Cyber Incident Response Team (CIRT) Lead
Tasks
- Analyze packet and IP traffic
- Conduct forensic collection and analysis
- Coordinate response actions with SOC and stakeholders
- Develop incident response playbooks
- Identify detection gaps and drive corrective actions
- Integrate threat intelligence and vulnerability data
- Lead incident response operations
- Lead tabletop exercises and red blue purple team engagements
- Manage incident response tooling
- Map adversary behavior to incidents
- Oversee incident investigations
- Perform malware analysis
- Produce incident reports and executive briefings
- Run after action reviews
- Train and improve incident response processes
Perks/Benefits
- N/A
Skills/Tech-stack
ATO | Blue Teaming | Chain of Custody | Detection engineering | Detection validation | Digital forensics | EDR | Evidence handling | Forensic collection | IOC analysis | Incident Response | Log Analysis | Malware analysis | Packet Analysis | Purple Teaming | RMF | Red Teaming | Remediation Verification | SOAR | Threat Intelligence | XDR
Education
Bachelor of Engineering | Bachelor of Science | Master of Arts | Master of Science | PhD
Related jobs
-
Lead IT Systems Analyst USD 110K-140KAzure AD | Bash | Conditional Access | DHCP | DNSFlexible work schedule | Remote-first work environment | Retirement plan match | Stock options | Unlimited PTOSenior-level Full TimeUnited States R17h ago
-
Validator/Vulnerability Management Lead (5165) USD 93K-156KAuthorization to Operate | Continuous Monitoring | Cyber directives | EMASS | Interim Authorization to TestSenior-level Full TimePatuxent River, MD1d ago
-
Cyber Intelligence Lead USD 116K-194KAI ML Risk Mitigation | AI/ML | AI/ML risk | Cybersecurity engineering | D3FENDSenior-level Full TimeUSA-VA-Chantilly, USA-AZ-Chandler1d ago
-
Cyber Incident Response Team (CIRT) Lead (SME) USD 112K-179KATO | Advanced Cyber Investigations | Adversary TTP | Adversary TTP Mapping | Blue TeamingSenior-level Full TimeHerndon, VA, United States1d ago
-
Security Operations Center (SOC) Lead USD 86K-138KAutomation and response | COOP | Detection and Response | Detection engineering | Detection tuningSenior-level Full TimeHerndon, VA, United States1d ago
-
Deputy Operations Lead USD 155K-190KAgile | Confluence | Incident Response | Jira | Linux401k matching | Disability coverage | Education and Training | Employee assistance program | Generous leave policySenior-level Full TimeFort Meade, MD, United States1d ago
-
Cyber Threat Intelligence Lead USD 163K-224KDetection Development | Incident Response | Intelligence lifecycle | Intelligence platforms | Log AnalysisSenior-level Full TimeRemote - Utah, United States R1d ago
-
VP, Workday Security and Compliance Lead USD 110K-188KAccess Control | Audit management | Cybersecurity compliance | Data Privacy | GDPR401k match | Dental insurance | Educational support | Employee assistance program | Employee networksSenior-level Full TimeBOSTON, United States1d ago
-
Lead Cybersecurity / Information Assurance Engineer USD 135K-216K800-53 | Agile Framework | Application Layer Protocols | Application-layer | Assessment and AuthorizationSenior-level Full TimeHome, DC, United States2d ago
-
Lead Engineer, Information Security USD 95K-164KAccess Management | CRISC | Cloud technologies | Container Security | Continuous DeploymentSenior-level Full TimeLowe's Charlotte Technology Hub 3505, United …2d ago
-
Access Control | CASB | Cloud Access Security Broker | Cloud Secure | Cloud Secure Web Gateway401k plan | Commuter benefits | Disability benefits | Discounts and savings | Hybrid work scheduleSenior-level Full Time112265-NJ-MetroPark, Iselin, United States2d ago
-
800-53 | Application Security | Asset discovery | Brinqa | CI/CDSenior-level Full TimeVirtual - Ohio, United States R2d ago
-
Cybersecurity Compliance Lead - Remote - FS437 USD 120K-169K800-53 | Active Directory | Audit management | Backup and Recovery | Business Impact AnalysisFlexible hours | Remote work flexibility | Travel as required | Work-life balanceSenior-level Full TimeRemote - Franklin, Massachusetts, United States R2d ago
-
Data Operations Lead (Hybrid) - 27895 USD 137K-195KAccess Control | Account Management | Attribute-Based Access Control | Attribute-based access | Automated Quality401k match | Education/training allowances | Health Dental Vision paid by employer | Hybrid work | Paid HolidaysSenior-level Full TimeColumbia, MD, Maryland, United States2d ago
-
Sr. Principal, AI Delivery Lead, Tech Program Manager USD 137K-240KABAC | AI RMF | API Key | API key management | Access LoggingSenior-level Full TimeChicago, IL, United States2d ago
-
Cyber Enabled Fraud Lead USD 123K-204KAlerting | Case management | Data Analysis | Data Quality | Data Visualization401k matching | Dental insurance | Disability insurance | Education benefit | Employee stock purchase planSenior-level Full TimeWash, 213 Washington St., Newark, NJ, …2d ago
-
Access Control | Application Security | Authentication and access control | Cloud Security | Cloud platformSenior-level Full TimeSeattle, WA, USA; Boulder, CO, USA3d ago
-
Lead System Engineer USD 125K-140KAccreditation artifacts | CSFC | Cybersecurity | Data-At-Rest | EncryptionOn-site work | Telework option | Travel up to 45 days per yearSenior-level Full TimeStafford, VA, United States3d ago
-
Cybersecurity Lead USD 104K-166KAccess Management | Audit Readiness | Authorization and ATO Coordination | Cloud Security | Configuration ManagementActive security clearance | Cross-functional leadership | TS/SCI clearanceSenior-level Full TimeHerndon, VA, United States3d ago
-
Detection & Case Management Lead USD 80K-128KCase management | Cloud Security | Dashboarding | Detection engineering | EDRSenior-level Full TimeHerndon, VA, United States3d ago
-
CDAP Team Lead USD 112K-179KApache Spark | Data Modeling | Data Pipelines | Data Processing | ElasticsearchSenior-level Full TimeHerndon, VA, United States3d ago
-
Lead, Cyber Defense & Incident Response USD 123K-204KActive Directory | Amazon Web Services | Azure | Bash | Cyber Kill Chain401k match | Dental insurance | Disability insurance | Education benefits | Employee stock purchase planSenior-level Full TimeWash, 213 Washington St., Newark, NJ, …3d ago
-
Principal Cyber Security Engineer, SOC Lead (US Federal) USD 167K-300KAdversary TTPs | Air-gapped | Air-gapped networks | Blue Team | CybersecurityFlexible work schedule | In office at least half time quarterly | Security clearance supportSenior-level Full TimeUSA, VA, McLean, United States3d ago
-
Alarm Monitoring | CCTV | Emergency response | Incident Response | OSINTDiscretionary bonusSenior-level Full TimeSan Jose, California, United States3d ago
-
Lead Workstation Agentic AI Engineer USD 120K-160KAgentic AI | Artificial Intelligence | Automated testing | Business Intelligence | CI/CDCompany-matched student loan contribution | Continuous learning access | Family-friendly perks | Financial wellness programs | Flexible time offSenior-level Full TimeUS - NJ - PRINCETON ONE …3d ago