Cyber Incident Response Analyst, Mid in Daegu at Booz Allen Hamilton Inc.

Date Posted: 11/5/2018

Job Snapshot

Job Description

Job Number: R0007898

Cyber Incident Response Analyst, Mid

Key Role:
Serve as a Cyber incident responder at the first line of the Army’s Cyber defense. Maintain responsibility for analyzing and directing the Army’s Regional Cyber Incident response operations. Leverage knowledge of computer and network architecture to provide analysis during investigations, including identifying adversarial activity and methods for future detection and prevention. Work with Tier 3 and below hands-on incident responders to mitigate Cyber incidents and recommend actions to prevent recurrence. Provide technical assistance to investigative and law enforcement activities, as appropriate and participate in Cyber defense exercises, including development and planning. Provide thought leadership and research, including presenting options for improving enterprise Cyberspace operations and systems development deployment. Compose and present in-depth reports and briefings to leadership. This position requires the ability to conduct occasional travel and shift work, as required.

Basic Qualifications:
-4+ years of experience with planning or performing defensive Cyberspace operations
-Experience with Army operational and exercise planning methodologies
-Experience with incident analysis and response methodology in investigations and the groups behind targeted attacks and tactics, techniques, and procedures (TTPs)
-Knowledge of system administration, network engineering, and security engineering
-Ability to perform analysis with strict attention to detail and display solution orientation to learn and adapt quickly
-Ability to lead and serve on a team to complete the mission and work well under pressure to rapidly scope and investigate incidents
-Ability to tactfully guide non-subordinate incident responders through precise mitigation processes
-TS/SCI clearance

-HS diploma or GED
-DoD 8570 IAT II Certification and CND Duty Role Certifications, including CEH, GCIA, or GCIH

Additional Qualifications:
-Knowledge of networking concepts and analysis tools and operating systems, software, and security controls
-Ability to perform independent research and report on findings
-Ability to apply originality and creativity in problem solving
-Ability to be a detail-oriented self-starter and quick learner
-Possession of excellent oral and written communication skills to communicate effectively under normal and stressful situations
-BA or BS degree in Engineering, CS, Information Security, or Information Systems

Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information; TS/SCI clearance is required.

We’re an EOE that empowers our people—no matter their race, color, religion, sex, gender identity, sexual orientation, national origin, disability, or veteran status—to fearlessly drive change.


Your Career is Waiting.

Get job alerts. Learn about new work and upcoming events. Share open roles with friends and colleagues.
Our Talent Network is your opportunity hub.

Get Answers and Access.

Need more information? Find it in our FAQs.

Application already in-process? Log in to keep going.