Incident Response Analyst
Cyber Synergy
Incident Response Analyst (Task 4 – Federal Cybersecurity Contract)
Location: Remote with occasional on-site (Washington, D.C. Metro Area)
Employment Type: Full-Time
Clearance: Public Trust (or eligibility to obtain)
We are seeking an experienced Incident Response Analyst to support Task 4 – Incident Response Management on a federal cybersecurity services contract. This role provides front-line security event triage, investigation, reporting, and coordination across multiple federal cybersecurity teams.
The ideal candidate has hands-on experience with enterprise IR tooling- CrowdStrike , FireEye (Trellix) , Splunk , NetWitness , and Magnet AXIOM -and is comfortable working in a high-tempo operational environment aligned with federal cybersecurity frameworks (NIST, FISMA, OMB).
Key Responsibilities
Perform initial triage of security events from SIEM, EDR, NDR, and log sources, including CrowdStrike , FireEye/Trellix , Splunk , NetWitness , and related platforms.
Conduct incident investigations , including host and network forensics, log analysis, and evidence review using tools such as NetWitness and AXIOM .
Coordinate closely with HHS CSIRC, OpDiv incident response teams, system owners, and security engineering staff to validate findings and recommend containment actions.
Provide daily updates , SITREPs, and written documentation of incident status, investigative steps, and remediation recommendations.
Develop incident dashboards and knowledge base documentation within Splunk and other IR platforms.
Support containment, eradication, and recovery efforts aligned to federal IR procedures.
Participate in tabletop exercises , readiness assessments, and operational continuity testing.
Monitor and manage the Incident Response Team (IRT) mailbox; escalate urgent items within required SLAs.
Assist with audit support, evidence gathering, and post-incident reviews.
Contribute to continuous improvement of incident response processes and playbooks.
Required Qualifications
2–5+ years of experience in cybersecurity operations, SOC analysis, or incident response.
Direct hands-on experience with IR tools, including:
CrowdStrike Falcon (EDR)
FireEye/Trellix (HX, Helix, or equivalent)
Splunk (SIEM, dashboards, search queries)
NetWitness (network forensics, packet analysis)
Magnet AXIOM (host forensics)
Strong understanding of adversary techniques, malware behavior, incident timelines, and forensic artifacts.
Familiarity with NIST 800-61 , NIST 800-53 , FISMA, OMB guidance.
Ability to clearly document investigations and communicate findings to technical and non-technical audiences.
Eligibility to obtain and maintain a Public Trust clearance .
Preferred Qualifications
Experience supporting federal agencies (HHS, DHS, DoD, DOJ, etc.).
Certifications such as Security+ , CySA+ , CEH , GCIH , GCIA , CHFI , or related.
Experience performing threat hunting across EDR, SIEM, and NDR tools.
Familiarity with packet analysis tools (Wireshark) and scripting languages (Python, PowerShell).
Experience with ServiceNow or similar ticketing platforms
Work Schedule & Expectations
Core hours: 7:00 AM – 5:00 PM EST , Monday through Friday, with the flexibility to support after-hours incidents as needed.
Participation in on-call rotations may be required.
Remote work permitted with reliable connectivity and camera-enabled participation.
$120k - $145k
...Corporation is looking for an experienced Information Security Analyst (SME) to join their team in Washington, DC. The ideal... ...Degree and over 4 years of experience in security analysis and incident response. Responsibilities include maintaining threat awareness, developing...Suggested$131.3k - $237.35k
...programs, allowing us to better serve our customers through scale and repeatability. Leidos has a critical need for a Senior Incident Response Analyst to support the DHS CISA Program. The Department of Homeland Security (DHS), Security Operations Center (SOC) Support...SuggestedLocal areaImmediate startRemote workFlexible hoursLeidos
Arlington, VA5 days ago- A cybersecurity consulting firm is seeking an Incident Response Analyst to support incident management for federal contracts. The role includes event triage, incident investigations, and close coordination with federal cybersecurity teams. Ideal candidates will have experience...SuggestedRemote job
$60 per hour
...Description Tyto Athene is searching for a Part-Time Tier 2 Incident Response Analyst (IR) to support a law enforcement customer in Washington, DC. Our IR analysts form the backbone of our cybersecurity services. You will play a critical role in securing our customers...SuggestedPart timeWorldwideShift workNight shiftWeekend workDay shiftTyto Athene, LLC
Washington DC4 days ago$40 per hour
...anywhere in the US, Canada, UK, Ireland, Australia, and New Zealand Responsibilities Evaluate AI-generated cybersecurity content, including threat... ...in cybersecurity (e.g., penetration testing, red teaming, incident response, detection engineering, DFIR, malware analysis,...SuggestedHourly payFull timePart timeRemote workDataAnnotation
Washington DC2 days ago$131.3k - $237.35k
...better-informed decisions using trusted data at scale. Leidos Digital Modernization sector is seeking an experienced SME Incident Response Analyst to support the delivery, enhancement, and adoption of enterprise data and analytics products used across multiple DoD organizations...Local areaImmediate startLeidos
Alexandria, VA7 days ago- ...Global Solutions in Washington, DC is seeking a Senior Security Operations Analyst to monitor and respond to cybersecurity threats. The candidate will analyze security events, manage incident response, and support the National Indian Gaming Commission's cybersecurity...
