Cyber Incident Responder
$86.8k - $198kBooz Allen Hamilton
- # Cyber Incident ResponderApplylocations: Falls Church, VA: Arlington, VAtime type: Full timeposted on: Posted Todaytime left to apply: End Date: September 7, 2026 (30+ days left to apply)job requisition id: R0241884Cyber Incident Responder**The Opportunity:**Are you ready to take a strategic role in cyber defense? Do you want to use your experience-based knowledge to protect critical infrastructure from the constant onslaught of cyber-attacks? If you want a position that uses your extensive threat analysis skills to perform advanced threat identification and complex incident response, you want to be a Cyber Incident Responder.As an analyst on our team, you’ll analyze logs, forensic data, and threat intelligence to find the advanced threats that are escaping detection and respond to active threats in real time. Using your deep understanding of your customer’s networks, combined with your cyber security experience, you’ll analyze patterns to understand attackers’ goals and stop them from succeeding. Once you find the adversary in the SEIM’s blind spot, you’ll advise the customer on ways to close the gaps and harden their network. Let’s outsmart malicious actors and protect critical infrastructure.Join us. The world can’t wait.**You Have:*** 5+ years of experience in malware analysis, digital forensics, data and network analysis, penetration testing, information assurance, trends analysis, quality control analysis, information assurance, or vulnerability management* Experience applying the NIST incident response life cycle to cybersecurity events* Experience with vulnerability analysis, including static code analysis* Experience with security monitoring and alert triage* Knowledge of system administration, network security concepts, and operating system hardening techniques* Knowledge of security AWS cloud computing services, including Identity and Access Management (IAM), IAM roles, policies, and permission boundaries, CloudTrail, CloudWatch, and common log sources such as VPC Flow Logs, S3 access logs, DNS logs, GuardDuty, Security Hub CPSM, Inspector, and Config* Knowledge of AWS cloud computing infrastructure services, including EC2, S3, VPC, Lambda, EKS, RDS, and Route 53* Ability to apply techniques for detecting host and network-based intrusions using intrusion detection technologies* TS/SCI clearance* Bachelor's degree**Nice If You Have:*** Experience identifying, capturing, containing, and reporting malware* Experience performing damage assessments and documenting incidents through root cause analysis and after-action reports* Experience using security event correlation tools and designing incident response for cloud service models* Experience utilizing AWS command line interface in relation to security-relevant AWS services and log sources* Experience with programming or scripting, including Python and Bash* Knowledge of preserving evidence integrity according to standard operating procedures or national standards* Ability to recognize and categorize types of vulnerabilities and associated attacks* Ability to protect a network against malware, including NIPS, anti-malware, restrict and prevent external devices, and spam filters* Possession of strong written and verbal communication skills* Security+, CISSP, CASP, or GCED Certification**Clearance:** Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information; TS/SCI clearance is required.**Compensation**At Booz Allen, we celebrate your contributions, provide you with opportunities and choices, and support your total well-being. Our offerings include health, life, disability, financial, and retirement benefits, as well as paid leave, professional development, tuition assistance, work-life programs, and dependent care. Our recognition awards program acknowledges employees for exceptional performance and superior demonstration of our values. Full-time and part-time employees working at least 20 hours a week on a regular basis are eligible to participate in Booz Allen’s benefit programs. Individuals that do not meet the threshold are only eligible for select offerings, not inclusive of health benefits. We encourage you to learn more about our total benefits by visiting the Resource page on our Careers site and reviewing Our Employee Benefits page.Salary at Booz Allen is determined by various factors, including but not limited to location, the individual’s particular combination of education, knowledge, skills, competencies, and experience, as well as contract-specific affordability and organizational requirements. The projected compensation range for this position is $86,800.00 to $198,000.00 (annualized USD). The estimate displayed represents the typical salary range for this position and is just one component of Booz Allen’s total compensation package for employees. This posting will close within 90 days from the Posting Date.