Incident Response Analyst, Senior in Herndon, VA at Booz Allen Hamilton Inc.

Date Posted: 10/26/2018

Job Snapshot

Job Description

Job Number: R0020818

Incident Response Analyst, Senior

Key Role:

Maintain responsibility for the detection, triage, investigation, remediation, response, and reporting from client sensors and agents. Analyze and correlate all relevant Cybersecurity event data and other data sources for indicators and potential security breaches. Coordinate with appropriate organizations regarding possible security incidents. Conduct intra-office research to evaluate events, as necessary, and maintain the current list of coordination points of contact. Provide situation awareness trending reports and provide feedback with recommendations to enhance Cyber defense. Generate, track, and report monthly statistics on virus activity. Provide training, mentoring, and hands-on help to raise the talent and skill of team members and provide recommendations for end-to-end analytical processes.

Basic Qualifications:

-8+ years of experience with performing Cybersecurity analysis, security engineering, or incident response

-Experience with providing situation awareness trending reports and providing feedback with recommendations to enhance Cyber defense

-Knowledge of the incident response process

-TS/SCI clearance with a polygraph

-BA or BS degree in Engineering, Computer Science, IT, or Cyber

Additional Qualifications:

-Experience with industry leading SIEM tools, including Arcsight and Splunk

-Experience with endpoint detection and response tools, including Carbon Black, Encase Cybersecurity, and Tanium

-Experience with industry leading intrusion detection and prevention systems, including McAfee Network Security Manager, Cisco ESA, SiteProtector, Sourcefire Snort, or Palo Alto Wildfire

-Experience with industry leading Case Management tools, including JIRA or ServiceNow

-Possession of excellent analytical and problem-solving skills

-DoD 8570 IAT Certification

Clearance: 
Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information; TS/SCI clearance with polygraph is required.

We’re an EOE that empowers our people—no matter their race, color, religion, sex, gender identity, sexual orientation, national origin, disability, or veteran status—to fearlessly drive change.

Your Career is Waiting.

Get job alerts. Learn about new work and upcoming events. Share open roles with friends and colleagues.
Our Talent Network is your opportunity hub.


Get Answers and Access.

Need more information? Find it in our FAQs.

Application already in-process? Log in to keep going.