• Senior Incident Response Handler

    Regular Full-Time
    US Citizen Required
    Job Location
    Active Security Clearance Required
    Clearance Status
  • About the Role

    eGlobalTech's award winning Cyber Security Practice is looking for a Senior Incident Response Handler to join our newly formed IR/ Cyber Forensics team out of Arlington, VA and at consulting locations around the DC Metro Area. Qualified candidates must be able to perform incident analysis and triage alerts received at a newly established, and fully loaded, Cyber Security Center. This opportunity allows you the ability to work with several cutting-edge Incident Response products and customizable open source tools. Candidates must have the ability to obtain at least a public trust, secret clearance is preferred. This role offers excellent compensation, career growth potential, and benefits packages including 20 days PTO, paid holidays and corporate events, continuing education reimbursements, and 401K match after just 90 days! 


    • Provide support in maintaining an incident response lab environment using advanced open source technologies and various incident response products.
    • Perform real-time monitoring and triage capabilities of incidents and alerts received.
    • Support efforts on threat hunting, network, host, and malware analysis, sensor tuning and custom signature creation.
    • Lead the application of cyber intelligence to improve security operations.
    • Perform cyber threat hunting, recommend computer network defense strategies, provide real-time analysis and incident response activities including reconstructing events from network, endpoint, and log data.
    • Measure and manage individual and team performance.
    • Ensure adequate metrics and documentation of team operations for leadership and executive reports.
    • Plan, research, and develop security policies, standards and procedures.
    • Read and use the results of mobile code, malicious code, and anti-virus software.
    • Understand endpoint security solutions to include File Integrity Monitoring and Data Loss Prevention.

    Required Qualifications

    • At least six years of relevant professional experience working in cyber security with the past three years in an operational security environment (SOC).
    • Must have at least a Bachelor of Science (BS) or Bachelor of Arts degree.
    • Must be able to pass a security clearance background investigation; secret clearance is preferred.
    • Prior experience leading teams of three or more Incident Response/ SOC Analysts.
    • Recent experience supporting Splunk infrastructure or other logging/ SIEM tools like ArcSight, McAffee, CarbonBlack, etc.
    • Recent experience using FireEye or other IDS/ IPS tools like AlienVault, Crowdstrike, etc.
    • Must have excellent communication skills and ability to work with internal and external stakeholders. Federal consulting experience and C-Suite security briefing experience is preferred.
    • Professional experience working with anti-virus software, intrusion detection, firewall configuration, and content filtering.
    • Experience designing secure networks, systems, and application architectures
    • Experience and understanding of host-based/endpoint protection systems.
    • Knowledge of cyber intelligence, disk forensics and memory forensics.
    • Strong critical thinking, problem solving, and organization skills.
    • Strong teamwork and collaboration skills.
    • At least one active industry-recognized information security certifications (Ex: CISSP, CEH, SSCP, GCIA, GCIH, Security+, etc.)

    Desired Qualifications

    Interested candidates please e-mail to apply or ask more about this exciting new opportunity today! 

    About Us

    Founded in 2004, eGlobalTech (eGT) is a leading management and IT consulting firm in the Washington, D.C. metropolitan area.  Our focus is to provide the public sector with innovative solutions, leveraging cutting-edge tools and methodologies to meet the Government’s most pressing business needs.  To achieve this objective, our core practice areas – strategy, IT solutions development, cyber security, and cloud computing – are integrated to provide clients with comprehensive end-to-end results.  This integration enables our highly motivated teams to thrive in a culture that encourages out-of-the-box thinking, collaboration and an environment where you can excel.  For more information, please visit our website at


    Equal Employment Opportunity:


    As a condition of employment with eGlobalTech, any successful job applicant will be required to successfully complete a background investigation, which may also include a pre-employment drug screen and/or a credit check for positions in some areas of our business. eGlobalTech is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, religion, color, national origin, gender, age, status as a protected veteran, sexual orientation, gender identity, or status as a qualified individual with a disability. eGlobalTech participates in the E-Verify program.  EEO is the law.



    Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
    Share on your newsfeed