Sign up to access all features of our service.
  • Job search
  • Favorites
  • Create a CV
    New
  • Salaries
  • Subscriptions

Sr. Cybersecurity Incident Response Specialist

$100k - $120k

Bering Straits Native Corporation

About Bering Straits Professional Services Paragon offers a wide range of environmental investigation, consulting, compliance, and remediation services as well as IT solutions, Facility O&M, Materiel Support, Supply and Security to both private- and public-sector clients throughout Alaska and the Continental U.S. Paragon's experienced professional staff is dedicated to producing high-quality documentation and providing safe field execution to support its clients' projects in line with local, state and federal guidelines and regulations. About this position: Sr. Cybersecurity Incident Response Specialist Location - Washington, DC The Essential Duties and Responsibilities are intended to present a descriptive list of the range of duties performed for this position and are not intended to reflect all duties performed within the job. Other duties may be assigned. To perform this job successfully, an individual must be able to satisfactorily perform each essential duty. The requirements listed below are representative of the knowledge, skill and/or ability required. Reasonable accommodation may be made to enable individuals with disabilities to perform the essential functions of the position. Wage/Salary Range: $100k - $120k Applicants will be notified via phone or email within ten (10) business days of submittal. Essential Duties & Responsibilities Member of the SOC team which provides 24 hours per day, 7 days per week, 365 days per year monitoring and incident response services for the organization's Network, Systems, Applications, and Web services. Provide senior level cybersecurity incident response expertise in support of the client's Incident Response processes and procedures. Develop operational baselines such data flows and application interactions to enhance SOC's ability to respond to incidents. Prepare and manage playbooks and relevant scenarios in addition to narratives and visual diagrams and review continuously, in compliance with NIST SP 800-61 and Government guidance. Follow current guidance from NIST 800-61, Federal Incident Notification Guidelines, CISA's Incident Response and Vulnerability Playbook, and client guidance. Monitor system status and sensor data from deployed sensors and triage for validity from Security Information and Event Management (SIEM) System, email, texts, phone calls and all enterprise managed dashboards. Analyze all sources including network traffic, identity, fault, performance, and bandwidth information, alerts and data to augment detection of network anomalies and unauthorized activity. Meet regularly with client stakeholders to develop content, analytic rules, alerts, dashboards, automation and identify ways to improve availability and efficiency of client's incident response program. Categorize, Prioritize, and Report on cybersecurity events in accordance with (IAW) SOPs and other relevant policies documents. Implement cybersecurity mitigations leveraging client tools and systems. Create and escalate cybersecurity-related investigations to both internal and external entities such as DHS or other Government Agencies with client and Federal defined timelines. Manage, coordinate, and respond to FOIA, audits, data calls, e-discovery and information requests. Schedule and execute incident response tabletop exercises with each client FISMA system on an annual basis. Review and handle phishing messages reported by client staff. Required (Minimum Necessary) Qualifications Education Requirements: High School or GED-General Educational Development-GED Diploma Bachelor's degree in computer science or equivalent is preferred Level of Experience Requirements: Minimum of five years hands-on experience Proven experience detecting, triaging, and responding to cyber incidents across enterprise networks and cloud environments. Knowledge, Skills, Abilities, and Other Characteristics Proficiency with SIEM, EDR/XDR platforms, and forensic tools. Strong understanding of threat actor TTPs, MITRE ATT&CK framework, and incident containment strategies. Ability to analyze network traffic, logs, and endpoint telemetry to identify malicious activity. Familiarity with malware analysis, reverse engineering basics, and memory analysis concepts Experience developing and tuning detection rules, playbooks, and automated response workflows. Working knowledge of incident response frameworks (e.g., NIST SP 800-61, SANS). Understanding of vulnerability management, threat intelligence integration, and SOC metrics/reporting. Understanding of basic computer and networking technologies. Windows and Linux/Unix operating systems Networking technologies (routing, switching, VLANs, subnets, firewalls) Common networking protocols - SSH, SMB, SMTP, FTP/SFTP, DNS, etc. Common enterprise technologies - Active Directory, Group Policy, and the Microsoft Azure suite of cloud services. Understanding of current system logging technology and retrieving information from a plethora of technology platforms. Ability to work well in a team environment. Self-starter with ability to work with little supervision. Willingness to take on and adapt to new, open-ended tasks for which there is no current standard operating procedure. Ability to research independently and self-teach. Strong analytical and decision-making skills under pressure. Excellent written and verbal communication, including incident documentation and executive briefings. Ability to lead investigations, mentor junior analysts, and collaborate with cross-functional teams. Applicants selected will be subject to a government security investigation and must meet eligibility requirements for access to classified information. Accordingly, U.S. Citizenship is required. Preferred Interest in security/hacking culture. Ability to "think like an attacker" General cybersecurity certifications (one or more of the following preferred): CompTIA Security+ CompTIA Cybersecurity Analyst (CySA+) Certified Ethical Hacker (CEH) GIAC Certified Incident Handler (GCIH) Any cloud security certification, especially: CompTIA Cloud+ Certified Cloud Security Professional (CCSP) Cloud Security Alliance Certificate of Cloud Security Knowledge (CCSK) Any Microsoft 365/Azure cybersecurity certification, especially: Microsoft Certified: Security Operations Analyst Associate (SC-200) Microsoft Certified: Security, Compliance, and Identity Fundamentals (SC-900) Microsoft Certified: Azure Fundamentals (AZ-900) Microsoft Certified: Azure Security Engineer Associate (AZ-500) Familiarity with the Microsoft 365 and Microsoft Azure suite of products, including Microsoft Sentinel and Microsoft 365 Defender. Knowledge of common enterprise technologies, policies, and concepts such as: Microsoft Sentinel SIEM Kusto Query Language (KQL) Mobile device technologies (iOS, Android) Scripting experience (PowerShell, Python, etc.) Microsoft Power BI Azure DevOps Artificial Intelligence (AI) / Machine Learning (ML) expertise In-depth knowledge of AI and ML concepts. How to practically apply AI/ML technologies to enhance cyber threat hunting and incident response capabilities. Experience with specific AI services offered within Microsoft Azure. Supervisory Responsibilities This position will not have supervisory responsibilities. DOT Covered/Safety-Sensitive Role Requirements This position is not subject to federal requirements regarding Department of Transportation "safety-sensitive" functions. Necessary Physical Requirements The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this role. Employees must always maintain a constant state of mental alertness. Reasonable accommodation may be made to enable individuals with disabilities to perform the essential functions. Essential and marginal functions may require maintaining physical condition necessary for bending, stooping, sitting, walking or standing for prolonged periods of time; most of time is spent sitting in a comfortable position with frequent opportunity to move about. Work Environment The work environmental characteristics described here are representative of those that must be borne by an employee to successfully perform the essential functions of the role. Employees must always maintain a constant state of situational awareness. Reasonable accommodation may be made to enable individuals with disabilities to perform the essential functions. Physical Setting: Washington DC Schedule and Flexibility: Full Time in Office Additional Qualifying Factors As a condition of employment, you will be required to pass a pre-employment drug screening and have acceptable background check results. If applicable to the contract, you must also obtain and maintain the appropriate clearance levels required and must also be able to obtain access to military installations. Shareholder Preference BSNC gives hiring, promotion, training, and retention preference to BSNC shareholders, shareholder descendants and shareholder spouses who meet the minimum qualifications for the job. Bering Straits Native Corporation is an equal opportunity employer. All applicants will receive consideration for employment without regard to any status protected by state or federal law, or any other basis prohibited by law. Equal Opportunity Employer/Protected Veterans/Individuals with Disabilities This employer is required to notify all applicants of their rights pursuant to federal employment laws. For further information, please review the Know Your Rights notice from the Department of Labor. Bering Straits Native Corporation

