Cyber Incident Response Analyst

At phia we hire talented and passionate people who are focused on collaborative, meaningful work, providing technical and operational subject matter expertise and support services to our partners and clients.
phia is hiring a qualified Cyber Incident Response Analyst to support a U.S. government customer in detecting, responding, mitigating, and reporting cyber threats affecting client networks. This job location is on-site in Pensacola, FL, and requires shift work.  

What You'll Do

• Provide support in the detection, response, mitigation, and reporting of cyber threats affecting client networks
• Maintain an understanding of the current vulnerabilities, response, and mitigation strategies used in cyber security operations
• Produce reports and briefs to accurately depict the current threat landscape and associated risks.
• Provide analysis for correlated information sources
• Facilitate the customer's posturing itself to aggressively investigate cyber activity targeting customer information and its information infrastructure
• Assist the customer training department in the education of staff on the cyber threat
• Liaison with other government cyber threat analysis entities, such as intra-agency and inter-agency Cyber Threat Working Groups
• Maintaining proficiency in the use and production of visualization charts, link analysis diagrams, and database queries
• Analyze and report cyber threats as well as assist in deterring, identifying, monitoring, investigating, and analyzing computer network intrusions
• Meet and maintain customer-required Information Assurance training compliance

Education + Experience Requirements

• 8+ years of directly relevant experience
• Bachelor’s degree in Information Security, Cyber Engineering, or a related discipline is required. A total of eighteen (18) or more years) may be substituted for a degree.
• Hands-on experience in the detection, response, mitigation, and/or reporting of cyber threats affecting client networks
• Experience in computer intrusion analysis and incident response
• Experience with computer network surveillance/monitoring
• Knowledge and understanding of network protocols, network devices, multiple operating systems, and secure architectures
• Experience in computer evidence seizure, computer forensic analysis, and data recovery
• Computer network forensics experience
• Experience with system log analysis
• Experience with current cyber threats and the associated tactics, techniques, and procedures used to infiltrate computer networks
• Current experience with network intrusion detection and response operations (Protect, Defend, Respond, and Sustain methodology)
• Current experience with cyber threats and the associated tactics, techniques, and procedures used to infiltrate computer networks
• Proficiency with MS Office Applications
• Must be able to work collaboratively across agencies and physical locations

Desired Expereince and Capabilities

• Experience supporting DHS, Federal Civil, Intelligence, or DoD Customers
• Malware reverse engineering experience
• Scripting experience (python, Perl, etc)
• Experience with process development and deployment
• Excellent writing skills
• Prior experience with data visualization products such as Analyst Notebook is desired
• Prior experience with Splunk

Desired Certifications

• Technical CND Incident Reporter Certifications(CEH, GCIH, GCIA, GNFA)
• DoDI 8570.01-M 857001-M or IAT Level I Compliant Certifications: Network + CE, A+ CE, CCNA + Security, SSCP

Security Clearance

• Must be a US Citizen
• Must have an active Top-Secret clearance with an ability to obtain TS/SCI clearance
• Must be able to obtain DHS Suitability

#LI-LC1
Who You Are A proactive problem solver that appreciates the challenges of working in a fast-paced, dynamic environment.Intellectually curious with a genuine desire to learn and advance your career.An effective communicator, both verbally and in writing.Customer service-oriented and mission-focused.Critical thinker with excellent problem-solving skills If your experience and qualifications aren’t a match for this position, you will remain in our database for consideration for future opportunities that may be a better fit.
Who We Arephia, LLC is a Northern Virginia-based, small business established in 2011 with a focus on Cyber Intelligence, Cyber Security/Defense, Intrusion Analysis & Incident Response, Cyber Architecture & Capability Analysis, Cyber Policy & Strategy, and Information Assurance/Security. we proudly support various agencies and offices within the Department of Defense (DoD), Federal government, and private/commercial entities.phia values work-life balance and offers the following benefits to full-time employees: Comprehensive medical insurance to include dental and visionShort Term & Long-Term Disability 401k Retirement Savings Plan with Company MatchTuition and Professional Development Assistance Flex Spending Accounts (FSA)
phia does not discriminate on the basis of race, sex, color, religion, age, national origin, marital status, disability, veteran status, genetic information, sexual orientation, gender identity, or any other reason prohibited by law in the provision of employment opportunities and benefits.