eGlobalTech

  • Senior Incident Response Analyst

    Type
    Regular Full-Time
    US Citizen Required
    Yes
    Job Location
    US-DC-Washington
    Active Security Clearance Required
    none
    Status
    Future
    Clearance Status
    Clearable
  • About the Role

    eGlobalTech's award winning Cyber Security Practice is looking for a Senior Incident Response Analyst to join our newly formed IR/ Cyber Forensics team out of Arlington, VA and at consulting locations around the DC Metro Area. Qualified candidates should have experience conducting incident analysis and response and coordinating with external teams on the resolution of incidents. This opportunity allows you the ability to work with several cutting-edge Incident Response products and customizable open source tools alongside a team of highly qualified Cyber Security Consultants. Candidates must have the ability to obtain at least a public trust, secret clearance is preferred. This role offers excellent compensation, career growth potential, and benefits packages including 20 days PTO, paid holidays and corporate events, continuing education reimbursements, and 401K match after just 90 days! 

    Responsibilities

    • Perform real-time monitoring and triage incidents and alerts received at the Cyber Security Center. (SOC)
    • Work collectively with other team members on incident analysis and response and coordinate with external teams on resolution of incidents.
    • Support efforts on threat hunting, network, host, and malware analysis, sensor tuning, and custom signature creation.
    • Perform investigations on netflow and packet/protocol capture and analysis and provide cyber threat intelligence on disk forensics and memory forensics.
    • Support efforts of network and hosts/endpoints for malicious activity, to include analysis of packet captures.
    • Assist in efforts to detect, confirm, contain, remediate, and recover from attacks.
    • Prepare executive summaries and support team lead briefings on significant investigations.
    • Assist in reporting adequate metrics to track efficiencies in team operations for leadership.

    Required Qualifications

    • Over five years of relevant professional experience, with the last three years working in security operations. (SOC)
    • Experience supporting real-time analysis and incident response activities.
    • Understanding of host-based/endpoint protection systems.
    • Must have at least a Bachelor of Science (BS) or Bachelor of Arts degree.
    • Ability to pass a security clearance background investigation; secret clearance is preferred.
    • Network investigation experience, to include netflow and packet/protocol capture and analysis
    • Experience with cyber threat intelligence, disk forensics and memory forensics.
    • Recent experience supporting Splunk infrastructure or other logging/ SIEM tools like ArcSight, McAffee, CarbonBlack, etc.
    • Recent experience using FireEye or other IDS/ IPS tools like AlienVault, Crowdstrike, etc.
    • Strong critical thinking, problem solving, and organization skills
    • Strong teamwork and collaboration skills
    • Excellent written and verbal communication skills 
    • At least one active industry-recognized information security certifications (Ex: CISSP, CEH, SSCP, GCIA, GCIH, Security+, etc.)

    Desired Qualifications

    Interested candidates please e-mail Michelle.Durante@eglobaltech.com to apply or ask more about this exciting new opportunity today! 

    About Us

    Founded in 2004, eGlobalTech (eGT) is a leading management and IT consulting firm in the Washington, D.C. metropolitan area.  Our focus is to provide the public sector with innovative solutions, leveraging cutting-edge tools and methodologies to meet the Government’s most pressing business needs.  To achieve this objective, our core practice areas – strategy, IT solutions development, cyber security, and cloud computing – are integrated to provide clients with comprehensive end-to-end results.  This integration enables our highly motivated teams to thrive in a culture that encourages out-of-the-box thinking, collaboration and an environment where you can excel.  For more information, please visit our website at www.eglobaltech.com

     

    Equal Employment Opportunity:

     

    As a condition of employment with eGlobalTech, any successful job applicant will be required to successfully complete a background investigation, which may also include a pre-employment drug screen and/or a credit check for positions in some areas of our business. eGlobalTech is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, religion, color, national origin, gender, age, status as a protected veteran, sexual orientation, gender identity, or status as a qualified individual with a disability. eGlobalTech participates in the E-Verify program.  EEO is the law.

     

    Options

    Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
    Share on your newsfeed