Vacancy posted 1 day ago
Similar jobs that could be interesting for youBased on the Sr. Cybersecurity Incident Response Specialist in Washington DC vacancy
  • $80.2k - $111.3k

     ...Position Overview The Cybersecurity Incident Response Engineer, Senior leads complex incident response efforts for enterprise networks and mission-critical systems, owning the technical direction and coordination of high-impact events in a highly regulated environment... 
    Senior
    Contract work
    Work experience placement
    Work at office

    ASM Research, An Accenture Federal Services Company

    Washington DC
    1 day ago
  • A cybersecurity and intelligence firm is seeking a Cyber Eviction Analyst to support critical incident response missions. The role requires extensive expertise in threat actor tools, incident mitigation, and collaborative problem-solving. Ideal candidates will possess at... 
    Suggested

    Nightwing Group

    Arlington, VA
    2 days ago
  • $140k - $170k

     ...Associate Principal/Cybersecurity & Incident Response Boston, MA, United States; Chicago, IL, United States; Dallas, Texas, United States; Houston, Texas, United States; Washington, DC, United States CRA is a leading global consulting firm that provides independent economic... 
    Suggested
    Work at office
    Local area
    Remote work
    Work from home
    3 days per week

    Charles River Associates

    Washington DC
    12 hours ago
  •  ...technology firm in Virginia is seeking an experienced SME Cyber Incident Response Analyst to join its team. This role involves monitoring and...  ...candidates should have at least 5 years of experience in cybersecurity and a strong knowledge of relevant frameworks and tools.... 
    Senior

    Via Logic LLC

    Alexandria, VA
    6 hours ago
  • $100k - $126.5k

     ...Consulting Associate/Cybersecurity & Incident Response CRA's Forensic Services practice supports companies' commitment to integrity by assisting them and their counsel in independently responding to allegations of fraud, waste, abuse, misconduct, and non-compliance.... 
    Suggested
    Work at office
    Work from home
    3 days per week

    Charles River Associates

    Washington DC
    2 days ago
  • A government contractor is seeking a qualified Network Forensics Cybersecurity Analyst in Arlington, VA. The role involves coordinating incident responses, analyzing network threats, and assessing security protocols. Candidates must possess a BS in Computer Science or relevant... 
    Senior
    For contractors

    ARSIEM

    Arlington, VA
    1 day ago
  • $100k - $125k

    A cybersecurity solutions provider is seeking an Incident Response Expert III in Arlington, VA. This role involves serving as a subject matter expert in incident response, requiring strong analytical skills and an active TS/SCI clearance. Candidates should have over 8... 
    Senior

    ARGO Cyber Systems

    Arlington, VA
    1 day ago
  • A cybersecurity and data operations firm is seeking Cyber Eviction Analysts to support the DHS's Hunt and Incident Response Team. The role requires extensive experience in incident response and the ability to think independently. Candidates must have a strong understanding... 
    Senior

    Nightwing

    Arlington, VA
    3 days ago
  • $235k - $310k

     ...is looking for a Mid-Level Associate to join their Data, Privacy and Cybersecurity practice. This role requires 2-4 years of experience in cybersecurity and privacy, with a focus on incident response and regulatory counseling. The ideal candidate will demonstrate strong... 

    Broughton Group

    Washington DC
    1 day ago
  •  ...infrastructure and endpoints to ensure the rapid detection and response to cyber incidents. Maintain and evolve IR SOPs in strict accordance with...  ...s long-term defense posture. Provide expert guidance on cybersecurity directives and risk management policies; review POA&Ms... 
    Senior
    Work at office

    Dormont Manufacturing Company

    Alexandria, VA
    3 days ago
  • $40k - $80k

    Saic is seeking a Monitoring Specialist at the Department of Transportation Headquarters...  ...troubleshooting systems, and documenting incidents as part of a 24/7 operation. The ideal...  ...and the ability to coordinate incident responses. A target salary range of $40,001 - $80... 
    Night shift

    SAIC

    Washington DC
    4 days ago
  • Business Computers Management Consulting Group Llc is looking for a Cyber Incident Response Expert to support the DHS’s Hunt and Incident Response Team in Arlington, Virginia. This role requires advanced knowledge of cyber threats and incident response methodologies. The... 
    Senior

    Business Computers Management Consulting Group Llc

    Arlington, VA
    3 days ago
  •  ...Corporation, located in Alexandria, VA, is seeking a Cybersecurity SME JR to enhance skills in a rapidly evolving...  ...operations through advanced technology. Key responsibilities include continuous monitoring, incident resolution, and ensuring compliance with security... 
    Senior

    Chenega Corporation

    Alexandria, VA
    3 days ago
  •  ...manage a team of Analysts and Engineers in Washington, DC. The ideal candidate will have 8+ years of cybersecurity experience with specific expertise in incident response, threat hunting, and SIEM technologies like Splunk and ExtraHop. Responsibilities include leading... 
    Senior

    Accenture

    Washington DC
    4 days ago
  •  ...EmergencyMD is seeking a Lead Incident Responder for a potential government client. This role will involve leading incident response operations, managing complex threats, and ensuring compliance with federal cybersecurity frameworks. The candidate must have a Bachelor’... 
    Senior

    EmergencyMD

    Washington DC
    12 hours ago
  •  ...Senior Analyst-CBRN in Washington, DC, to support the Office of WMD Response and Planning. This position involves coordinating interagency engagements and enhancing foreign capabilities against CBRN incidents. Applicants must have an active Top-Secret clearance, a minimum... 
    Senior
    Work at office

    CORTEK Inc

    Washington DC
    12 hours ago
  •  ...Description Job Description Tetrad Digital Integrity (TDI) is a cybersecurity firm built for high-consequence environments where mission,...  ...business of cyber for 25 years! TDI is seeking a Senior Incident Response Analyst to join our team in support of a mission-critical... 
    Senior
    Permanent employment