$30 - $39 per hour
...Overview Job Title: ITSM Incident Response Analyst Location: Remote Type: Independent Contract - Corp to Corp/1099 Start Date: ASAP Pay Rate: $30-39/hr (Independent Contract) Contract Length: throughAugust 31 Responsibilities Serve as a...Contract workFor contractorsWork experience placementLocal areaImmediate startRemote workCayuse Holdings
Washington DC3 days ago- ...Full-Time/Part-Time Full-Time Description RiVidium is seeking an Incident Response Analyst to support our planned MODES III team supporting Military Community and Family Policy (MC&FP). This role supports IT, Cybersecurity, and Data Operations - Core Operations...Full timeContract workPart timeShift workNight shift
Rividium Inc
Alexandria, VA4 days ago - Ernst & Young Oman is looking for a Cyber Triage and Forensics (CTF) Incident Analyst to be a senior member of the technical team handling security incidents. Responsibilities include performing digital forensic analysis, responding to security incidents, and developing...Flexible hours
- Tyto-Athene is seeking a Part-Time Tier 2 Incident Response Analyst to support law enforcement in Washington, DC. You will monitor cybersecurity tools, triage alerts, and respond to incidents. Ideal candidates have significant cybersecurity experience and a Bachelor's degree...Part time
- A cybersecurity firm is looking for a Tier 2 Incident Response Analyst to support law enforcement in Washington, DC. You will monitor security tools, triage alerts, and investigate cyber threats. Ideal candidates have six years in cybersecurity, preferably three in SOC...
$127k - $140k
...industry’s fastest, most comprehensive detection and automated response to cyber threats together with tailored guidance from... ...Responsibilities Reporting to the Manager of Adversary Response, the Incident Response Analyst operates on the front lines of active cyber conflict—...Permanent employmentWork experience placementWork at officeRemote workWork from homeHome officeFlexible hours- Ardent is seeking a Security Operations Center (SOC) Analyst to support 24x7 security monitoring, alert triage, and incident response activities. This role involves validating alerts, conducting investigations, and coordinating incident response efforts to effectively...Remote job
$80.2k - $111.3k
...Position Overview The Cybersecurity Incident Response Engineer, Senior leads complex incident response efforts for enterprise networks... ...technical and procedural coaching to incident handlers and SOC analysts, elevating investigative techniques, documentation quality,...Contract workWork experience placementWork at officeASM Research, An Accenture Federal Services Company
Washington DC2 days ago- ...Cyber Incident Response Analyst This Department of War enterprise data and analytics program delivers mission-critical capabilities that enable leaders across the Department to make faster, better-informed decisions using trusted data at scale. Leidos Digital Modernization...
