Talent.com
No longer accepting applications
Monitoring Cyber Incident Response Team (CIRT) Analyst

Monitoring Cyber Incident Response Team (CIRT) Analyst

PeratonBeltsville, MD, US
17 days ago
Job type
  • Temporary
Job description

Required :

  • Bachelor's degree and at least 2 years of experience or a High School diploma and 6 years of experience.
  • One of the professional certifications listed below, or have the ability to obtain one prior to start date :

A+ CE, CCNA-Security, CND, Network+ CE, SSCP

  • Continued certification is required as a condition of employment.
  • Demonstrated experience in the Incident Response lifecycle.
  • Knowledge of SOAR ticketing and automated response systems (e.g. ServiceNow, Splunk SOAR, Microsoft Sentinel).
  • Demonstrated experience with using Security Information and Event Management (SIEM) platforms (e.g. Splunk, Microsoft Sentinel, Elastic, Q-Radar).
  • Demonstrated experience in using Endpoint Detection and Response systems (e.g. MDE, ElasticXDR, CarbonBlack, Crowdstrike).
  • Knowledge of cloud security monitoring and incident response.
  • Knowledge of integrating IOCs and Advanced Persistent Threat actors.
  • Ability to analyze cyber threat intelligence reporting and understanding adversary methodologies and techniques.
  • Knowledge of malware analysis techniques.
  • Knowledge of the MITRE ATT&CK and D3FEND frameworks.
  • U.S. Citizenship required.
  • Active Interim Secret clearance in order to start.

    • Preferred :

  • Active Secret clearance.
  • Proficiency with Splunk for security monitoring, alert creation, and threat hunting.
  • Knowledge of Microsoft Azure access and identity management.
  • Proficiency with Microsoft Defender for Endpoint and Identity for security monitoring, response, and alert generations.
  • Experience in using digital forensics collection and analysis tools (e.g. Autopsy, MagnetForensics, Zimmerman-Tools, KAPE, CyLR, Volatility).
  • Experience with using ServiceNow SOAR for ticketing and automated response.
  • Knowledge of Python, PowerShell and BASH scripting languages.
  • Experience with cloud security monitoring and incident response.
  • Demonstrated ability to perform static / dynamic malware analysis and reverse engineering.
  • Experience with integrating cyber threat intelligence and IOC-based hunting.
  • Technical certifications such as : Security+, CySA+, Cloud+, Try Hack Me SAL1, Hack the Box CDSA, CyberDefenders, CCD, Azure SC-900, CCSP, GCIH, CCSK, GSEC, CHFI, GCLD, GCIA.
  • Advanced technical certifications such as : SecurityX / CASP+, PRMP, GREM, GEIR, GNFA, or GCFA.

    • Peraton is seeking an experienced Monitoring Cyber Incident Response Team (CIRT) Analyst to join Peratons' Federal Strategic Cyber Mission program.

    Location : Beltsville, MD; On-site

    Work Hours : Days Shift, 0600 – 1400 EST, SUN-THU.

    In this role, you will :

  • Detect, classify, process, track, and report on cyber security events and incidents.
  • Perform advanced in-depth analysis of coordinated Tier 1 alert triage and requests in a 24x7x365 environment.
  • Analyze logs from multiple sources (e.g., host logs, EDR, firewalls, intrusion detection systems, servers) to identify, contain, and remediate suspicious activity.
  • Characterize and analyze network traffic to identify anomalous activity and potential threats.
  • Protect against and prevent potential cyber security threats and vulnerabilities.
  • Perform forensic analysis of hosts artifacts, network traffic, and email content.
  • Analyze malicious scripts and code to mitigate potential threats.
  • Conduct malware analysis to generate IOCs to identify and mitigate threats.
  • Collaborate with Department of State teams to analyze and respond to events and incidents.
  • Monitor and respond to the CIRT Security Orchestration and Automation Response (SOAR) platform, hotline, email in-boxes.
  • Create tickets and initiate workflows as instructed in technical SOPs.
  • Coordinate and report incident information to the Cybersecurity and Infrastructure Security Agency (CISA).
  • Collaborate with other local, national and international CIRTs as directed.
  • Submit alert tuning requests.

