Cyber Incident Response Expert
Business Computers Management Consulting Group
The DHS’s Hunt and Incident Response Team (HIRT) secures the nation’s infrastructure. HIRT provides DHS’s front-line response for cyber incidents and proactive hunting for malicious cyber activity. BCMC provides support for on and offsite incident response to Government agencies and critical infrastructure owners who experience cyber-attacks. BCMC provides HIRT advanced technical assistance, proactive hunting, rapid onsite incident response, and immediate investigation, using host and network-based cybersecurity analysis capabilities. Personnel perform investigations to characterize the level of severity of breaches and develop mitigation/remediation plans. We are seeking a Cyber Incident Response Expert to support this critical customer mission. Responsibilities Serves as hunt and incident response subject matter expert (SME), applying in-depth knowledge on threat actor (TA) tools, techniques, and procedures (TTPs) Serves as an incident response expert in support of a technology insertion team Distills analytic findings into executive summaries and in-depth technical reports Provide expert support, analysis, and research with only broad direction into exceptionally complex problems and processes relating to the subject matter as it relates to hunt and incident response activities Serves as technical expert on high-level incident response teams providing technical direction, interpretation, and alternatives Exercises considerable latitude in determining technical objectives of an assignment or task at hand Independently develops technical solutions to complex problems that require the regular use of ingenuity and creativity Analyzes incident data and victim environments to recommend targeted mitigations Advise technical personnel on countermeasure implementation and customization Supports internal stakeholders on containment and eradication missions Documents analysis in a standardized knowledgebase for sharing and publication Assists in maintaining branch process and procedure documentation Guides the completion of hunt and incident response activities Required Skills U.S. Citizenship Must have an active TS/SCI clearance Must be able to obtain DHS Suitability 7+ years of directly relevant experience in the area of expertise 3+ years of experience related to the evaluation and implementation of new cyber response capabilities Must be able to travel domestically on short notice Strong understanding of network architecture/security Experience performing cyber incident response Ability to think independently Demonstrates superior written and oral communication skills Must be able to work collaboratively across physical locations Skilled in identifying different classes of attacks and attack stages Understanding of system and application security threats and vulnerabilities Understanding of proactive analysis of systems and networks, to include creating trust levels of critical resources Proficiency with common operating systems (e,g, Linux/Unix, Windows) Desired Skills Experience leading and mentoring technical teams Knowledge of Computer Network Defense policies, procedures and regulations Knowledge of different operational threat environments (e.g., first generation [script kiddies], second generation [non nation-state sponsored], and third generation [nation-state sponsored]) Knowledge of system and application security threats and vulnerabilities (e.g., buffer overflow, mobile code, cross-site scripting, PL/SQL and injections, race conditions, covert channel, replay, return-oriented attacks, and malicious code) Network and System administration experience Strong understanding of adversarial tactics/techniques/procedures (TTPs) Experience with Identity and Access Management (IAM) tools Ability to review and analyze Enterprise Architecture (EA) from a security perspective Understanding of cyber defense-in-depth principles Hands-on skill in host/network intrusion detection Ability to perform event correlation Experience with malicious activity analysis Ability to collaborate with stakeholders at multiple levels within an organization Required Education BS Computer Science, Cyber Security, Computer Engineering, or related degree; or HS Diploma & 7+ years of technical experience in the area of expertise. Desired Certifications DoD 8140.01 IAT Level II, IASAE II, CSSP Analyst DoD 8140.01 GCIA, GCIH, CSSP Analyst/CSSP Incident Responder DoD 8140.01 CEH, CSSP Analyst SANS GIAC GNFA preferred SANS GRID, GICSP, or GCIP a plus Benefits Extremely competitive salary 95% employer paid for employee medical, dental, & vision coverages 100% employer paid for employee life, STD & LTD disability coverages 401k with company match and profit sharing Flexible Spending Account (FSA) for dependent & health care 11 standard holidays & 3 weeks of annual leave #J-18808-Ljbffr Business Computers Management Consulting Group