    Tetrad Digital Integrity LLC

    Arlington, VA
    6 days ago
  • $131.3k - $237.35k

    Leidos Inc is seeking a Senior Incident Response Analyst to join their team in Arlington, Virginia. The role involves coordinating incident response efforts, analyzing cyber threats, and developing security protocols for the Department of Homeland Security's CISA Program... 
    Senior

    Leidos Inc

    Arlington, VA
    3 hours ago
  • Phase2 Technology is seeking a Cyber Incident Response Business Development Senior Manager in Washington, DC. This role entails driving business development efforts in incident response, strengthening partnerships, and solving complex problems with a team-oriented approach... 
    Senior

    Phase2 Technology

    Washington DC
    3 days ago
  • $120k - $145k

     ...in Washington, DC. The ideal candidate will have a Bachelor's Degree and over 4 years of experience in security analysis and incident response. Responsibilities include maintaining threat awareness, developing security policies, and developing incident handling procedures... 
    Senior

    Cape Fox Corporation

    Washington DC
    2 days ago
  •  ...knowledge of CND policies and standard networking protocols. Ideal candidates will have a relevant degree or extensive experience in the field, with strong skills in analyzing network traffic and conducting incident response investigations. #J-18808-Ljbffr Base One Technologies
    Senior

    Base One Technologies

    Arlington, VA
    1 day ago
  • Phase2 Technology is looking for a Cyber Incident Response Business Development Senior Manager to lead and grow its Incident Response business. This role involves driving business development initiatives, engaging key stakeholders, and managing strategic partner relationships... 
    Senior
    Work at office
    Remote work

    Phase2 Technology

    Mc Lean, VA
    12 hours ago
  • $207k - $301k

     ...seeking a Security Engineer in Washington D.C. You will be responsible for managing incident response operations and forensics while collaborating...  ...a Bachelor's degree and substantial experience in the cybersecurity domain. This role offers a competitive salary range of... 
    Senior

    Google

    Washington DC
    3 days ago
  • $131.3k - $237.35k

    Leidos is seeking a Senior Incident Response Analyst in Bethesda, Maryland to support the DHS CISA Program. The role involves coordinating incident investigations, analyzing cyber incidents, and developing response procedures. A bachelor's degree in Computer Science or... 
    Senior

    Leidos

    Arlington, VA
    4 days ago
  •  ...Come join our team! Zantech is looking for a talented Senior Incident Response Coordinator to contribute to the success of our upcoming...  ...analysis, and multi-stakeholder coordination during high-stakes cybersecurity events. Impact: Direct support to national-level cyber... 
    Senior
    Contract work
    Local area

    Zantech

    Arlington, VA
    4 days ago
  •  ...Key Responsibilities War‑Room Facilitation: Structure/facilitate major incident bridges; maintain restoration focus; assign actions/owners; track progress to closure...  ...stakeholders. Advanced incident management or cybersecurity certifications (such as ITIL intermediate/advanced... 
    Senior
    Contract work
    Work experience placement
    Work at office
    Shift work

    ASM Research, An Accenture Federal Services Company

    Washington DC
    4 days ago
  • $207k - $301k

     ...practical experience. 8 years of experience managing enterprise incident response operations and threat containment. 3 years of experience...  ...qualifications Possession of industry-recognized cybersecurity certifications such as CISSP, CISM, or GIAC (e.g., GCFA, GCFE... 
    Local area

    Google

    Washington DC
    3 days ago
  •  ...support operating departments who have responsibility over the quality of employee health...  ...the Airport and Tech Ops operation. The Sr. Specialist, Safety Business Partner interacts with...  ...investigations for accidents, incidents, instances of non-compliances and near... 
    Senior
    Work experience placement
    Work at office
    Flexible hours

    American Airlines

    Washington DC
    3 days ago
  • $131.3k - $237.35k

     ...programs, allowing us to better serve our customers through scale and repeatability. Leidos has a critical need for a Senior Incident Response Analyst to support the DHS CISA Program. The Department of Homeland Security (DHS), Security Operations Center (SOC) Support Services... 
    Senior
    Flexible hours

    Leidos

    Bethesda, MD
    4 days ago
  •  ...Job Description: We are seeking a Cybersecurity Specialist with expertise in Zero Trust...  ...compliance tools (e.g., OPA, Conftest) Responsibilities Design and implement Zero Trust Architecture...  ...(e.g., Splunk, Datadog) Support incident detection, response, and remediation... 
    For contractors
    Remote work

    Network Designs

    Washington DC
    4 days ago

Do you want to receive more vacancies?

Subscribe and receive similar vacancies to Sr. Cybersecurity Incident Response Specialist. Be the first to apply!