**Identity Statement**As part of the hiring process, we will ask you to complete an identity verification process that leverages advanced biometrics and artificial intelligence to ensure authenticity and protect against identity fraud. You are expected to be on camera during interviews and assessments. We reserve the right to take your picture to verify your identity and prevent fraud.**Candidate AI Usage Policy**AI is a part of our daily work at Booz Allen, and we are committed to the responsible and ethical use of AI tools. However, we want to ensure a fair candidate process based on **your** own skills and knowledge. As part of this commitment, the use of artificial intelligence (AI) or other tools to assist with responses during interviews (whether in-person or virtual) is prohibited **unless permission is explicitly provided**.**Work Model** Our people-first culture prioritizes the benefits of collaboration, whether it occurs in person or virtually. To support engagement and effective communication, employees working virtually are generally expected to have their cameras on during meetings.* **Remote**: If this position is listed as remote, there may still be occasions when you are required to work in person at a Booz Allen or customer facility.* **Hybrid**: If this position is listed as hybrid, you will be expected to work from a Booz Allen facility frequently, in alignment with leadership expectations and the needs of the role. You may also be required to work from or visit a customer facility.* **Onsite**: If this position is listed as onsite, work will primarily be performed at a Booz Allen office or customer facility, where employees will collaborate directly with colleagues and customers as required by the role.**Commitment to Non-Discrimination**All qualified applicants will receive consideration for employment without regard to disability, status as a protected veteran or any other status protected by applicable federal, state, local, or international law.### About Us**Note: Microsoft Internet Explorer is not fully compatible with Workday and users may experience systems issues with this browser. We recommend that you use one of the following browsers to avoid problems: Google Chrome, Mozilla Firefox, Microsoft Edge, Apple Safari, Opera Browser or Blackberry Browser. If you continue to experience issues, it is sometimes necessary to reset your browser by clearing your cache.** **About Booz Allen Hamilton**Booz Allen is an advanced technology company delivering outcomes with speed for America’s most critical defense, civil, and national security priorities. We build technology solutions using AI, cyber, and other cutting-edge technologies to advance and protect the nation and its citizens. By focusing on outcomes, we enable our people, clients, and their missions to succeed—accelerating the nation to realize our purpose: Empower People to Change the World. **Commitment to Non-Discrimination**All qualified applicants will receive consideration for employment without regard to disability, status as a protected veteran or any other status protected by applicable federal, state, local, or international law.Know Your Rights Poster**Accommodations**If you are an individual with a disability and would like to request a reasonable workplace accommodation for any part of our employment process, please contact the Booz Allen Help Desk by calling View phone number on click.appcast.io or sending an email to View email address on click.appcast.io. **This option is reserved only for individuals who are requesting a reasonable workplace accommodation.** It is not intended for other purposes or inquiries. **Data Privacy** For more information on how Booz Allen uses your information, please see our Careers Privacy Policy.
