Cyber Incident Response Analyst SME
$131.3k - $237.35kLeidos Inc
Description This Department of War enterprise data and analytics program delivers mission‑critical capabilities that enable leaders across the Department to make faster, better‑informed decisions using trusted data at scale. Leidos Digital Modernization sector is seeking an experienced SME Cyber Incident Response Analyst to support the delivery, enhancement, and adoption of enterprise data and analytics products used across multiple DoD organizations. Primary Responsibilities Monitor, detect, analyze, mitigate, and respond to cyber threats across the enterprise. Lead incident detection and response activities at the Trusted Internet Connection (TIC) and Policy Enforcement Point (PEP). Coordinate efforts through the enterprise incident tracking system and established communication channels. Provide expert investigative support for large‑scale and complex security incidents, including those lacking clear technical indicators. Work with cybersecurity, network, and operations teams to ensure timely containment, remediation, and reporting of all incidents. Implement and operate access management mechanisms to control user access to data, tools, and services, including automation of standard access requests and support for VIPs. Collect, analyze, and assess user and customer analytic data to inform system changes and improvements. Design, implement, and improve the customer experience with the User Support Desk, including automation of access requests and integration of modern tools. Basic Qualifications Top Secret with SCI eligibility security clearance Bachelor degree or higher from an accredited college or university OR Offerings listed in DoD 8140 Training Repository ORGCFA or GCIA Minimum of 12 years of experience in cybersecurity incident response. Strong knowledge of cybersecurity frameworks and standards (e.g., NIST, ISO). Proficiency in using cybersecurity tools and technologies for monitoring and incident response. Experience with network security monitoring, intrusion detection systems, and security information and event management (SIEM) tools. Excellent analytical and problem‑solving skills. Strong communication and coordination skills to work effectively with various teams. Preferred Qualifications Active TS/SCI Master's degree in Cybersecurity or a related field. Certifications such as CISSP, CISM, CEH, or GIAC. Experience with cloud security and familiarity with AWS GovCloud/NIPRNet, SC2S AWS Secret Region Cloud for SIPRNet, and C2S AWS Cloud for JWICS environments. Knowledge of automation tools and techniques, including AI chatbots and Robotic Process Automation (RPA). Experience in designing and implementing disaster recovery and continuity of operations plans. Familiarity with customer relationship management and use case intake processes. Pay Range Pay Range $131,300.00 - $237,350.00 Pay and Benefits Pay and benefits are fundamental to any career decision. That's why we craft compensation packages that reflect the importance of the work we do for our customers. Employment benefits include competitive compensation, Health and Wellness programs, Income Protection, Paid Leave and Retirement. More details are available at Commitment to Non-Discrimination All qualified applicants will receive consideration for employment without regard to sex, race, ethnicity, age, national origin, citizenship, religion, physical or mental disability, medical condition, genetic information, pregnancy, family structure, marital status, ancestry, domestic partner status, sexual orientation, gender identity or expression, veteran or military status, or any other basis prohibited by law. Leidos will also consider for employment qualified applicants with criminal histories consistent with relevant laws. Contact Security If you have concerns about a potential scam, contact your local law enforcement and report the incident to the U.S. Federal Trade Commission. If you suspect fraudulent emails or requests, email View email address on click.appcast.io. Post Information Original Posting: March 30, 2026. For U.S. Positions: While subject to change based on business needs, Leidos reasonably anticipates that this job requisition will remain open for at least 3 days with an anticipated close date of no earlier than 3 days after the original posting date as listed above. #J-18808-Ljbffr Leidos Inc
- A technology firm in Virginia is seeking an experienced SME Cyber Incident Response Analyst to join its team. This role involves monitoring and responding to cyber threats, leading incident response activities, and providing expert investigative support. Ideal candidates...Cyber
