Cyber Incident Response Analyst SME
Koitecc Solutions
This Department of War enterprise data and analytics program delivers mission-critical capabilities that enable leaders across the Department to make faster, better-informed decisions using trusted data at scale. Leidos Digital Modernization sector is seeking an experienced SME Cyber Incident Response Analyst to support the delivery, enhancement, and adoption of enterprise data and analytics products used across multiple DoD organizations. In this role, you will work alongside government partners, engineers, and other industry teammates to translate operational and strategic requirements into scalable, production‑ready solutions. You will contribute directly to product planning, execution, and continuous improvement‑helping ensure capabilities are delivered efficiently, aligned to mission priorities, and positioned for sustained success. This position offers the opportunity to work on a high‑visibility, enterprise program at the intersection of data, analytics, and emerging AI technologies. Ideal candidates are motivated by mission impact, comfortable operating in complex stakeholder environments, and interested in building deep domain expertise while delivering capabilities with real‑world national security outcomes. Primary Responsibilities Monitor, detect, analyze, mitigate, and respond to cyber threats across the enterprise. Lead incident detection and response activities at the Trusted Internet Connection (TIC) and Policy Enforcement Point (PEP). Coordinate efforts through the enterprise incident tracking system and established communication channels. Provide expert investigative support for large‑scale and complex security incidents, including those lacking clear technical indicators. Work with cybersecurity, network, and operations teams to ensure timely containment, remediation, and reporting of all incidents. Implement and operate access management mechanisms to control user access to data, tools, and services, including automation of standard access requests and support for VIPs. Collect, analyze, and assess user and customer analytic data to inform system changes and improvements. Design, implement, and improve the customer experience with the User Support Desk, including automation of access requests and integration of modern tools Basic Qualifications Top Secret with SCI eligibility security clearance Bachelor degree or higher from an accredited college or university OR Offerings listed in DoD 8140 Training Repository ORGCFA or GCIA Minimum of 12 years of experience in cybersecurity incident response. Strong knowledge of cybersecurity frameworks and standards (e.g., NIST, ISO). Proficiency in using cybersecurity tools and technologies for monitoring and incident response. Experience with network security monitoring, intrusion detection systems, and security information and event management (SIEM) tools. Excellent analytical and problem‑solving skills. Strong communication and coordination skills to work effectively with various teams. Preferred Qualifications Active TS/SCI Master's degree in Cybersecurity or a related field. Certifications such as CISSP, CISM, CEH, or GIAC. Experience with cloud security and familiarity with AWS GovCloud/NIPRNet, SC2S AWS Secret Region Cloud for SIPRNet, and C2S AWS Cloud for JWICS environments. Knowledge of automation tools and techniques, including AI chatbots and Robotic Process Automation (RPA). Experience in designing and implementing disaster recovery and continuity of operations plans. Familiarity with customer relationship management and use case intake processes. Commitment to Non‑Discrimination All qualified applicants will receive consideration for employment without regard to sex, race, ethnicity, age, national origin, citizenship, religion, physical or mental disability, medical condition, genetic information, pregnancy, family structure, marital status, ancestry, domestic partner status, sexual orientation, gender identity or expression, veteran or military status, or any other basis prohibited by law. Leidos will also consider for employment qualified applicants with criminal histories consistent with relevant laws. #J-18808-Ljbffr Koitecc Solutions
- A technology firm in Virginia is seeking an experienced SME Cyber Incident Response Analyst to join its team. This role involves monitoring and responding to cyber threats, leading incident response activities, and providing expert investigative support. Ideal candidates...Cyber
