SOC CTIC Lead - SME
FAIRFAX, VA, United States
USD 104K-155K (estimate) Senior-level Full Time
Tasks
- Analyze host artifacts
- Analyze network artifacts
- Apply MITRE ATT&CK analysis
- Collect digital evidence
- Conduct cyber incident response investigations
- Conduct malware triage
- Coordinate incident handling with SOC and CIRT
- Correlate security events for incident determination
- Document incident actions and findings
- Perform forensic acquisition
- Perform incident tracking and case management
- Perform root cause analysis
- Support containment actions
- Support post incident reporting and lessons learned
- Support recovery validation
- Use IDS and IPS telemetry
- Use SOAR workflows for response
- Use USIEM analytics for investigation
- Use Zeek metadata analysis
- Use endpoint detection and response for triage
- Verify remediation restoration status
Perks/Benefits
- N/A
Skills/Tech-stack
Case management | Cause analysis | Containment | Cybersecurity | Digital forensics | EDR | Event Correlation | Evidence collection | Forensic acquisition | IDSIPS | Incident Response | Incident documentation | Log Analysis | MITRE ATT&CK | Malware triage | Recovery Validation | Root Cause Analysis | Root cause | SOAR | Security Event Correlation | Security telemetry | Sysmon | Threat Analysis | USIEM | Zeek
Education
Bachelor of Engineering | Bachelor of Science | Master of Science | PhD
Related jobs
-
Senior SOC Analyst/Lead USD 135K-150KCIRT | CVE management | Cause analysis | Computer Networking | Computer fundamentals24x7 shift coverage | Flexible shift scheduling subject to operational needs | Remote workSenior-level Full TimeWork from home, VA, United States R13h ago
-
800-53 | Access Management | Cloud Security | Configuration Management | Critical Security Controls401k match | Annual flu vaccinations | Dental coverage | Development sessions | Discounted gym membershipExecutive-level Full TimeIselin, New Jersey, United States14h ago
-
Cyber Defense – Defense Engineering Service Lead USD 108K-176KAccess Control | Anomaly Detection | Cloud Security | Data Enrichment | Data NormalizationSenior-level Full TimeMalvern, United States1d ago
-
Cyber Defense – Defense Engineering Service Lead USD 108K-176KAnomaly Detection | CIM | Cloud Security | Data Enrichment | Data NormalizationSenior-level Full TimeMalvern, United States1d ago
-
Cyber Defense Forensics Lead USD 170K-230KCloud Security | Detection Systems | Digital forensics | Endpoint threat detection | Event managementSenior-level Full TimeUSA VA Ashburn - 22001 Loudoun …1d ago
-
APIs | Agile | CPE | CVE | CVSSBackup childcare | Financial coaching | Health care coverage | Mental health support | On-site health and wellness centersExecutive-level Full TimePlano, TX, United States1d ago
-
Staff Systems Engineer - Cybersecurity Project Lead USD 177K-265KAgile | Configuration Management | Continuous Deployment | Continuous integration | Contract BaselineOnsite work | Relocation assistance | Travel up to 10 percentSenior-level Full TimeCASDRB08, United States2d ago
-
By Design | Cybersecurity | Design review | IEC 62443 | ISO 27001401k matching | Employee assistance program | Health Coach | Paid Holidays | Paid parental leaveSenior-level Full TimeRemote, United States R2d ago
-
CFL Intrusions Lead USD 99K-206KCapture analysis | Digital Evidence | Digital Evidence Handling | Digital forensics | Evidence handling401k plan | Additional insurance | Dental insurance | Holidays | Medical insuranceSenior-level Full TimeMD401: 46579 Expedition Dr Px Rvr …2d ago
-
Lead Cyber Security Research Consultant USD 119K-224KAI Assisted Development | Azure | Cloud Security | Cloud platform | Cobalt StrikeHybrid work schedule | No visa sponsorshipSenior-level Full Time142019-NC-300 South Brevard, Charlotte, United States2d ago
-
ACAS | ArcSight | Change Control | Configuration Management | Cyber incidentOnsite workSenior-level Full TimeIndianapolis, IN3d ago
-
ACAS | Anomaly Detection | ArcSight | CMRS | Computer SecuritySenior-level Full TimeIndianapolis, IN3d ago
-
Information Security Assurance Lead USD 98K-166KAssessment and Authorization | Audit tracking | Configuration Management | Control Testing | Cybersecurity complianceSenior-level Full TimeIndianapolis, IN3d ago
-
Platform/Network/Teleservices Engineering Lead USD 107K-145KAlternatives analysis | Benefit Analysis | Capacity Planning | Cisco Unified Communications | Cisco Unified Communications ManagerSenior-level Full TimeIndianapolis, IN3d ago
-
Security Team Lead USD 100K-150KChange Control | Configuration Management | DISA STIG | DNS | DNS SecurityOnsite work | Top secret clearance requiredSenior-level Full TimeBratenahl, OH3d ago
-
Security Operations Manager USD 108K-140K800-171 | AWS GovCloud | Bash | Behavioral analytics | CMMCTS SCI clearance process | TS clearance or higherMid-level Full TimeTorrance, CA4d ago
-
Cybersecurity Operations Lead - Secret Clearance USD 115K-158KAccess Management | Anomaly Detection | Authentication | Authorization | Cloud SecuritySenior-level Full TimeScott Air Force Base, South Drive, …5d ago
-
Cybersecurity Technical Lead - Secret Clearance USD 118K-170KAccess Management | Anomaly Detection | Application Firewall | Authentication | AuthorizationProfessional development | Security clearance supportSenior-level Full TimeScott Air Force Base, South Drive, …5d ago
-
Security Engineering Lead USD 132K-176KAccess Lifecycle | Access Management | Access lifecycle management | EDR | GRCSenior-level Full TimeLogan, UT, USA5d ago
-
SOC Team Lead USD 118K-166KACAS | DISA VDP | Defense in Depth | Detection engineering | Event CorrelationDental insurance | Health insurance | Paid Holidays | Paid life insurance | Paid time offSenior-level Full TimeRemote (United States) R5d ago
-
Data Scientist ID71658 USD 145K-190KCloud Security | Cloud Security Posture | Cloud Security Posture Management | Cybersecurity | Data VisualizationFlexible schedule | Mentorship | Personalized growth roadmaps | Professional growth | Remote and office optionsSenior-level Full TimeWest Palm Beach, United States5d ago
-
Data Scientist ID71658 USD 145K-190KCybersecurity | Data Visualization | Machine Learning | PyTorch | PythonEducation budget | Fitness budget | Flextime | Mentorship | Personalized growth roadmapSenior-level Full TimeTampa, United States5d ago
-
Data Scientist ID71658 USD 145K-190KCybersecurity | Data Visualization | Machine Learning | PyTorch | PythonEducation budget | Fitness budget | Flexible schedule | Mentorship | Office optionsSenior-level Full TimeBoston, United States5d ago
-
Data Scientist ID71658 USD 145K-190KCloud Security | Cloud Security Posture | Cloud Security Posture Management | Cybersecurity | Data VisualizationFlextime | Office work options | Personalized growth roadmaps | Professional growth | Remote work optionsSenior-level Full TimeLos Angeles, United States5d ago
-
Data Scientist ID71658 USD 145K-190KCloud Security | Cloud Security Posture | Cloud Security Posture Management | Cybersecurity | Data VisualizationEducation budget | Fitness budget | Flexible schedule | Mentorship | Professional growthSenior-level Full TimeJersey City, United States5d ago