Senior Incident Response Analyst
9614 Arlington VA Non-specific Customer Site, United States
USD 131K-237K Senior-level Full Time
Tasks
- Acquire analyze endpoint network artifacts volatile memory and malicious files
- Coordinate incident investigation and response lifecycle
- Correlate analyze events and data to determine incident scope
- Create security metrics and key performance indicators
- Develop document and maintain incident response procedures workflows and playbooks
- Develop security scripts signatures and alerts
- Document incident actions in case management systems
- Identify attacker tactics techniques and procedures as indicators of compromise
- Prepare formal incident reports
- Tune and maintain EDR IDS SIEM to reduce false positives and improve detection
Perks/Benefits
- N/A
Skills/Tech-stack
Bash | Cyber Threat | Cyber Threat Intelligence | DHCP | DNS | Detection and Response | Digital forensics | Endpoint Detection and Response | Endpoint detection | File analysis | Firewalls | HTTP | Incident Response | Intrusion Detection | Intrusion Detection System | Kill Chain | Linux | Load balancers | MITRE ATT&CK | Malicious File Analysis | Malware analysis | Memory Analysis | Network Analysis | Powershell | Proxies | Python | Routing | SANS Kill Chain | SIEM | Switching | Threat Intelligence | VPN | Volatile Memory Analysis | Volatile memory | Windows
Related jobs
-
Technical Threat Intelligence Analyst ll USD 80K-80KInformation Triage | Intelligence writing | Networking | Open Source | Open-source research401k match | ADDD Insurance | Coaching and mentoring opportunities | Employee assistance program | HSA employer contributionMid-level Full TimeSeattle, Washington17h ago
-
APIs | Civil Unrest Risk | Civil unrest | Crisis management | Data dashboards401k match | Catered lunch | Disability insurance | Employee stock purchase program ESPP | Flexible PTOSenior-level Full TimeLivingston, NJ / New York, NY … R19h ago
-
Access Restrictions | Alert management | Cybersecurity | Email Security | Incident ResponseLimited telework | Onsite workMid-level Full TimeAiken, SC, United States19h ago
-
Chain of Custody | Device Forensics | Digital forensics | Encryption Decryption | Event managementMentorship | TrainingMid-level Full TimeAiken, SC, United States19h ago
-
Senior Specialist, Compliance USD 90K-110KAccess Management | Access reviews | Audit documentation | Automation | Cause analysisSenior-level Full TimeRemote, United States R21h ago
-
Cybersecurity Analyst USD 114K-190KAlert Tuning | Application troubleshooting | Case management | Detection Systems | Detection and ResponseMid-level Full TimeUSA-VA-Tysons22h ago
-
Access Control | Change Management | Data Loss Prevention | Data loss | Endpoint protection401k | Commuter benefits | Dental insurance | Employee assistance program | Employee stock purchase planEntry-level Full TimeNew York, NY, United States22h ago
-
Threat Intelligence Analyst Associate USD 90K-95KData correlation | Detection engineering | Incident Handling | Log Analysis | Operations Center401k | Certification training | Dental insurance | Employee assistance program | Employee discountsMid-level Full TimeDowners Grove, IL, United States1d ago
-
IT Security Analyst USD 95K-121KBash | Cloud Security | Cloud security management | Encryption | Identity ManagementOn-call support | Weekend supportMid-level Full TimeHouston, TX, US1d ago
-
Senior Cyber Analyst USD 151K-187KBash | Boolean logic | Counterespionage | Counterintelligence Investigations | Cyber analysis10 percent or less travel | 401k match | Flexible PTO | Healthcare contributionSenior-level Full TimeUSA VA Onsite, United States1d ago
-
Identity Access Management Administrator USD 42K-55KAccess Management | Access reviews | Active Directory | Exchange | IAM Metrics401k match | Accident insurance | Banking benefits | Critical illness insurance | Dental insuranceMid-level Full TimeRosemont - WTFC - 9701 W …1d ago
-
Cybersecurity Analyst I (CYSECAI) USD 80K-120KAlert Tuning | Configuration assessment | Cyber Threat | Cyber Threat Intelligence | Cybersecurity Event ResponseOn-call rotation | TelecommutingMid-level Full TimeRemote Worker, United States R1d ago
-
System Owner-Boundary Compliance Owner - US Federal USD 130K-232K800-53 | AI | AWS | Azure | Cloud ArchitectureEmployee growth opportunities | Flexible work schedule | In office at least half of time each quarterSenior-level Full TimeUSA.VA.Reston, United States1d ago
-
Security Analyst USD 70K-118KBusiness Writing | Cloud Security | Communication | Compliance Management | CybersecurityEmployee assistance program | Paid time off | Retirement savings planEntry-level Full TimeQuincy, Massachusetts, United States1d ago
-
Senior Cyber Analyst USD 151K-187KBash | Boolean logic | Counterintelligence investigation | Cyber analysis | Data Analysis401k match | Flexible PTO | Healthcare contributionSenior-level Full TimeUSA VA Onsite, United States1d ago
-
Mid-level Full TimeVA543: 22270 Pacific Blvd, Dulles 22270 …1d ago
-
SOC Analyst USD 62K-75KAccess Management | Cloud Security | Compliance | EDR | EncryptionMental health services | Paid parental leave | Paid time offEntry-level Full TimeChicago - Illinois - Wacker, United …1d ago
-
SOC Security Analyst L2 USD 125K-180KActive Directory | Artifact analysis | Authentication attacks | BEC | CrowdStrike FalconRemote work | Rotating shift scheduleSenior-level Full TimeUnited States - Remote R1d ago
-
Entry-level Full Time5607 Huntsville AL, United States1d ago
-
Mid-level Full Time2113 The Mark Ctr Alexandria VA, …1d ago
-
Security Analyst (3068) USD 73K-91KAccess Control | Data Loss Prevention | Data encryption | Data loss | Firewalls457B Deferred Compensation Plan | Comprehensive healthcare coverage | Defined benefit pension plan | Free transportation pass | Paid HolidaysMid-level Full TimePhiladelphia, PA, US, 191071d ago
-
Computer Network Defense Analyst Mid-Level USD 100K-200KComputer Security | Computer forensics | Cybersecurity | Firewall | Information Assurance401k | Career development | Dental insurance | Flexible spending account | Health savings accountMid-level Full TimeSaratoga Springs, UT, US1d ago
-
Senior Cyber Security Analyst (Remote within WA, ID, OR) USD 117K-154KAccess Controls | Access Management | Active Directory | Automation | Azure401k match | Dental insurance | Life insurance | Long-term disability | Medical insuranceSenior-level Full TimeWashington R1d ago
-
CMDB | Change Management | GRC workflows | Governance Risk | Governance Risk and Compliance401k match | Dental insurance | Employee Assistance Program (EAP) | Flexible spending account | Health savings accountMid-level Full TimeAustin, TX, United States1d ago
-
Access Control | Chain of Custody | Data Retention | Digital forensics | EncryptionMentorship | Vendor trainingMid-level Full TimeAiken, SC, United States1d ago