Incident Response Engineer
About The Position
The Incident Response Engineer will manage security incident response processes, investigate threats, and implement corrective actions to contain and remediate incidents. They will analyze security alerts, perform initial triage, determine the scope and impact of incidents, and escalate or coordinate responses with other teams as necessary. Responsibilities include conducting thorough investigations, performing digital forensics and malware analysis, preserving digital evidence, and managing cybersecurity incident and spillage response processes. They will develop, maintain, and improve incident response playbooks, participate in threat hunting activities, and conduct post-incident reviews to generate reports and track metrics. This role involves configuring and maintaining incident response tools and systems, including SIEM solutions, and contributing to security awareness efforts through training and exercises. The Engineer will stay current with emerging threats and best practices, assist in security awareness programs, and collaborate with IT and security teams to enhance incident response capabilities and prevent future incidents.
Requirements
- Bachelor’s degree (or 4 additional years of equivalent experience)
- Minimum 8 years of experience in security incident response, digital forensics, or cyber investigation
- Must meet DoD 8140 requirements
- Active TS/SCI clearance
Responsibilities
- Manage security incident response processes
- Investigate threats
- Implement corrective actions to contain and remediate incidents
- Analyze security alerts
- Perform initial triage
- Determine the scope and impact of incidents
- Escalate or coordinate responses with other teams as necessary
- Conduct thorough investigations
- Perform digital forensics and malware analysis
- Preserve digital evidence
- Manage cybersecurity incident and spillage response processes
- Develop, maintain, and improve incident response playbooks
- Participate in threat hunting activities
- Conduct post-incident reviews to generate reports and track metrics
- Configure and maintain incident response tools and systems, including SIEM solutions
- Contribute to security awareness efforts through training and exercises
- Stay current with emerging threats and best practices
- Assist in security awareness programs
- Collaborate with IT and security teams to enhance incident response capabilities and prevent future incidents
Benefits
- Hands-on experience
- Certifications
- Industry training
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Senior
