Senior Incident Response Analyst

Minimum Clearance Required

US Citizen

Responsibilities

I2X Technologies is a reputable technology services company to the Federal Government.  Whether the focus is on space exploration, national security, cyber security, or cutting-edge engineering applications, I2X is ready to offer you the chance to make a real-world impact in your field and for your country.  We provide long-term growth and development. Headquartered in Colorado, I2X is engaged in programs across the country and in more than 20 states.  Our programs support multiple Federal agencies, the Department of Defense and often focused on the space initiatives of our government customers.

 

• Coordinate investigation and response efforts throughout the Incident Response lifecycle

• Correlate and and analyze events and data to determine scope of Cyber Incidents

• Acquire and analyze endpoint and network artifacts, volatile memory, malicious files/binaries and scripts

• Recognize attacker tactics, techniques, and procedures as potential indicators of compromise (IOCs) that can be used to improve monitoring, analysis and Incident Response.

• Develop, document, and maintain Incident Response process, procedures, workflows, and playbooks

• Tune and maintain security tools (EDR, IDS, SIEM, etc) to reduce false positives and improve SOC detection capabilities

• Document Investigation and Incident Response actions taken in Case Management Systems and prepare formal Incident Reports

• Create metrics and determine Key Performance Indicators to drive maturity of SOC operations

• Develop security content such as scripts, signatures, and alerts

Qualifications

• Bachelors’ degree in Computer Science, Engineering, Information Technology, Cyber Security, or related field and 12-15 years of related experience.  Additional years of experience and/or cyber certifications may be considered in lieu of degree.

• In-depth knowledge of each phase of the Incident Response life cycle

• Expertise of Operating Systems (Windows/Linux) operations and artifacts

• Expertise of Enterprise Network Architectures to include routing/switching, common protocols (DHCP, DNS, HTTP, etc), and devices (Firewalls, Proxies, Load Balancers, VPN, etc)

• Ability to recognize suspicious activity/events, common attacker TTPs, and perform logical analysis and research to determine root cause and scope of Incidents

• Expertise with Cyber Kill Chain and have utilized the ATT&CK Framework

• Have scripting experience with Python, PowerShell, and/or Bash

• Ability to independently prioritize and complete multiple tasks with little to no supervision

• Flexible and adaptable self-starter with strong relationship-building skills

• Strong problem-solving abilities with an analytic and qualitative eye for reasoning

• Strong verbal and written communication skills

•Ability to communicate with all levels of audiences (subordinates, peers & leadership)

 

Candidates will have at least one of the following certifications:

SANS GIAC: GCIH, GCIA, GCFA, GPEN GCFE, GREM

CISSP OSCP, OSCE, OSWP

 

Preferred Qualifications

Experience in cyber government, and/or federal law enforcement FISMA systems.

 

 

Essential Requirements:

US Citizenship is required.

 

I2X Technologies is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, gender identity, national origin, age, protected Veteran status, or disability status.

 

In compliance with Colorado’s Equal Pay for Equal Work Act, the annual base salary range for this position is listed . Please note that the salary information is a general guideline only. I2X Technologies considers factors such as (but not limited to) scope and responsibilities of the position, candidate’s work experience, education/training, key skills, internal peer equity, as well as, market and business considerations when extending an offer.

 

Physical Demands:

The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job with or without reasonable accommodation.

 

While performing the duties of this job, the employee will regularly sit, walk, stand and climb stairs and steps. May require walking long distance from parking to work station. Occasionally, movement that requires twisting at the neck and/or trunk more than the average person, squatting/ stooping/kneeling, reaching above the head, and forward motion will be required. The employee will continuously be required to repeat the same hand, arm, or finger motion many times. Manual and finger dexterity are essential to this position. Specific vision abilities required by this job include close, distance, depth perception and telling differences among colors. The employee must be able to communicate through speech with clients and public. Hearing requirements include conversation in both quiet and noisy environments. Lifting may require floor to waist, waist to shoulder, or shoulder to overhead movement of up to 20 pounds. This position demands tolerance for various levels of mental stress.

 

I2X Technologies is an Engineering and Information Technology Company focused on providing Services to the Federal and State Government. I2X offers a competitive compensation program and comprehensive benefits package to our employees.