlearn360 is seeking an experienced Tier 2 Cyber Incident Response Team Analyst in Beltsville, MD. The role requires skills in incident response, log analysis, and cybersecurity monitoring. Candidates should have a Bachelor's degree, relevant certifications, and experience...Shift workAfternoon shift$110k - $170k
Zachary Piper Solutions is looking for a SOC Analyst in McLean, VA to support a critical... ...experience in cyber threat detection and incident analysis and must possess an active TS/SCI Full Scope Polygraph. Responsibilities include detecting cyber-attacks, analyzing...$131.3k - $237.35k
...our digital transformation and IT programs to better serve customers through scale and repeatability. This role is a Senior Incident Response Analyst supporting the DHS CISA Program within the Department of Homeland Security (DHS) Security Operations Center (SOC) Support...Flexible hours$86k - $138k
Cyber Incident Response Analyst with OT/ICS/SCADA / travel & active TS job at Peraton. Arlington, VA. Program Overview About The Role Peraton... ...- approximately 40%. In this role, you will: Respond to cybersecurity incidents for ICS/OT/IT environments and provide recommendations...Contract workTemporary workInternshipShift work1 day per week- Ernst & Young Oman is looking for a Cyber Triage and Forensics (CTF) Incident Analyst to be a senior member of the technical team handling security incidents. Responsibilities include performing digital forensic analysis, responding to security incidents, and developing...Flexible hours
- Cayuse Holdings is seeking an ITSM Incident Response Analyst to support and respond to incidents while collaborating with the Service Desk and Desktop support teams. This remote position emphasizes adherence to ITIL-aligned processes, ensuring effective incident management...Remote jobContract work
- Qualifications At least 2 years of incident response experience Experience with Crowdstrike and Web Application Firewall (WAF) Proficient... ...) Cloud experience is a plus Responsibilities Address cybersecurity incidents: identify, isolate, resolve, recover, document,...Remote workVisa sponsorship
- ...seeking a Security Operations Center (SOC) Analyst to support 24x7 security monitoring, alert triage, and incident response activities. This role involves validating alerts... ...should have a bachelor's degree in Cybersecurity, at least four years of SOC experience, and...Remote job
- ...Government customer to provide onsite incident response to civilian government agencies and critical... ...of potential incidents. Apply cybersecurity concepts to detect and defend intrusions... ...(IOCs) and escalation to specialized analysts. Required Skills U.S. citizenship....Contract workImmediate startShift work
- ...customer to provide support for onsite incident response to civilian Government agencies and... ...incidents within the enterprise - Applying cybersecurity concepts to the detection and defense... ...(IOCs), escalating to specialized analysts Required Skills: - Must have an active...Contract workImmediate startShift work
$130.36k - $221.6k
...Data Analyst BAE Systems is seeking a Data Analyst to join our team and provide... ...by Q3/Q4 of 2026. The Data Analyst responsibilities include, but are not limited to:... ...Skills Bachelor's Degree in IT, Cybersecurity, Computer Science, Information Systems...Full timeContract workLocal areaBAE Systems USA
Washington DC2 days ago
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Cybersecurity Incident Response Analyst II. Be the first to apply!
Related searches
- cyber security Bethesda, MD
- remote cyber security Bethesda, MD
- cybersecurity software engineer Bethesda, MD
- cyber security incident responder Bethesda, MD
- senior cybersecurity engineer Bethesda, MD
- IT cyber security Bethesda, MD
- cyber security part time Bethesda, MD
- cybersecurity rmf analyst
- comptia cybersecurity analyst
- junior cyber security consultant