Cybersecurity Incident Handler, Senior
About The Position
Cybersecurity Incident Handler, Senior The Opportunity: As a security operations center analyst, you’re in the middle of the action, responding to and mitigating threats in real time. You’re the first line of cyber defense for your organization, and they look to you for guidance on best practices and security measures. We need a Tier 2 SOC analyst like you to help us secure critical infrastructure from the constant onslaught of cyber attacks for the mission partner. As a SOC analyst on our team, you’ll improve monitoring strategies and analyze threats. You’ll work with the team to understand, mitigate, and respond to threats quickly, restoring operations and limiting the impact. You’ll guide efforts to figure out just how many systems are affected and assist recovery efforts. You’ll combine threat intelligence, event data, and assessments from recent events, and identify patterns to understand attackers’ goals to stop them from succeeding. This is a great opportunity to hone your cybersecurity skills with hands-on experience in threat assessment and incident response. Work with us as we secure Air Force networks from malicious actors. Join us. The world can’t wait.
Requirements
- 7+ years of experience in Cybersecurity
- 3+ years of experience within a security operations center actively engaged with incident response activities, including analysis of artifacts, writing incident reports, and triaging of security events
- Experience in a cybersecurity or computer field, including supporting information assurance, networking, or systems administration
- Experience with cloud native technologies across Cloud Service Providers such as AWS Guard Duty, Azure Defender for Cloud, or AWS Macie
- Experience with cyber threat intelligence, digital forensics, red teaming, threat hunt, cloud incident response, counterintelligence, and detection engineering
- Knowledge of Cybersecurity standards and the implementation of industry best practices
- Knowledge of external standards, including ISO 22301, ISO 22317, and NIST guidelines, such as NIST 800-53 or NIST 800-61
- TS/SCI clearance
- Bachelor’s degree and 3+ years of experience with cyber or IA or 7+ years of experience with cyber or IA in lieu of a degree
- DoD 8140 Level II Certification, such as Security+, CySA+, or CISSP Certification
Nice To Haves
- Experience with advanced Microsoft Office products
- Experience with cyber technologies and capabilities, including continuous monitoring, incident response, advanced threat hunt, secure Cloud and mobile capabilities, ongoing assessment, digital forensics, and threat hunt
- Experience with Cloud and DevSecOps
- Experience with cybersecurity tools and solutions such as Microsoft Defender for Endpoint, Corelight, Suricata or Snort, Palo Alto and Cisco firewalls, Archer Case Management, ServiceNow, Threat Connect, Splunk Enterprise Security, Splunk SOAR, Cofense, IronPort Mail Gateways, or Microsoft G5 Defender suite
- Possession of excellent verbal and written communication skills
- Possession of excellent time management and analytical skills
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
Number of Employees
1-10 employees