- BCMC is seeking a Cyber Incident Response Expert in Arlington, Virginia, to support cybersecurity efforts against malicious activity. The ideal candidate will have extensive experience in cyber incident response and must possess a TS/SCI clearance. Responsibilities include...Cyber
$100k - $125k
Incident Response Expert III (Cyber Eviction Analysts) Location: Washington DC Metro Area (On-Site) Citizenship: US only Clearance: Active TS/SCI (DHS EOD Suitability required) Company: Argo Cyber Systems, LLC - Service-Disabled Veteran-Owned Small Business (SDVOSB)...CyberLocal areaImmediate start- A minority-owned technology firm in Arlington, VA, is seeking an Incident Response Expert / Cyber Eviction Analyst. This role requires 8+ years of cyber incident response experience and the ability to manage critical incidents effectively. The ideal candidate will have...Cyber
- Job Description Insight Globalis seeking Cyber Eviction Analysts to support this critical customer mission. Responsibilities Serves as hunt and incident response subject matter expert (SME), applying in-depth knowledge on threat actor (TA) tools, techniques, and procedures...Cyber
- Overview Incident Response Expert / Cyber Eviction Analyst Location: Arlington, VA Must have an active Top Secret Security Clearance Node.Digital is an innovative minority-owned solutions and services company specializing in AI & Automation. We combine proprietary agile...Cyber
- A technical services company is seeking a motivated Senior Cyber Incident Response Analyst to provide 24x7x365 support in McLean, Virginia. Responsibilities include incident detection, analysis, response, and reporting. Candidates should have a high school diploma and 7...CyberShift work
- ...intelligence firm in Arlington, VA is seeking a Cyber Eviction Analyst with strong qualifications in incident response and network security. The successful candidate will... ...This role involves serving as a subject matter expert in threat analysis, providing technical...Cyber
- ...have a Bachelor's degree with at least 9 years of experience or equivalent qualifications. Responsibilities include applying Risk Management Framework principles and managing incident responses. The role anticipates some remote work and offers opportunities contingent...CyberContract workRemote work
$60k - $100k
...should have a minimum of 4 years in cybersecurity operations and a bachelor's degree in a related field. The role involves leading incident response efforts, documenting actions, and collaborating with technical teams to enhance security across multiple environments....Cyber- A cybersecurity firm is looking for a Tier 2 Incident Response Analyst to support law enforcement in Washington, DC. You will monitor security tools, triage alerts, and investigate cyber threats. Ideal candidates have six years in cybersecurity, preferably three in SOC...Cyber
- A leading cybersecurity firm is looking for Cyber Eviction Analysts in Arlington, Virginia. This role involves incident response, analyzing threats, and advising technical personnel on countermeasures. Candidates must have active TS/SCI clearance, a relevant degree, and...Cyber
- A leading cybersecurity firm seeks an experienced Incident Handler to coordinate network security monitoring and lead investigations. The... ...over 8 years of experience, including significant incident response expertise and relevant certifications. This role is crucial for...Cyber
- ...Virginia, is seeking a cybersecurity professional with expertise in cyber incident management. The ideal candidate will have over 5 years of relevant experience and be knowledgeable in incident response methodologies. The position requires familiarity with NIST 800-62,...Cyber
$100k - $125k
A cybersecurity solutions provider is seeking an Incident Response Expert III in Arlington, VA. This role involves serving as a subject matter... ...,000 is offered, alongside an opportunity to work on critical national security missions. #J-18808-Ljbffr ARGO Cyber SystemsCyber- A leading cybersecurity solutions provider is seeking a Cyber Action Officer to manage cyber incidents for U.S. Government agencies. The role requires supporting incident response, maintaining incident reporting, and coordinating with stakeholders. Candidates should have...Cyber
- Nightwing is seeking an Enterprise Architect and Project Lead to support critical cyber-incident response missions for U.S. Government clients. This role involves leading technology insertion teams, developing workflows, and delivering strategic planning documentation....Cyber
- A cybersecurity and intelligence firm is seeking a Cyber Eviction Analyst to support critical incident response missions. The role requires extensive expertise in threat actor tools, incident mitigation, and collaborative problem-solving. Ideal candidates will possess...Cyber
- A cybersecurity consulting firm is seeking an Incident Response Analyst to support incident management for federal contracts. The role includes... .... Remote work is permitted with occasional on-site duties in the Washington, D.C. area. #J-18808-Ljbffr Cyber Synergy IncCyberRemote job
- ...engagement kits. The role involves coordinating requests, tracking statuses, and ensuring quick access to tools necessary for cyber incident response. Ideal candidates will have a Bachelor's degree, at least 5 years of related experience, and the necessary security...Cyber
$83.5k - $87.5k
Cayuse Holdings is seeking a Cyber Incident Response Analyst in Washington, DC to enhance the cybersecurity framework. This role involves case management and coordination of cybersecurity incidents while ensuring exceptional customer service. The ideal candidate will hold...Cyber- ...technology firm in Virginia is seeking an experienced SME Cyber Incident Response Analyst to join its team. This role involves monitoring and... ...threats, leading incident response activities, and providing expert investigative support. Ideal candidates should have at...Cyber
- Nightwing is seeking a Cyber Incident Manager based in Arlington, VA, to support U.S. Government agencies in mitigating cyber-attacks. The... ...in cyber incident management, knowledge of incident response methodologies, and a valid TS/SCI clearance. Responsibilities...Cyber
- ...Forensics Analyst to provide advanced technical support for cybersecurity incidents. This position requires US citizenship, TS/SCI clearance, and strong skills in cyber forensics and incident response. The candidate will oversee teams, assist in investigations, and write...CyberFor contractors
- ...cybersecurity company in Arlington, VA, is seeking experienced Network Forensics Cybersecurity Analysts to support incident response missions for government clients facing cyber threats. The ideal candidate has at least 8 years of experience in network investigations, solid...Cyber
- A cybersecurity firm in Arlington, Virginia is seeking a Cyber Action Officer to support incident response efforts for government clients experiencing cyber-attacks. Responsibilities include managing cyber incidents, coordinating reports, and collaborating with partners...Cyber
- Nightwing Group is hiring a Cyber Incident Management Analyst in Arlington, VA, responsible for assisting with cyber incident management for U.S. Government clients. This hybrid role requires expertise in incident response and cybersecurity operations. Applicants must have...Cyber
- A cybersecurity support firm seeks a Cyber Incident Manager in Arlington, Virginia. The role involves supporting U.S. Government agencies... ...correlating data, conducting triage, and ensuring effective responses. Candidates must have relevant cybersecurity experience and hold...Cyber
- ...-Time/Part-Time Full-Time Description RiVidium is seeking an Incident Response Lead to support our planned MODES III team supporting Military... ...contingent upon contract award. Key Responsibilities Lead cyber incident response coordination, containment planning, and...CyberFull timeContract workPart timeShift workNight shift
- A leading cybersecurity firm is seeking a Cloud Forensics Analyst to support onsite incident response to cyber-attacks. The role involves acquiring and analyzing computer artifacts, conducting forensic investigations, and developing mitigation strategies. Candidates should...Cyber
- A cybersecurity firm is seeking a Cyber Incident Manager to support U.S. Government customers with incident response to cyber-attacks. Responsibilities include incident data correlation, defense recommendations, and incident tracking. Candidates must have U.S. Citizenship...Cyber
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Cyber Incident Response Expert. Be the first to apply!
- subject matter expert Arlington, VA
- fulfillment expert Arlington, VA
- guest service support expert Arlington, VA
- technology expert Arlington, VA
- cyber Arlington, VA
- cyber threat intelligence analyst Arlington, VA
- samsung experience expert
- engineering subject matter expert
- microsoft word expert
- air traffic control subject matter expert jobs

