Incident Response Analyst

Company: Isys Technologies
Location: Sterling
Posted on: June 24, 2022

Job Description:

Minimum Clearance Required:
Top Secret SCI

Responsibilities:
ISYS Technologies delivers emerging technology solutions through our diverse and talented employees who are dedicated to our customers success. We empower our teams, contribute to our country and operate responsibly. We are a reputable award-winning WOSB providing Engineering and Enterprise Information Technology (EIT) services to the Federal government. Headquartered in Colorado, ISYS serves key national customers throughout the United States with a presence in more than 16 states. Functional Responsibilities: ISYS Technologies is seeking a Senior Incident Response AnalystClearance: Top Secret/SCI and must obtain an Entry on Duty (EOD) clearance to support this program.Job Duties:In-depth knowledge of each phase of the Incident Response life cycleExpertise of Operating Systems (Windows/Linux) operations and artifactsUnderstanding of Enterprise Network Architectures to include routing/switching, common protocols (DHCP, DNS, HTTP, etc), and devices (Firewalls, Proxies, Load Balancers, VPN, etc)Ability to recognize suspicious activity/events, common attacker TTPs, perform logical analysis and research to determine root cause and scope of IncidentsDrive implementation and improvement of new tools, capabilities, frameworks, and methodologiesInstill and reinforce industry best practices in the domains of incident response, cybersecurity analysis, case and knowledge management, and SOC operationsPromote and drive implementation of automation and process efficienciesFamiliarity with Cyber Kill Chain and ATT Framework and how to leverage in Security OperationsProvide guidance and mentorship to improve analyst skill sets and ensure delivery of high quality analysis and work productsEstablish trust and business relationships with customer and other relevant stakeholders

Qualifications:
Experience Requirements:Minimum of a bachelors degree in Computer Science, Engineering, Information Technology, Cybersecurity, or related field PLUS 4 years of experience in incident detection and response, malware analysis, or cyber forensics.4+ years of supervising and/or managing teams5+ years of intrusion detection and/or incident handling experienceCISSP and SANS GCIH or GCIA required upon startAdvanced knowledge in planning, directing, and managing Computer Incident Response Team (CIRT) and/or Security Operations Center (SOC) operations for a large and complex EnterpriseSignificant experience supervising and leading employees of various labor categories and technical skill levels in efforts similar in size and scope to a mature Security OperationMature understanding of industry accepted standards for incident response actions and best practices related to SOC operations.Strong written and verbal communication skills, and the ability to create technical reports based on analytical findings.Strong analytical and troubleshooting skills.Desired Requirements:Deep technical understanding of core current cybersecurity technologies as well as emerging capabilities.Hands-on cybersecurity experience (Protect, Detect, Respond and Sustain) within a Computer Incident Response organization including prior experience performing large-scale incident response.Demonstrated understanding of the life cycle of cybersecurity threats, attacks, attack vectors and methods of exploitation with an understanding of intrusion set tactics, techniques and procedures (TTPs).Familiarity or experience in Intelligence Driven Defense, Cyber Kill Chain methodology, and/or MITRE ATT framework.Familiarity with Cloud concepts and experience performing monitoring and responding to threats in Cloud environmentsEssential Requirements:US Citizenship is required.ISYS Technologies is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, gender identity, national origin, age, protected Veteran status, or disability status.Physical Demands:The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job with or without reasonable accommodation.While performing the duties of this job, the employee will regularly sit, walk, stand and climb stairs and steps. May require walking long distance from parking to work station. Occasionally, movement that requires twisting at the neck and/or trunk more than the average person, squatting/ stooping/kneeling, reaching above the head, and forward motion will be required. The employee will continuously be required to repeat the same hand, arm, or finger motion many times. Manual and finger dexterity are essential to this position. Specific vision abilities required by this job include close, distance, depth perception and telling differences among colors. The employee must be able to communicate through speech with clients and public. Hearing requirements include conversation in both quiet and noisy environments. Lifting may require floor to waist, waist to shoulder, or shoulder to overhead movement of up to 20 pounds. This position demands tolerance for various levels of mental stress.ISYS Technologies is an Engineering and Information Technology Company focused on providing Services to the Federal and State Government. ISYS offers a competitive compensation program and comprehensive benefits package to our employees.

Keywords: Isys Technologies, Sterling , Incident Response Analyst, Professions , Sterling, Virginia