- J-18808-Ljbffr Booz Allen Hamilton
Vacancy posted 2 days ago
Similar jobs that could be interesting for youBased on the Cyber Incident Responder in Falls Church, VA vacancy
- Booz Allen Hamilton in Falls Church, VA is seeking a Cyber Incident Responder to take a strategic role in protecting critical infrastructure from cyber threats. You will analyze logs and forensic data to identify advanced threats and respond to incidents in real time,...Cyber
- A cybersecurity services provider is seeking an Incident Responder to support the Administrative Offices of the United States Courts in Washington, DC. This role involves incident response and threat hunting, requiring a minimum of 5 years of experience across cloud and...Cyber
$99k - $225k
Cyber Defense Incident Responder The Opportunity: As a security operations center analyst, you’re in the middle of the action, responding to and mitigating threats in real time. You’re the first line of cyber defense for your organization, and they look to you for guidance...CyberFull timeContract workPart timeWork at officeLocal areaRemote work$99k - $225k
...Analyst, you’re in the middle of the action, responding to and mitigating threats in real time. You’re the first line of cyber defense for our organization and your... ...RESPONSIBILITIES Respond to and resolve cybersecurity incidents and proactively prevent recurrence. Monitor...CyberLocal area$65k
...Consulting Services) Internal Job Profile Code: TCS055, T1, Band 4 Job-Specific Essential Duties and Responsibilities: Respond to cyber incidents, including handling SOC IR phone calls and emails from clients and customer points of contact. Support detection and incident...Cyber- cFocus Software seeks a n Incident Responder to support the Administrative Offices of the United States Courts (AOUSC) in Washington, DC. This... ...on identifying, analyzing, and mitigating sophisticated cyber threats while strengthening detection capabilities and improving...CyberWork at officeRemote work
- ...Summary The Cyber Defense Incident Responder (Advanced) performs hands-on technical work while guiding and directing senior and mid-level analysts. This role involves advanced threat detection, threat intelligence research, practical application of threat intelligence...CyberWork at officeWeekend work
S2i2 Inc
Arlington, VA2 days ago - ...Cyber Incident Responder Detect-Response performs all procedures necessary to ensure the safety of information systems assets and to protect systems from intentional or inadvertent access or destruction. Monitor, evaluate, and maintain systems and procedures to safeguard...CyberShift work
IC-CAP, LLC
Washington DC21 hours ago $65k - $74.1k
A leading consulting firm in Washington DC is looking for an experienced Cyber Defense Incident Handler. You will respond to incidents, support detection and analysis of cyber threats, and maintain knowledge of security protocols. Candidates should have a bachelor's degree...Cyber$104k - $166k
Peraton in Arlington, VA is seeking an experienced Incident Response Analyst (ICS/OT/SCADA) to manage cybersecurity incidents. This role requires collaboration with various teams to enhance security operations and requires a Bachelor's degree with relevant experience....Cyber- A leading cybersecurity firm in Virginia is seeking a Cyber Eviction Lead to enhance incident response capabilities. The ideal candidate will have a strong background in cyber defense, experience in responding to complex incidents, and relevant certifications. Responsibilities...Cyber
- A prominent cybersecurity firm is seeking a Tier 2 Incident Response Analyst to support law enforcement in Washington, DC. This role involves monitoring tools, triaging alerts, and investigating cyber threats as part of a collaborative SOC team. Candidates should have extensive...Cyber
- A technology firm in Virginia is seeking an experienced SME Cyber Incident Response Analyst to join its team. This role involves monitoring and responding to cyber threats, leading incident response activities, and providing expert investigative support. Ideal candidates...Cyber
- ...Everforth ECS is seeking a Mid. Cyber Incident Coordinator to work out of our Arlington, VA office. Everforth ECS is seeking... ...providing support to JCDC as they continue to plan, share, and respond to cyber threats in real time to support the greater cyber...CyberWork at office3 days per week
ECS Limited
Arlington, VA21 hours ago - ...Incident Response Expert III (Cyber Eviction Analysts) The DHS's Hunt and Incident Response Team (HIRT) secures the nation's infrastructure. HIRT... ...Analyst - DoD 8140.01 GCIA, GCIH, CSSP Analyst/CSSP Incident Responder - DoD 8140.01 CEH, CSSP Analyst - SANS GIAC GNFA...CyberLocal areaImmediate start
Argo Cyber Systems
Arlington, VA4 days ago - ...Senior Cyber Incident Analyst Everforth ECS is seeking a Senior Cyber Incident Analyst to work in our Arlington, VA office. ECS is... ...providing support to JCDC as they continue to plan, share, and respond to cyber threats in real time to support the greater cyber...CyberWork at office3 days per week
