Tier 2 Cyber Incident Response Team (CIRT) Shift Lead
Tasks
- Analyze network traffic for anomalous activity
- Conduct forensic analysis of host artifacts network traffic and email content
- Coordinate incident information reporting to CISA
- Coordinate remediation actions with watch officers and leadership
- Create tickets and initiate workflows from SOPs
- Detect classify process track and report cyber security incidents
- Monitor and respond using SOAR hotline and email
- Perform in depth log analysis for suspicious activity
- Perform malware analysis and generate IOCs
- Provide technical procedural improvement recommendations
- Review tier 2 shift tickets for accuracy and completeness
Perks/Benefits
- N/A
Skills/Tech-stack
APT | Advanced persistent threat | Automation Response | Bash | Cloud Security | Cloud security monitoring | Cyber Threat | Cyber Threat Intelligence | D3FEND | Defender for Endpoint | Defender for Identity | Detection and Response | Digital forensics | EDR | Endpoint Detection and Response | Endpoint detection | Forensics | Incident Response | Indicator of Compromise | IoC | Log Analysis | Malware analysis | Microsoft Azure | Microsoft Defender | Microsoft Defender for Endpoint | Microsoft Defender for Identity | Microsoft Sentinel | Mitre Attack | Network Traffic | Network Traffic Analysis | Powershell | Python | SIEM | SOAR | Security Orchestration | Security Orchestration Automation | Security Orchestration Automation Response | Security monitoring | ServiceNow | Splunk | TTP | Threat Intelligence | Threat hunting | Traffic analysis
Education
Related jobs
-
Bitcoin Security Director USD 166K-240KBitcoin Protocol | Blockchain Security | Cryptography | Digital signatures | Distributed Ledger TechnologyExecutive-level Full TimeTysons Corner, VIRGINIA, United States4h ago
-
Security Manager USD 95K-130KAccess Control | Auditing | Badging | CCTV | COMSECFinancial benefits | Health benefits | Wellbeing benefitsMid-level Full TimeHonolulu, HI10h ago
-
Manager, Security Software Engineering USD 191K-253KC# | C++ | Compliance Automation | Detection and Response | Embedded SystemsMid-level Full TimeCosta Mesa, California, United States12h ago
-
Bitcoin Security Director USD 166K-240KBitcoin Protocol | Bitcoin protocol security | Blockchain Security | Cryptography | Custody DesignExecutive-level Full TimeTysons Corner, VIRGINIA, United States12h ago
-
Security Architect, Agentic AI USD 182K-260KAI RMF | AWS | Audit Logging | Authentication | AuthorizationEducation reimbursement | Fully remote | Parental leave options | Retirement options | Time off plans for vacation and sick timeSenior-level Full TimeRemote - USA R14h ago
-
Crisis management | Data analytics | Emergency Notification | Emergency notification systems | Evidence RetentionFlexible overnight shiftsSenior-level Full TimeFrisco, TX, United States15h ago
-
System Administration Team Lead Senior Manager USD 135K-278KAccess Management | Active Directory | Ansible | Automation | Backup and RecoveryHands-on experience | On-call rotation | Training and certificationsSenior-level Full TimeArlington, VA16h ago
-
Cloud Security Engineer USD 85K-100KActive Directory | Anti-spam | Automation | Azure Active Directory | CIS BenchmarksIndependent work environment | Remote work abilitySenior-level Full TimeUnited States - Remote R16h ago
-
Level 2 Cyber Security Analyst USD 100K-100KAuthentication | Bash | Crowdstrike EDR | DNS | Defender for EndpointOn-call rotation | Remote work | Training and academy enrollmentMid-level Full TimeDenver, CO R17h ago
-
Staff Security Engineer, Threat Detection & Response USD 168K-240KAccess Management | Application Security | CCPA | Cloud Security | Encryption401k matching | Flexible time off | Health plans | Paid parental leaveSenior-level Full TimeNew York, New York17h ago
-
Senior Sales Engineer, California USD 215K-245KAPIs | Antivirus | Cloud Security | EDR | Endpoint SecurityAttractive benefits | Community building | Growth opportunities | Stock optionsSenior-level Full TimeRemote, California, US R17h ago
-
Sr. Director Infrastructure & Network Security USD 138K-232KAPI Integration | Automation | CVE | CVSS | Cloud SecurityCompany paid time off for volunteering | Employee resource groups | Mentorship | Training and developmentSenior-level Full TimeRoseland, NJ, United States19h ago
-
Sr. Director Zero Trust & Data Security USD 139K-195KBrowser Isolation | CASB | Cloud Security | DLP | Data ClassificationCompany paid time off for volunteering | Hybrid work | Training and mentorshipSenior-level Full TimeRoseland, NJ, United States19h ago
-
Sr. Security Engineer USD 125K-160KAPI Integration | AWS | CloudTrail | Detection Systems | Detection and Response401k plan with company matching | Bereavement | Employee assistance program | Health, dental, and vision care | HolidaysSenior-level Full TimeSan Antonio, TX, United States19h ago
-
Blue Team Operator USD 127K-138KBurp Suite | Digital forensics | Incident Response | Kali Linux | MetasploitSCI CI-Poly eligible | Top Secret clearance | Travel up to 50 percentMid-level Full TimeWashington, DC, United States19h ago
-
Security Operations Center Lead SME USD 135K-180KAdvanced persistent threat | Continuous Monitoring | Cyber Operations | Cybersecurity | Defensive CyberSenior-level Full TimeFAIRFAX, VA, United States19h ago
-
ACAS Vulnerability Assessment Lead SME USD 112K-179KACAS | Asset tagging | Assured compliance assessment solution | Compliance Scanning | Container platformsSenior-level Full TimeFAIRFAX, VA, United States19h ago
-
Lead Security Engineer - IAM USD 119K-196KAWS | Active Directory | Azure | Cloud Security | ComplianceSenior-level Full TimeDes Moines, IA, United States20h ago
-
Sr. Security Architect & Engineer USD 129K-180KAccess Management | Application Security | Automation | CI/CD | Continuous MonitoringSenior-level Full TimeTyson's Corner, VA21h ago
-
Access Control | Access Management | Active Directory | Advanced persistent threat | Anti-MalwareSenior-level Full TimeWashington, D.C.21h ago
-
AWS | Access Management | Active Directory | CCP | CPMSenior-level ContractOrlando, United States21h ago
-
Executive-level Full TimeManassas, VA, United States22h ago
-
Director, Application Security USD 180K-210KAI/ML | AI/ML Security | API Security | Adversarial Testing | Application SecurityEmployee discounts | Employee equity | Medical/Dental/Vision insurance | Pet insurance | Unlimited PTOExecutive-level Full TimeSan Francisco, CA22h ago
-
Information System Security Engineer USD 137K-236KA and A | AWS | Access Control | Access Management | AzureSenior-level Full TimeUSA-VA-Virginia Beach22h ago
-
Cyber Security Architect USD 150K-201K800-53 | ATO documentation | AWS GovCloud | AWS Inspector | Audit LogsAbility to lift 50 lbs | Active DoD Top Secret clearance required | Driver's license required | Fully remoteSenior-level Full TimeArlington, VA R23h ago