- ...better-informed decisions using trusted data at scale. Leidos Digital Modernization sector is seeking an experienced SME Cyber Incident Response Analyst to support the delivery, enhancement, and adoption of enterprise data and analytics products used across multiple DoD...Cyber
- Koitecc Solutions in Alexandria, Virginia, seeks a seasoned SME Cyber Incident Response Analyst to support a high-visibility program aimed at enhancing data and analytics capabilities across the Department of War. The ideal candidate will have strong cybersecurity incident...Cyber
$131.3k - $237.35k
Leidos is seeking an experienced SME Incident Response Analyst in Alexandria, VA. This role involves designing and executing cybersecurity incident response protocols, collaborating closely with government teams to translate strategic requirements into scalable solutions...Cyber$100k - $125k
A cybersecurity solutions provider is seeking an Incident Response Expert III in Arlington, VA. This role involves serving as a subject matter... ...$125,000 is offered, alongside an opportunity to work on critical national security missions. #J-18808-Ljbffr ARGO Cyber SystemsCyber- A leading cybersecurity firm is looking for Cyber Eviction Analysts in Arlington, Virginia. This role involves incident response, analyzing threats, and advising technical personnel on countermeasures. Candidates must have active TS/SCI clearance, a relevant degree, and...Cyber
- Nightwing Group is seeking a Business Analyst to support onsite incident response for U.S. Government agencies experiencing cyber-attacks. The role involves gathering requirements, stakeholder coordination, and ensuring technology integration aligns with operational priorities...Cyber
$131.3k - $237.35k
...faster, better-informed decisions using trusted data at scale. Leidos Digital Modernization sector is seeking an experienced SME Incident Response Analyst to support the delivery, enhancement, and adoption of enterprise data and analytics products used across multiple DoD...$131.3k - $237.35k
Leidos Inc is seeking a Senior Incident Response Analyst to join their team in Arlington, Virginia. The role involves coordinating incident response efforts, analyzing cyber threats, and developing security protocols for the Department of Homeland Security's CISA Program...Cyber$131.3k - $237.35k
...and repeatability. Leidos has a critical need for a Senior Incident Response Analyst to support the DHS CISA Program. The Department of Homeland... ...to monitor, detect, analyze, mitigate, and respond to cyber threats and adversarial activity on the DHS Enterprise. The...CyberFlexible hours$86k - $138k
Cyber Incident Response Analyst with OT/ICS/SCADA / travel & active TS job at Peraton. Arlington, VA. Program Overview About The Role Peraton is currently seeking an experienced Incident Response Analyst with OT/ICS/SCADA experience for its Federal Strategic Cyber program...CyberContract workTemporary workInternshipShift work1 day per week- A cybersecurity firm is looking for a Tier 2 Incident Response Analyst to support law enforcement in Washington, DC. You will monitor security tools, triage alerts, and investigate cyber threats. Ideal candidates have six years in cybersecurity, preferably three in SOC...Cyber
- A cybersecurity consulting firm is seeking an Incident Response Analyst to support incident management for federal contracts. The role includes... ...frameworks. Remote work is permitted with occasional on-site duties in the Washington, D.C. area. #J-18808-Ljbffr Cyber SynergyCyberRemote job
- Incident Response Analyst (Task 4 - Federal Cybersecurity Contract) Location: Remote with occasional on-site (Washington, D.C. Metro Area) Employment... ...required. Remote work permitted with reliable connectivity and camera‑enabled participation. #J-18808-Ljbffr Cyber SynergyCyberFull timeContract workRemote workMonday to Friday
- CHAOS Industries is looking for a SOC Analyst II to join their Security... ...involves monitoring and responding to cyber threats while collaborating with senior... ...strong problem-solving skills. Responsibilities include investigating incidents, managing system alerts, and...Cyber
- Leidos Inc is looking for an experienced SME Cyber Incident Response Analyst to enhance and support enterprise data and analytics products. The role involves monitoring cyber threats, leading incident detection activities, and coordinating with various teams for effective...Cyber