- Koitecc Solutions in Alexandria, Virginia, seeks a seasoned SME Cyber Incident Response Analyst to support a high-visibility program aimed at enhancing data and analytics capabilities across the Department of War. The ideal candidate will have strong cybersecurity incident...Cyber
$131.3k - $237.35k
Leidos is seeking an experienced SME Incident Response Analyst in Alexandria, VA. This role involves designing and executing cybersecurity incident response protocols, collaborating closely with government teams to translate strategic requirements into scalable solutions...Cyber$100k - $125k
A cybersecurity solutions provider is seeking an Incident Response Expert III in Arlington, VA. This role involves serving as a subject matter... ...$125,000 is offered, alongside an opportunity to work on critical national security missions. #J-18808-Ljbffr ARGO Cyber SystemsCyber- Nightwing Group is seeking a Business Analyst to support onsite incident response for U.S. Government agencies experiencing cyber-attacks. The role involves gathering requirements, stakeholder coordination, and ensuring technology integration aligns with operational priorities...Cyber
$131.3k - $237.35k
Leidos Inc is seeking a Senior Incident Response Analyst to join their team in Arlington, Virginia. The role involves coordinating incident response efforts, analyzing cyber threats, and developing security protocols for the Department of Homeland Security's CISA Program...Cyber$131.3k - $237.35k
...faster, better-informed decisions using trusted data at scale. Leidos Digital Modernization sector is seeking an experienced SME Incident Response Analyst to support the delivery, enhancement, and adoption of enterprise data and analytics products used across multiple DoD...$131.3k - $237.35k
...and repeatability. Leidos has a critical need for a Senior Incident Response Analyst to support the DHS CISA Program. The Department of Homeland... ...monitoring, detecting, analyzing, mitigating, and responding to cyber threats and adversarial activity on the DHS Enterprise. The...CyberFlexible hours$86k - $138k
Cyber Incident Response Analyst with OT/ICS/SCADA / travel & active TS job at Peraton. Arlington, VA. Program Overview About The Role Peraton is currently seeking an experienced Incident Response Analyst with OT/ICS/SCADA experience for its Federal Strategic Cyber program...CyberContract workTemporary workInternshipShift work1 day per week$127k - $140k
...protecting organizations from ever-increasing cyber threats 24/7/365. Powered by Deepwatch... ...comprehensive detection and automated response to cyber threats together with... ...the Manager of Adversary Response, the Incident Response Analyst operates on the front lines of active...CyberPermanent employmentWork experience placementWork at officeRemote workWork from homeHome officeFlexible hours- A cybersecurity consulting firm is seeking an Incident Response Analyst to support incident management for federal contracts. The role includes... ...frameworks. Remote work is permitted with occasional on-site duties in the Washington, D.C. area. #J-18808-Ljbffr Cyber Synergy IncCyberRemote job
- Incident Response Analyst (Task 4 - Federal Cybersecurity Contract) Location: Remote with occasional on-site (Washington, D.C. Metro Area) Employment... .... Remote work permitted with reliable connectivity and camera‑enabled participation. #J-18808-Ljbffr Cyber Synergy IncCyberFull timeContract workRemote workMonday to Friday
- SwiftCruit is seeking a Cyber Defense Incident Responder in Arlington, Virginia. As a SOC analyst, you will respond to and mitigate cyber threats, ensuring the security of critical infrastructure for the Army. With a strong focus on incident management and coordination,...Cyber
- ECS is seeking a SOC CTIC Lead - SME to support the Army National Guard’s cybersecurity operations. This role involves conducting cyber incident investigations, performing malware triage, and documenting findings. Candidates should have 7+ years of cybersecurity experience...CyberContract work
- Leidos Inc is looking for an experienced SME Cyber Incident Response Analyst to enhance and support enterprise data and analytics products. The role involves monitoring cyber threats, leading incident detection activities, and coordinating with various teams for effective...Cyber
- Tyto Athene is searching for a Tier 2 Incident Response Analyst (IR) to support a law enforcement customer in Washington, DC. Our IR analysts form... ...our tools, triaging alerts, and investigating potential cyber threats. As a SOC team member, you will also serve as the initial...CyberPart timeShift workNight shiftWeekend workDay shift2 days per week
