Incident Response Analyst in Arlington, VA at Booz Allen Hamilton Inc.

Date Posted: 8/8/2018

Job Snapshot

Job Description

Job Number: R0012901

Incident Response Analyst

Key Role:

Apply knowledge of monitoring, analyzing, detecting, and responding to Cyber events and incidents within information systems and networks. Advise on an integrated, dynamic Cyber defense and leverage Cybersecurity solutions to deliver Cybersecurity operational services, including intrusion detection and prevention, situational awareness of network intrusions, security events and data spillage, and incident response actions. Test, implement, deploy, and operate the infrastructure hardware and software which are required to effectively manage the organization’s Cybersecurity operational services.

Basic Qualifications:

-4+ years of experience with Cybersecurity

-2+ years of experience with host investigations

-Experience with performing command and control functions in response to incidents

-Experience with serving as a technical expert and liaison to law enforcement personnel and explain incident details, as required

-Experience with conducting peer reviews and providing quality assurance reviews for junior personnel

-Experience with overseeing technical analysis by mentoring or providing guidance to others on data collection, analysis, and reporting in support of engagements

-Experience with writing and publishing computer network defense guidance and reports on incident findings to appropriate constituencies

-Experience with performing real-time computer network defense incident handling, including forensic collections, intrusion correlation or tracking, threat analysis, and direct system remediation tasks to support deployable Incident Response Teams (IRTs)

-Knowledge of collecting intrusion artifacts, including source code, malware, and Trojans and use discovered data to enable the mitigation of potential computer network defense incidents within the enterprise

-Top Secret clearance

-HS diploma or GED

Additional Qualifications:

-DHS Suitability clearance preferred

-SANS GIAC Certifications, OS Certifications, including Windows and Linux, Security+, and CISSP

Clearance:

Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information; Top Secret clearance is required.

We’re an EOE that empowers our people—no matter their race, color, religion, sex, gender identity, sexual orientation, national origin, disability, or veteran status—to fearlessly drive change.

JHT

Your Career is Waiting.

Get job alerts. Learn about new work and upcoming events. Share open roles with friends and colleagues.
Our Talent Network is your opportunity hub.


Get Answers and Access.

Need more information? Find it in our FAQs.

Application already in-process? Log in to keep going.