Secret Cleared Incident Response Analyst

Company: Gridiron IT
Location: Quantico
Posted on: September 23, 2022

Job Description:

*Job Description*GridIron is seeking an Incident Response Analyst in Quantico, VA.As an Incident Response Analyst, you will:* Receive and analyze network alerts to determine the cause of those alerts.* Receive and analyze reports from multiple sources to determine possible causes of such alerts and tune detection capabilities to alert on future occurrences* Monitor external data sources to maintain visibility of net defense threat conditions and emerging threats to the Enterprise Network and determine enterprise exposure to recommend preemptive defensive measures.* Inspect, identify and analyze network traffic for possible malicious and anomalous network activity.* Analyze log files from a variety of sources within the Enterprise Network to characterize anomalous activity.* Conduct initial troubleshooting of network sensor availability and coordinate with Sensor Grid Support technicians to maintain sensor availability.* Develop methods for automating incident detection. Provide quarterly reports on new automation actions and their results.* Document the technical details of suspected network incidents utilizing internal reporting database to support incident response and reporting requirements.* Perform event correlation using information gathered from multiple sources within the Enterprise Network to gain situational awareness and determine the impact of a network attack.* Support post-mortem analysis from compromised systems.* Collect and analyze network intrusion artifacts from a variety of sources to include logs, system images and packet captures to enable mitigation of network incidents within the Enterprise Network.* Document and report incidents within the MCD from initial detection through final resolution using standard DOD incident reporting.* Perform incident triage to determine scope, urgency, and potential operational impact by identifying the specific vulnerability and making recommendations which enable rapid remediation at the enterprise level.*Required Skills / Preferred Qualifications: ** Bachelor's degree or combined experience/education as substitute for minimum education.* Three (3) years of demonstrated experience as an Incident Response Analyst or similar role.* Experience with electronic investigation, forensic tools and methodologies, including log correlation and analysis, forensically handling electronic data, knowledge of the computer security investigative processes, and malware identification and analysis.* Experience with SIEM technologies.* Understanding of functionality and capabilities of computer network defense technologies, to include: Router ACLs, Firewalls, IDS/IPS, Anti-virus, Web Content filtering, host detection systems, SIEM, ports and protocols, enCase, GREM, Tanium, Elastic* Information Assurance Technical (IAT) Level II certificationJob Type: Full-timePay: $110,000.00 - $120,000.00 per yearBenefits:* 401(k)* 401(k) matching* Dental insurance* Health insurance* Health savings account* Life insurance* Paid time off* Retirement plan* Vision insuranceSchedule:* 8 hour shift* Monday to FridayAbility to commute/relocate:* Quantico, VA 22134: Reliably commute or planning to relocate before starting work (Preferred)Experience:* Incident Response Analyst: 3 years (Preferred)* SIEM: 3 years (Preferred)* Firewall: 3 years (Preferred)* forensics tools: 1 year (Preferred)License/Certification:* IAT Level II Certification (Preferred)Security clearance:* Secret (Required)Work Location: One location

Keywords: Gridiron IT, Alexandria , Secret Cleared Incident Response Analyst, Professions , Quantico, Virginia