- Valid8 Financial, Inc. is urgently seeking SOC Analysts for positions at the Drug Enforcement Administration... ...clearance and at least 3 years of experience in Cyber Security. Responsibilities include monitoring incidents, investigating alerts, and coordinating responses...CyberImmediate start
$110k - $170k
...Piper Solutions is looking for a SOC Analyst in McLean, VA to support a critical... ...ideal candidate will have experience in cyber threat detection and incident analysis and must possess an active TS/SCI Full Scope Polygraph. Responsibilities include detecting cyber-attacks,...Cyber- ...Solutions, LLC is seeking a skilled Security Operations Center Analyst (SOC) in Arlington, Virginia. This role requires a bachelor's degree... ...environment. You will monitor security events, analyze network incidents, and utilize various security tools. Join a team committed to...Cyber
$131.3k - $237.35k
Leidos is seeking a Senior Incident Response Analyst in Bethesda, Maryland to support the DHS CISA Program. The role involves coordinating incident investigations, analyzing cyber incidents, and developing response procedures. A bachelor's degree in Computer Science or...Cyber- ...complexity, and trust intersect. Our single focus has been delivering cyber solutions to effectively manage risk & the business of cyber for 25 years! TDI is seeking a Senior Incident Response Analyst to join our team in support of a mission-critical government program...CyberPermanent employment
$100k - $125k
Incident Response Expert III (Cyber Eviction Analysts) Location: Washington DC Metro Area (On-Site) Citizenship: US only Clearance: Active TS/SCI (DHS EOD Suitability... ...as hunt and incident response subject matter expert (SME), applying in-depth knowledge on threat actor (TA)...CyberLocal areaImmediate start- ...have a Bachelor's degree with at least 9 years of experience or equivalent qualifications. Responsibilities include applying Risk Management Framework principles and managing incident responses. The role anticipates some remote work and offers opportunities contingent...CyberContract workRemote work
- ...Qualifications 5+ years of directly relevant experience in cyber incident management or cybersecurity operations Knowledge of incident response and handling methodologies Having close familiarity with NIST 800-62 (latest revision), and FISMA standards as they pertain...Cyber
- ...Virginia, is seeking a cybersecurity professional with expertise in cyber incident management. The ideal candidate will have over 5 years of relevant experience and be knowledgeable in incident response methodologies. The position requires familiarity with NIST 800-62,...Cyber
- BCMC is seeking a Cyber Incident Response Expert in Arlington, Virginia, to support cybersecurity efforts against malicious activity. The ideal candidate will have extensive experience in cyber incident response and must possess a TS/SCI clearance. Responsibilities include...Cyber
- A leading cybersecurity solutions provider is seeking a Cyber Action Officer to manage cyber incidents for U.S. Government agencies. The role requires supporting incident response, maintaining incident reporting, and coordinating with stakeholders. Candidates should have...Cyber
- Nightwing is seeking an Enterprise Architect and Project Lead to support critical cyber-incident response missions for U.S. Government clients. This role involves leading technology insertion teams, developing workflows, and delivering strategic planning documentation....Cyber
- A cybersecurity and intelligence firm is seeking a Cyber Eviction Analyst to support critical incident response missions. The role requires extensive expertise in threat actor tools, incident mitigation, and collaborative problem-solving. Ideal candidates will possess...Cyber
- ...-Time/Part-Time Full-Time Description RiVidium is seeking an Incident Response Lead to support our planned MODES III team supporting Military... ...contingent upon contract award. Key Responsibilities Lead cyber incident response coordination, containment planning, and...CyberFull timeContract workPart timeShift workNight shift
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Cyber Incident Response Analyst SME. Be the first to apply!
- information security consultant Alexandria, VA
- cyber security analyst Alexandria, VA
- cyber Alexandria, VA
- cyber security business analyst
- information security consultant
- cyber security analyst internship
- entry level cyber security analyst
- junior cyber security analyst
- cyber soc analyst
- cyber security operations analyst

