CIRT Remediation Incident Handler

McLean, VA

Job ID: 127046 Industry: Government


Candidate MUST HAVE a TS/SCI with Polygraph security clearance in order to be considered.

Position Description:

The contract provides Computer Network Defense and Analysis (CND) to the customer’ s network.  Because the customer allows their user community to access their personal email accounts while on site, there is a lot of spam hitting their network regularly.  This contract is responsible for the 24 x 7 x 365 protection of the customer’ s network from maliciously intended viruses and attacks on their network.  As part of this they are looking for two Intrusion Detection Systems (IDS) Cyber Security Analysts to come and join their team.  The candidate would be an Incident Response Remediation Handler and will perform Incident Response, Computer Forensics and Intrusion Analysis to support the identification, monitoring, investigating and analyzing computer network intrusions as part of this Cyber Security Operations team.

Day-to-Day Responsibilities:
  • Performs the detection, identification, and reporting of possible cyber-attacks/intrusions, anomalous activities, and misuse activities
  • Determines appropriate course of action in response to identified cyber security incidents or anomalous network activity
  • Correlates incident data to identify specific vulnerabilities and make recommendations that enable expeditious remediation
  • Recommend enterprise protection measures based on incident trends
  • Prepares detailed recommendations for network defense improvements to close or mitigate incidents

  • Strong analytical and problem solving skills
  • 5 years of progressively responsible experience in Cyber Security, InfoSec, Security Engineering, Network Engineering with emphasis in cyber security issues and operations, computer incident response, systems architecture, data management
  • BS degree in electrical engineering, computer engineering, computer science, or other closely related IT discipline
  • 8+ years' experience if no BS. Only 50% of CSA positions can use experience waiver
  • Familiarity with the following classes of enterprise cyber defense technologies:
    • Security Information and Event Management (SIEM) systems
    • Network Intrusion Detection System/Intrusion Prevention Systems (IDS/IPS)
    • Host Intrusion Detection System/Intrusion Prevention Systems (IDS/IPS)
    • Network and Host malware detection and prevention
    • Network and Host forensic applications
    • Web/Email gateway security technologies

  • Excellent interpersonal, organizational, writing, communications, and briefing skills
  • SCSA- DOD 8570 IAT Level I or CND-IR

Job Type:  Full Time 

Not ready to apply?

Send an email reminder to:

Share This Job:

Related Jobs: