Cybersecurity Incident Response Coordinator

NikSoft Systems Corporation is a recognized Information Technology solutions provider. Founded in 1998 and based in Reston, Virginia, NikSoft is a CMMI Level 3 Certified company with an established reputation for excellence and on-time delivery with a consistently high customer satisfaction rating from its Federal Government and private consulting contracts.

NikSoft is currently conducting a search for an Incident Response Coordinator to add to its team in support of the United States Postal Service's Cybersecurity program. The successful candidate will experience an unparalleled large-scale enterprise environment with over 800 Information Technology systems, 10s of 1000s of servers and desktop devices, processing billions of dollars in annual revenue and supporting a diverse user base spread across the entire US. Join the NikSoft team to scale your career to the next level.

Responsibilities:

Collaborate and lead the response actions for cybersecurity incidents in a large-scale cloud-based enterprise environment. Follow Advanced Persistent Threat (APT) procedures and systems to respond to complex threat behaviors or indications requiring experts to hunt and characterize APTs.

• Plan and execute incident response actions in a timely manner.
• Collaborate with threat management/detection specialists and other cybersecurity SMEs to respond to security incidents.
• Effectively collaborate with colleagues and counterparts internally and externally.
• Recognize potential, successful, and unsuccessful intrusion attempts and compromises, and perform careful reviews and analyses of relevant event detail and summary information.
• Experience managing cases with enterprise SIEM systems like ArcSight, Splunk or Sourcefire.

Qualifications:

• Bachelor's Degree in Computer Science, Information Technology or Cybersecurity related field.
• Strong knowledge and hands-on experience responding to incidents and threats in a large-scale enterprise environment is a must. Be ready to discuss best practices, lessons learned, and challenges.
• Must demonstrate a solid understanding of cyber security analysis, incident response, incident handling, and a proven member of an incident response team.
• Experience with Splunk, Sentinel One, Armis, SNA preferred

****Candidates must be able to obtain a Postal Sensitive Clearance (US Citizenship or Green Card required). Additionally, candidates must not have traveled outside of the USA for a combined period not to exceed 6 months within the last 5 years.***