Cyber Defense Incident Responder
About The Position
The Cyber Defense Incident Responder will be responsible for responding to and resolving cybersecurity incidents, as well as proactively preventing their recurrence. This role involves monitoring system and network operations to ensure business continuity, reviewing the latest alerts to determine relevancy and urgency, and generating detailed reports. The position also includes performing scans to identify security vulnerabilities and potential risks, leveraging threat intelligence to identify affected systems and scope of attacks, analyzing risks, vulnerabilities, and malware, and managing security monitoring tools to direct remediation and recovery efforts.
Requirements
- 4+ years of experience supporting federal agencies, including in cybersecurity or SOC environments
- 1+ years of experience preparing and delivering weekly, monthly, or quarterly program reports and executive briefings
- Ability to coordinate across multiple stakeholders, including government leads, vendors, and technical teams
- Top Secret clearance
- Bachelor’s degree
Nice To Haves
- Experience in program or project management supporting IT or cybersecurity programs with multiple task orders or complex workstreams
- Experience contributing to CIO-level briefings or executive dashboards
- Experience tracking operational metrics, incident statistics, and performance trends
- Experience with project management and reporting tools such as MS Project, Excel, PowerPoint, or Confluence
- Knowledge of SOC operations, including incident response, threat monitoring, and security analytics
- Knowledge of risk management practices, including maintaining risk registers and mitigation strategies
- Ability to work in a fast-paced, deadline-driven environment with minimal oversight
- Possession of excellent written and verbal communication skills, including for writing reports and facilitating meetings
Responsibilities
- Respond to and resolve cybersecurity incidents.
- Proactively prevent reoccurrence of cybersecurity incidents.
- Monitor the operation of systems and networks to ensure business continuity.
- Review the latest alerts to determine relevancy and urgency.
- Generate detailed reports, including findings and operational status.
- Perform scans to identify security vulnerabilities and potential risks.
- Take effective measures to prevent and reduce cybersecurity incidents.
- Leverage emerging threat intelligence to identify affected systems and scope of the attack.
- Analyze and identify potential risks, vulnerabilities, and malware.
- Manage and configure security monitoring tools.
- Determine and direct remediation and recovery efforts.
Benefits
- Health, life, disability, financial, and retirement benefits
- Paid leave
- Professional development
- Tuition assistance
- Work-life programs
- Dependent care
- Recognition awards program
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Senior