Navstar
Alexandria, VA3 days ago $104k - $166k
...Cyber Incident Response Analyst with OT/ICS/SCADA / Travel & Active TS Job Locations US-VA-Arlington Requisition ID 2026-163351 Position Category Intel and Threat Analysis Clearance Top Secret/SCI Responsibilities...Contract workCurrently hiringShift work1 day per weekPeraton
Arlington, VA2 days ago$83.5k - $87.5k
...Overview The Cyber Incident Response Analyst role is pivotal in reinforcing the client's cybersecurity framework by serving as the primary entry point for all external communications regarding cybersecurity incidents and related information requests. Operating within...Temporary workWork at officeLocal areaFlexible hoursShift workNavstar
Washington DC1 day ago$73.6k - $130.3k
...missions and the government forward! The Business Operations Incident Analyst (Revenue Cycle) serves as a key problem solver and... ...imperative, every person at Accenture Federal Services has the responsibility to create and sustain a culture where everyone feels welcomed...Live inWork at officeLocal area- cFocus Software Incorporated is looking for a Cyber Defense Analyst - Jr in Washington, DC. This position involves supporting cybersecurity... ...operations, monitoring event analysis, and assisting with incident response activities within the Security Operations Center. The ideal...
$159.3k - $202.4k
...experience for our customers. Key job responsibilities - You will query and collate machine... ...and data. - You will work alongside incident responders and support the investigation... ...Cloud+ or CySA+ (CompTIA Cybersecurity Analyst) or GCED (GIAC Certified Enterprise...Flexible hoursShift workAmazon
Arlington, VA2 days ago- ...Incident Response Expert III (Cyber Eviction Analysts) Location: Washington Dc Metro Area (On-Site) Citizenship: US only Clearance: Active TS/SCI (DHS EOD Suitability required) Company: Argo Cyber Systems, LLC - Service-Disabled Veteran-Owned Small Business (SDVOSB...Local areaImmediate start
ARGO Cyber Systems
Arlington, VA5 days ago - ...Incident Response Expert / Cyber Eviction Analyst Location: Arlington, VA Must have an active Top Secret Security Clearance Node.Digital is an innovative minority-owned solutions and services company specializing in AI & Automation. We combine proprietary agile...
Node.Digital
Arlington, VA7 days ago - ...Tier 2 Cybersecurity Incident Response Analyst The Tier 2 Cybersecurity Incident Response Analyst provides advanced incident response support for NIH enterprise and cloud environments. This role responds to hotline-reported incidents and performs investigation, containment...
Merit 321
Bethesda, MD2 days ago $80k - $92k
...This is a contingent position based upon customer approval. SkyePoint Decisions is seeking an experienced Tier 2 Analyst for the Cyber Incident Response Team to support our customer's Federal Strategic Cyber Mission program. This is not a remote position. This...Contract workLocal areaSkyePoint Decisions
Beltsville, MDa month ago$66.9k - $82.1k
...Position Overview The Cybersecurity Incident Response Engineer, Mid supports the detection, containment, and recovery of cybersecurity incidents across enterprise networks and mission-critical systems in a highly regulated government environment. This role contributes...Contract workWork experience placementWork at officeASM Research, An Accenture Federal Services Company
Washington DC9 days ago$19 per hour
...The Washington Commanders are seeking responsible individuals to join our Incident Tracking Analyst Team on a Part Time, Seasonal basis. The right fit individuals will provide excellent customer service, and security throughout the stadium/event center during Commanders...Hourly payPart timeSeasonal workImmediate startWork from homeFlexible hoursNight shiftAfternoon shiftAEG Presents
Hyattsville, MD4 days ago$55.7k - $82.1k
...The Cybersecurity Incident Response Engineer, Jr. monitors enterprise security tools and logs to detect, analyze, and triage potential cybersecurity... ...incidents, and escalates significant events to senior analysts or incident responders as appropriate. The analyst supports...Contract workWork at officeShift workASM Research, An Accenture Federal Services Company
Washington DC1 day ago- Diligent Consulting Inc is seeking a Cyber Security Incident and Event Management/Elastic Specialist in Washington, DC. The role requires... .../Splunk query languages and monitoring SIEM dashboards. Responsibilities include designing data ingestion, integrating Elastic, and...
- SOS International LLC in Washington, DC is seeking a Security Analyst - Forensics/Malware Analysis to support cyber defense and incident response activities. The ideal candidate will have five years of security-related experience, a Bachelor's Degree, and relevant cybersecurity...Full timeAfternoon shift
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Incident Response Analyst. Be the first to apply!
- document review analyst Washington DC
- facility analyst Washington DC
- senior strategy analyst Washington DC
- disaster recovery analyst Washington DC
- consulting analyst Washington DC
- contracts analyst Washington DC
- compensation analyst Washington DC
- due diligence analyst Washington DC
- invoice analyst Washington DC
- senior foia analyst Washington DC