Cyber Incident Analyst

Key Role:

Serve as an incident responder in the firm’s Cyber defense and maintain responsibility for identifying and responding to security threats. Operate in an open environment and maintain responsibility for incident confirmation, response, data collection, investigation, and analysis. Leverage knowledge of computer and network architecture to provide analysis during investigations and identify adversarial activity and methods for future detection and prevention. Use a combination of open source research, network and host forensic analysis, log review and correlation, and pcap analysis to complete investigations. Compose and present reports of root cause and after action findings to leadership for intrusion incidents. Manage alert life cycle ensuring that all alerts are kept up to date and tuned to ensure ease of responding.

Basic Qualifications:

-3+ years of experience with system administration, network engineering, and security engineering

-Experience with performing host or network incident response, malware analysis, or forensics

-Knowledge of host and network log sources to apply to investigation, IR methodology in investigations, and the groups behind targeted attacks and their tactics, techniques, and procedures (TTPs)

-Ability to pay strict attention to detail, display critical thinking and logic, and a solution orientation to learn and adapt quickly

-Ability to serve on a team to complete the mission and work well under pressure to rapidly scope and investigate incidents, as needed

-Ability to obtain a security clearance

-HS diploma or GED

Additional Qualifications:

-Experience with network forensics and intrusion analysis to perform independent research and report on findings

-Knowledge of networking concepts, analysis tools, operating systems, software, and security controls

-Ability to display originality and creativity in problem-solving

-Ability to be a self-starter, quick learner, and detail-oriented

-Possession of excellent oral and written communication skills to communicate effectively under normal and stressful situations

-Possession of excellent analytical skills

-BA or BS degree

-Active Secret clearance or higher

-CISSP, Security+, or SANS Certification


Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information.

We’re an EOE that empowers our people—no matter their race, color, religion, sex, gender identity, sexual orientation, national origin, disability, veteran status, or other protected characteristic—to fearlessly drive change.

Not ready to apply? Join our talent community and sign up for job alerts.