ECS Limited
Arlington, VA21 hours ago - ...of degree. Demonstrated understanding of cyber-attacks and how they impact IT systems.... ...to ATT&CK tactics and techniques during incident triage and reporting. Demonstrated experience... ...and ticket submissions. Monitor, respond, and catalog targeted notification section...Cyber
- ...Position Overview: We are seeking a highly skilled Lead Incident Responder to manage and maintain critical security documentation and ensure... ...Information (PII), and coordinating remediation efforts. Cyber Threat Monitoring: Develop and maintain a Cyberthreat Dashboard...CyberContract workFor contractorsWork at officeLocal area
DirectViz Solutions, LLC
Washington DC5 days ago - ...Lead Incident Responder Evolver Federal is seeking a Lead Incident Responder to fulfill a requirement for a potential government client.... ...improvement to strengthen organizational resilience against evolving cyber threats. This position requires deep technical expertise,...CyberContract workFlexible hours
Evolver Federal
Washington DC3 days ago - The DHS’s Hunt and Incident Response Team (HIRT) secures the nation’s infrastructure. HIRT... ...provides DHS’s front-line response for cyber incidents and proactive hunting for malicious... ...GCIA, GCIH, CSSP Analyst/CSSP Incident Responder - DoD 8140.01 CEH, CSSP Analyst -...CyberLocal areaImmediate startFlexible hours
BCMC, LLC
Arlington, VA4 days ago $57.2k - $109.4k
...training, and more. Your Role As a Cybersecurity Incident Response Triage Specialist, you will be a key player in our Cyber Incident Response Team (CIRT) within the Chief... .... Key Responsibilities Monitor and respond to cybersecurity incidents pertaining to policy...CyberWork experience placement- ...Leidos Digital Modernization sector is seeking an experienced SME Cyber Incident Response Analyst to support the delivery, enhancement, and... ...Responsibilities Monitor, detect, analyze, mitigate, and respond to cyber threats across the enterprise. Lead incident detection...Cyber
- ...A leading cybersecurity firm is looking for Cyber Eviction Analysts in Arlington, Virginia. This role involves incident response, analyzing threats, and advising technical personnel on countermeasures. Candidates must have active TS/SCI clearance, a relevant degree, and...Cyber
NewGen Technologies (Maryland)
Arlington, VA3 days ago $72.7k
Company : Highmark Health Job Description : JOB SUMMARY This role will manage and investigate live security incidents. Cyber Incident Responders work independently or collaboratively depending on each event and will serve as a subject matter expert who works to improve...CyberFor contractorsWork at officeLocal areaRemote work$104k - $166k
...Peraton is currently seeking to hire an experienced Incident Response Analyst (ICS/OT/SCADA) for its Federal Strategic Cyber group. Location: On-site in Arlington, VA... ...Travel: Approximately 40% In This Role, You Will: Respond to cybersecurity incidents across IC, OT, and...CyberContract workTemporary workCurrently hiringShift work1 day per week- ...and endpoints to ensure the rapid detection and response to cyber incidents. Maintain and evolve IR SOPs in strict accordance with CJCSM... ...Associate), GCED, GCIH, or CCSP Active DoD 8570 CSSP Incident Responder certification a plus , including at least one of the...CyberWork at office
- ...A leading cybersecurity firm in Arlington, VA is seeking a Cyber Incident Manager to lead incident response operations for federal agencies. The role involves direct coordination of incident response activities, analysis of incident data, and development of response procedures...CyberShift work
ARGO Cyber Systems, LLC
Arlington, VA3 days ago - ...A cybersecurity firm located in Arlington, Virginia, is seeking an experienced professional for a role in cyber incident management. The candidate will support the management of cyber incidents, create reports, and coordinate with stakeholders. Requirements include 5+...Cyber
Base One Technologies
Arlington, VA4 days ago - ...Farfield Systems in Arlington, Virginia is seeking a Cyber Incident Management professional to oversee the incident response lifecycle, coordinate with stakeholders, and support cyber operations. Ideal candidates should have over 5 years of relevant experience in cyber...Cyber
Farfield Systems, Inc
Arlington, VA4 days ago - ...A technology firm is seeking an experienced Cyber Incident Manager in Arlington, VA. The role involves correlating incident data, performing incident triage, and tracking incidents to resolution. Candidates must have 5+ years of relevant experience and an active TS/SCI...Cyber
Node.Digital
Arlington, VA4 days ago
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Cyber Incident Responder. Be the first to apply!
