Cyber Defense Incident Responder
About The Position
As a cyber defense incident responder, you understand the value of hunt-forward operations, and you know that battles are won in the grey. At Booz Allen, you can use your cyberspace operations experience to create solutions that will be executed on a worldwide stage. In this role, you’ll be counted on to understand cyberspace capabilities to respond to and resolve cybersecurity incidents and proactively prevent reoccurrence of these incidents. You'll also review the latest alerts to determine relevancy and urgency and/or generate detailed reports, including findings and operational status. Additional responsibilities include performing scans to identify security vulnerabilities and potential risks and take effective measures to prevent and reduce cybersecurity incidents, leveraging emerging threat intelligence to identify affected systems and scope of the attack, and managing and configuring security monitoring tools and determine and direct remediation and recovery efforts. Your role will be vital in the development of operations plans to support command and control. If you want to be in the fight–working shoulder to shoulder with the Army–influencing the most critical global cyber missions, this is the opportunity for you. Join us. The world can’t wait.
Requirements
- 4+ years of experience supporting federal agencies, including in cybersecurity or SOC environments
- 1+ years of experience preparing and delivering weekly, monthly, or quarterly program reports and executive briefings
- Ability to coordinate across multiple stakeholders, including government leads, vendors, and technical teams
- Top Secret clearance
- Bachelor’s degree
Nice To Haves
- Experience in program or project management supporting IT or cybersecurity programs with multiple task orders or complex workstreams
- Experience supporting federal agencies, including in cybersecurity or SOC environments
- Experience contributing to CIO-level briefings or executive dashboards
- Experience tracking operational metrics, incident statistics, and performance trends
- Experience with project management and reporting tools such as MS Project, Excel, PowerPoint, Confluence, or similar
- Knowledge of SOC operations, including incident response, threat monitoring, and security analytics
- Knowledge of risk management practices, including maintaining risk registers and mitigation strategies
- Ability to work in a fast-paced, deadline-driven environment with minimal oversight
- Possession of excellent written and verbal communication skills, including for writing reports and facilitating meetings
Responsibilities
- Respond to and resolve cybersecurity incidents.
- Proactively prevent reoccurrence of cybersecurity incidents.
- Review the latest alerts to determine relevancy and urgency.
- Generate detailed reports, including findings and operational status.
- Perform scans to identify security vulnerabilities and potential risks.
- Take effective measures to prevent and reduce cybersecurity incidents.
- Leverage emerging threat intelligence to identify affected systems and scope of the attack.
- Manage and configure security monitoring tools.
- Determine and direct remediation and recovery efforts.
- Develop operations plans to support command and control.
Benefits
- health, life, disability, financial, and retirement benefits
- paid leave
- professional development
- tuition assistance
- work-life programs
- dependent care
- recognition awards program
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Senior