    • DSCM

    J-18808-Ljbffr

    Create a job alert for this search

    Incident Response • Beltsville, MD, US

    Related jobs
    Senior Cyber Intrusion Detection Analyst

    Senior Cyber Intrusion Detection Analyst

    Vets HiredWashington, D.C., District of Columbia, United States
    Full-time
    Quick Apply
    A Senior Cyber Intrusion Detection Analyst is needed to provide advanced incident response and monitoring support.This is a hybrid position based in Washington, D. Saturday & Sunday, Friday 11pm7am,...Show moreLast updated: 30+ days ago
    • Promoted
    Cyber Warfare Technician

    Cyber Warfare Technician

    US NavyBaltimore, Maryland, United States
    Part-time
    Languages are more than just communication-they're cultural codes that need to be analyzed and in some cases, broken.As a Cryptologic Technician Interpretive (CTI) you're more than a linguist-you'r...Show moreLast updated: 30+ days ago
    Cybersecurity Vulnerability Analyst (Incident Manager III)

    Cybersecurity Vulnerability Analyst (Incident Manager III)

    VervicArlington, VA, USA
    Full-time
    Quick Apply
    Cybersecurity Vulnerability Analyst (Incident Manager III.Supporting our prime contractor and their U.Government customer to provide cybersecurity vulnerability analysis support to reduce the preva...Show moreLast updated: 13 days ago
    Cybersecurity Vulnerability Analyst (Incident Manager III)

    Cybersecurity Vulnerability Analyst (Incident Manager III)

    Solutions³ LLCArlington, VA, US
    Full-time
    Quick Apply
    Cybersecurity Vulnerability Analyst (Incident Manager III ) Description : Solutions³ LLC is supporting our prime contractor and their U. Government customer to provide cybersecurity vulne...Show moreLast updated: 30+ days ago
    Senior SOC Analyst

    Senior SOC Analyst

    KeenLogicMerrifield, VA, US
    Full-time
    Quick Apply
    Senior SOC Analyst and Incident Responder KeenLogic is seeking to hire a Senior SOC Analyst & Incident Responder to join our team at the Drug Enforcement Administration.All the duties listed su...Show moreLast updated: 14 days ago
    • Promoted
    Senior SOC Analyst

    Senior SOC Analyst

    General Dynamics Information TechnologySpringfield, VA, US
    Full-time
    Clearance Level Must Be Able to Obtain : .Cybersecurity,Cyber Threat Intelligence,Incident Response.Please take this opportunity to join one of GDIT's fastest long-standing growing programs! US Batt...Show moreLast updated: 5 days ago
    RMF Cybersecurity Analyst - TS / SCI with CI Poly

    RMF Cybersecurity Analyst - TS / SCI with CI Poly

    ENS Solutions, LLCCollege Park, MD, US
    Full-time
    Quick Apply
    Our work depends on a Risk Management Framework Cybersecurity Analyst joining our team to support Government activities.As a RMF Cybersecurity Analyst supporting the Federal Government and the Inte...Show moreLast updated: 30+ days ago
    Cyber Incident Manager / Incident Manager

    Cyber Incident Manager / Incident Manager

    Node.DigitalArlington, VA, US
    Full-time
    Quick Apply
    Cyber Incident Manager / Incident Manager.Must have an active Top Secret Security Clearance.Government customer to provide support for onsite incident response to civilian Government agencies and cr...Show moreLast updated: 30+ days ago
    Incident Manager III

    Incident Manager III

    Solutions³ LLCArlington, VA, US
    Full-time
    Quick Apply
    Incident Manager III Description : Solutions³ LLC is supporting our prime contractor and their U.Government customer to provide support for onsite incident response to civilian Governmen...Show moreLast updated: 30+ days ago
    Senior Cyber Defense Incident Responder

