Cybersecurity Incident Response Analyst

MANTECH seeks a motivated, career and customer-oriented Cyber Incident Response Analyst to join our team in McLean, VA .

 

This role supports our customer by providing critical 24x7x365 coverage to protect mission-essential infrastructure. The selected candidate will work a fixed 4-day work week consisting of 10-hour shifts, with available schedules assigned to either Sunday through Wednesday or Wednesday through Saturday. We have openings across 1st (6am to 4pm), 2nd (12pm to 10pm), and 3rd (9pm to 7am) shifts, with shift differentials applied to the 2nd and 3rd shifts. Please note that all new team members must be able to complete initial training on the day shift for a period of six weeks.

Responsibilities

• Lead the detection and continuous monitoring of potential security incidents across diverse network environments.
• Perform deep-dive analysis and investigation into complex security alerts to determine root causes and impact.
• Execute rapid incident response and mitigation strategies to contain threats and restore normal operations.
• Integrate threat intelligence and vulnerability management data to proactively identify and defend against emerging risks.
• Maintain comprehensive reporting and documentation for all security events to ensure compliance and historical accuracy.
• Collaborate with cross-functional teams to refine incident response playbooks and enhance overall defensive posture.
• Provide technical mentorship to junior analysts during high-pressure investigative cycles.

Minimum Qualifications

• High School Diploma
• Experience in a cyber security related role.
• Ability to obtain a DoD 8570 IAT-II certification within 6 months of hire.
• Knowledge of cybersecurity principles, incident detection, and response methodologies.
• Experience working with various operating systems, network protocols, and enterprise security technologies.
• Knowledge of threat intelligence application and security incident response best practices.
• Proficiency in conducting log analysis and correlating data from multiple security platforms.
• Ability to translate technical findings into actionable executive summaries.

Preferred Qualifications

• Bachelor’s degree in Computer Science, Cybersecurity, or a similar technical field.
• Previous experience performing incident response within the Intelligence Community (IC).
• Relevant industry certifications such as GIAC Certified Incident Handler (GCIH) or Certified Incident Response Handler (GCFA).
• Advanced experience using SIEM systems, network security tools, and specialized log analysis software.
• Applied knowledge of the MITRE ATT&CK framework to map adversary behavior and improve detection.

Clearance Requirements

• Must have a current/active TS/SCI with Polygraph.

Physical Requirements

• The person in this position must be able to remain in a stationary position 50% of the time.