- ECS is seeking a SOC CTIC Lead - SME to support the Army National Guard’s cybersecurity operations. This role involves conducting cyber incident investigations, performing malware triage, and documenting findings. Candidates should have 7+ years of cybersecurity experience...CyberContract work
- Nightwing in Arlington, Virginia is seeking a dedicated professional for Incident Management support. This role involves investigating and mitigating cyber incidents for U.S. Government agencies while collaborating across teams. The ideal candidate holds a Bachelor’s degree...Cyber
- Tyto Athene is searching for a Tier 2 Incident Response Analyst (IR) to support a law enforcement customer in Washington, DC. Our IR analysts form... ...our tools, triaging alerts, and investigating potential cyber threats. As a SOC team member, you will also serve as the initial...CyberPart timeShift workNight shiftWeekend workDay shift2 days per week
- Valid8 Financial, Inc. is urgently seeking SOC Analysts for positions at the Drug Enforcement Administration... ...clearance and at least 3 years of experience in Cyber Security. Responsibilities include monitoring incidents, investigating alerts, and coordinating responses...CyberImmediate start
- ...Solutions, LLC is seeking a skilled Security Operations Center Analyst (SOC) in Arlington, Virginia. This role requires a bachelor's degree... ...environment. You will monitor security events, analyze network incidents, and utilize various security tools. Join a team committed to...Cyber
$110k - $170k
...Piper Solutions is looking for a SOC Analyst in McLean, VA to support a critical... ...ideal candidate will have experience in cyber threat detection and incident analysis and must possess an active TS/SCI Full Scope Polygraph. Responsibilities include detecting cyber-attacks,...Cyber$127k - $140k
...protecting organizations from ever-increasing cyber threats 24/7/365. Powered by Deepwatch... ...comprehensive detection and automated response to cyber threats together with... ...the Manager of Adversary Response, the Incident Response Analyst operates on the front lines of active...CyberPermanent employmentWork experience placementWork at officeRemote workWork from homeHome officeFlexible hours$100k - $125k
Incident Response Expert III (Cyber Eviction Analysts) Location: Washington DC Metro Area (On-Site) Citizenship: US only Clearance: Active TS/SCI (DHS EOD Suitability... ...as hunt and incident response subject matter expert (SME), applying in-depth knowledge on threat actor (TA)...CyberLocal areaImmediate start- ...Virginia, is seeking a cybersecurity professional with expertise in cyber incident management. The ideal candidate will have over 5 years of relevant experience and be knowledgeable in incident response methodologies. The position requires familiarity with NIST 800-62,...Cyber
- BCMC is seeking a Cyber Incident Response Expert in Arlington, Virginia, to support cybersecurity efforts against malicious activity. The ideal candidate will have extensive experience in cyber incident response and must possess a TS/SCI clearance. Responsibilities include...Cyber
- A leading cybersecurity solutions provider is seeking a Cyber Action Officer to manage cyber incidents for U.S. Government agencies. The role requires supporting incident response, maintaining incident reporting, and coordinating with stakeholders. Candidates should have...Cyber
- Nightwing is seeking an Enterprise Architect and Project Lead to support critical cyber-incident response missions for U.S. Government clients. This role involves leading technology insertion teams, developing workflows, and delivering strategic planning documentation....Cyber
- A cybersecurity and intelligence firm is seeking a Cyber Eviction Analyst to support critical incident response missions. The role requires extensive expertise in threat actor tools, incident mitigation, and collaborative problem-solving. Ideal candidates will possess...Cyber
- ...engagement kits. The role involves coordinating requests, tracking statuses, and ensuring quick access to tools necessary for cyber incident response. Ideal candidates will have a Bachelor's degree, at least 5 years of related experience, and the necessary security...Cyber
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Cyber Incident Response Analyst SME. Be the first to apply!
- cyber security analyst Alexandria, VA
- information security consultant Alexandria, VA
- cyber Alexandria, VA
- cyber security analyst
- cyber security operations analyst
- cyber security analyst internship
- cyber security analyst no experience
- entry level cyber security analyst
- cyber security business analyst
- cyber soc analyst