    Senior Cyber Defense Incident Responder

    Network Designs Inc.Washington DC, DC, USA
    Full-time
    Quick Apply
    NDi) is a leading Federal contractor that specializes in designing, developing, and delivering information technology and network solutions for government customers. Founded in 1985, NDi's firmly de...Show moreLast updated: 15 days ago
    Junior Cyber Defense Incident Responder

    Junior Cyber Defense Incident Responder

    Z FEDERALWashington, DC, USA
    Full-time +1
    Quick Apply
    JUNIOR CYBER DEFENSE INCIDENT RESPONDER.Junior Cyber Defense Incident Responder to support a full range of cyber security services on a contract in Washington DC. The position is full-time / permanent...Show moreLast updated: 11 days ago
    • Promoted
    SOC Technical Lead

    SOC Technical Lead

    ManTechMcLean, VA, United States
    Full-time
    This position may require occasional local travel to.The SOC Technical Lead will provide technical leadership and subject matter expertise for incident response and analysis.Lead a team of Cyber Op...Show moreLast updated: 30+ days ago
    Incident Manager II

    Incident Manager II

    Solutions³ LLCArlington, VA, US
    Full-time
    Quick Apply
    Incident Manager II Description : Solutions³ LLC is supporting our prime contractor and their U.Government customer to provide support for onsite incident response to civilian Government...Show moreLast updated: 30+ days ago
    Cyber Analyst - Mid

    Cyber Analyst - Mid

    Nalley ConsultingWashington, DC, US
    Full-time
    Quick Apply
    Join the Nalley Consulting team as a Cyber Analyst at DIA HQ.Cyber Analyst LCAT : Mid Location : DIA HQ, Washington, DC Clearance requirement : TS / SCI clearance. CI poly or willingness to take ...Show moreLast updated: 21 days ago
    Cyber Incident Manager III

    Cyber Incident Manager III

    Argo Cyber SystemsArlington, VA, USA
    Full-time
    Quick Apply
    Active TS / SCI (DHS EOD Suitability required).Argo Cyber Systems, LLC - Service-Disabled Veteran-Owned Small Business (SDVOSB). Argo Cyber Systems provides mission-critical cybersecurity support to U...Show moreLast updated: 2 days ago
    • Promoted
    Principal Auditor- Cyber, Risk and Analysis Technology Audit (Hybrid)

    Principal Auditor- Cyber, Risk and Analysis Technology Audit (Hybrid)

    Capital OneFalls Church, VA, US
    Full-time +1
    Principal Auditor- Cyber, Risk and Analysis Technology Audit (Hybrid).Capital One's Audit function is a dedicated group of professionals focused on delivering top-quality assurance services to the ...Show moreLast updated: 30+ days ago
    • Promoted
    Cyber Threat Analysis Division Task Lead

    Cyber Threat Analysis Division Task Lead

    Clearance JobsArlington, VA, US
    Full-time
    Seize your opportunity to make a personal impact as a Project / Task Manager supporting our program.GDIT is your place to make meaningful contributions to challenging projects and grow a rewarding ca...Show moreLast updated: 30+ days ago
    • Promoted
    Lead Cyber Threat Analyst

    Lead Cyber Threat Analyst

    DirectViz Solutions, LLCWashington, DC, United States
    Full-time
    DirectViz Solutions, (DVS) is a rapidly growing government contractor that provides strategic services that meet mission IT needs for government customers. DVS offers competitive compensation, compr...Show moreLast updated: 8 days ago
    Incident Report Lead

    Incident Report Lead

    ISI EnterprisesHerndon, VA, US
    Temporary
    Quick Apply
    ISI Defense is seeking a cleared, mission-driven Incident Response Lead to lead and scale our IR operations across both internal environments and our Managed Services client base.This role combines...Show moreLast updated: 30+ days ago
    • Promoted
    Principal Auditor - Cyber, Risk and Analysis Technology Audit

    Principal Auditor - Cyber, Risk and Analysis Technology Audit

    Capital OneFalls Church, VA, US
    Full-time +1
    Principal Auditor - Cyber, Risk and Analysis Technology Audit.Capital One's Audit function is a dedicated group of professionals focused on delivering top-quality assurance services to the organiza...Show moreLast updated: 30+ days ago