Senior Cyber Incident Detection and Response Analyst

General information

Requisition # R58836 Locations USA-VA-Herndon, USA-DC-DC Posting Date 03/03/2025 Security Clearance Required Secret Remote Type Onsite Time Type Full time

Description & Requirements

Transform the future of federal services with ManTech! Join a vibrant, energetic team committed to enhancing national security and public services through innovative tech. Since 1968, we’ve partnered with Federal Civilian sectors to deliver impactful solutions. Engage in exciting projects in Digital Transformation, Cybersecurity, IT, Data Analytics and more. Ignite your career and drive change. Your journey starts now—innovate and excel with ManTech!

ManTech seeks a motivated, career and customer-oriented Senior Cyber Incident Detection and Response Analyst to join our team in Herndon, VA.   

The NOSC Senior Cybersecurity Incident Detection and Response Analyst leads the monitoring, analysis, and response to complex cybersecurity threats affecting networks. They conduct advanced threat investigations, coordinate incident containment and remediation efforts, and enhance detection capabilities to strengthen overall cybersecurity resilience. Reports to the Cybersecurity Incident Response Lead. 

 Responsibilities include, but are not limited to:

• Provide 24/7 support for incident data flow and response, content, and remediation, and interfaces with other incident response centers in maintaining an understanding of threats, vulnerabilities, and exploits that could impact networks and assets. 
• Perform the role of Incident Coordinator for IT Security events requiring focused response, containment, investigation, and remediation. 
• Perform real-time proactive event investigation on various security enforcement systems, such as SIEM, Anti-virus, Internet content filtering/reporting, malcode prevention, Firewalls, IDS & IPS, Web security, antispam, etc. 
• Assist with forensic analysis on hosts supporting investigations. 
• Conduct malware analysis in out of-band environment (static and dynamic), including complex malware. 
• Analyze operational anomalies, network behavior and perform mitigation actions derived from cyber threat monitoring and anomaly analysis, and actively monitor the networks for cybersecurity threats and vulnerabilities. Perform quality assurance on Incident Closures. 
• Develop and implement detection use cases and signatures to enhance threat identification capabilities. Continuously assess and improve incident detection and response processes. 

Minimum Qualifications: 

• 10+ years of experience in cybersecurity, with a focus on incident detection and response and a Bachelor’s degree in computer science, information technology, cybersecurity, or a related field of study (or equivalent experience). 
• One of the following relevant certifications: Certified Information Systems Security Professional (CISSP), Certified Incident Handler (GCIH), Certified Information Security Manager (CISM), Certified Ethical Hacker (CEH) 
• Proficiency with SIEM tools (e.g., Splunk, ArcSight). 
• Experience with intrusion detection/prevention systems (IDS/IPS), endpoint detection and response (EDR) tools, and firewalls. 
• Strong understanding of network protocols, operating systems, and security architectures. 
• Familiarity with digital forensics tools and techniques. 

Preferred Qualifications: 

• Experience working in a government or defense environment. 

• Familiarity with DHS policies and procedures. 

• Knowledge of broader cybersecurity frameworks (e.g., NIST, ISO 27001). 

Clearance Requirements: 

• Must have a current/active Secret clearance with the ability to obtain and maintain a TS/SCI.
• The ability to obtain and maintain a DHS EOD suitability is required prior to starting this position.

Physical Requirements: 

• Must be able to work in an office environment and maneuver in data center and other IT equipment installation locations.  
• Constantly operates a computer and other office productivity machinery, such as a calculator, copy machine and computer printer 
• Ability to lift and carry 75 lbs for distances up to 50 feet 

ManTech International Corporation considers all qualified applicants for employment without regard to disability or veteran status or any other status protected under any federal, state, or local law or regulation.
If you need a reasonable accommodation to apply for a position with ManTech, please email us at careers@mantech.com and provide your name and contact information.