Cyber Security Incident Responder
Arlington, Virginia, United States
phia LLC
At phia, trust us to solve the complex challenges of our connected world through top-tier cyber intelligence & threat hunting. Contact us.At phia, our goal is to hire talented and passionate team members who desire to grow their skillsets, as well as the reputation of the company with our partners, clients, and stakeholders. phia is looking for a Cyber Security Incident Responder who can support our customer in the detection, response, mitigation, and reporting of cyber threats affecting the client networks. This position will be based at our customer site in Arlington, VA. This position requires shift work including nights/weekends. Work schedule will be 4x10 hour shifts with rotations every few months. This is not a remote/telework position.
What You'll Do
- Provide support in the detection, response, mitigation, and reporting of cyber threats affecting client networks
- Maintain an understanding of the current vulnerabilities, response, and mitigation strategies used in cybersecurity operations
- Produce reports and briefs to provide an accurate depiction of the current threat landscape and associated risk through the use of customer, community, and open-source reporting
- Provide analysis for correlated information sources
- Facilitate the customer's posturing itself to aggressively investigate cyber activity targeting customer information and its information infrastructure
- Assist the customer training department in the education of staff on the cyber threat
- Liaison with other government cyber threat analysis entities, such as intra-agency and inter-agency Cyber Threat Working Groups
- Maintaining proficiency in the use and production of visualization charts, link analysis diagrams, and database queries
- Analyze and report cyber threats as well as assist in deterring, identifying, monitoring, investigating and analyzing computer network intrusions
- Additional duties may include providing intrusion support to high technology investigations in the form of computer evidence seizure, computer forensic analysis, data recovery, and network assessments
- Meet and maintain customer required Information Assurance training compliance
Requirements
Key Experience/Qualifications
- 5 years of related experience with a bachelor's degree in Cybersecurity, Information Technology, or a related discipline, OR 4 years of experience and a Master’s Degree
- 8 additional years of professional experience may be considered in lieu of a bachelor’s degree
- Hands-on experience in the detection, response, mitigation, and/or reporting of cyber threats affecting client networks and one or more of the following:
- Experience in computer intrusion analysis and incident response
- Experience with Intrusion detection
- Computer network surveillance/monitoring
- Knowledge and understanding of network protocols, network devices, multiple operating systems, and secure architectures
- Experience in computer evidence seizure, computer forensic analysis, and data recovery Computer network forensics
- System log analysis
Desired Qualifications
- Experience supporting DHS, Federal Civil, Intelligence and/or DoD Customers
- Computer Forensics experience
- Malware reverse engineering experience
- Experience with Risk and Opportunity management
- Scripting experience (Python, Perl etc…)
- Experience with process development and deployment
- Excellent writing skills
- Prior experience with data visualization products such as Analyst Notebook is desired.
- Prior experience with Splunk
- Prior experience working in one of the following highly desired:
- Security Operations Center (SOC/NOSC)
- Computer Emergency Response Team (CERT/CIRT)
- DOD/FED Cyber Intel organization
- DCIO/MCIO, with Cyber Counterintelligence focus
Security Clearance:
- This position will require U.S. Citizenship and an active Top Secret security clearance; must be eligible for SCI and DHS EOD. We are unable to consider individuals who do not hold this level of clearance.
- DHS EOD suitability will be required prior to start.
Who You Are
- A proactive problem solver that appreciates the challenges of working in a fast-paced, dynamic environment.
- Intellectually curious with a genuine desire to learn and advance your career.
- An effective communicator, both verbally and in writing.
- Customer service-oriented and mission-focused.
- Critical thinker with excellent problem-solving skills.
If your experience and qualifications aren’t a match for this position, you will remain in our database for consideration for future opportunities that may be a better fit.
Benefits
Who We Are
phia LLC ("phia") is a Northern Virginia based, 8a certified small business established in 2011 with focus in Cyber Intelligence, Cyber Security/Defense, Intrusion Analysis & Incident Response, Cyber Architecture & Capability Analysis, Cyber Policy & Strategy, Information Assurance/Security, Compliance, Certification & Accreditation, Communications Security, Traditional Security, and Facilities Security. phia also provides cyber operations support functions such as: Program and Process Management, Engineering, Development, and Systems Administration that allow for Cyber Operations to efficiently integrate our customer’s missions and objectives. phia supports various agencies and offices within the Department of Defense (DoD), Federal government, and private/commercial entities.
phia values work-life balance and offers the following benefits to full-time (W-2) employees:
- Medical Insurance
- Dental Insurance
- Vision Insurance
- Life Insurance
- Short Term & Long-Term Disability
- 401k Retirement Savings Plan with Company Match
- Paid Holidays
- Paid Time Off (PTO)
- Tuition and Professional Development Assistance
- Flex Spending Accounts (FSA)
- Monthly Payroll
phia does not discriminate on the basis of race, sex, color, religion, age, national origin, marital status, disability, veteran status, genetic information, sexual orientation, gender identity or any other reason prohibited by law in provision of employment opportunities and benefits.
Tags: Clearance Compliance DoD Forensics Incident response Intrusion detection Log analysis Malware Monitoring Perl Python Reverse engineering Scripting Security Clearance Splunk Strategy Surveillance Top Secret Vulnerabilities
Perks/benefits: 401(k) matching Career development Health care Insurance Startup environment
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Staff Security Engineer jobs
- Open Information Security Specialist jobs
- Open Senior Security Analyst jobs
- Open Security Operations Engineer jobs
- Open Cyber Security Architect jobs
- Open Senior Cyber Security Engineer jobs
- Open Senior Information Security Analyst jobs
- Open Product Security Engineer jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Cyber Security Specialist jobs
- Open Cybersecurity Analyst jobs
- Open Principal Security Engineer jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Information Security Engineer jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Specialist jobs
- Open Security Specialist jobs
- Open Chief Information Security Officer jobs
- Open Security Researcher jobs
- Open Senior Penetration Tester jobs
- Open Senior Security Architect jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Senior Cyber Security Specialist jobs
- Open Information System Security Officer (ISSO) jobs
- Open Clearance-related jobs
- Open ISO 27001-related jobs
- Open Application security-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open Pentesting-related jobs
- Open CISM-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open Analytics-related jobs
- Open SaaS-related jobs
- Open IAM-related jobs
- Open CISA-related jobs
- Open Threat intelligence-related jobs
- Open Security assessment-related jobs
- Open DevOps-related jobs
- Open Java-related jobs
- Open Kubernetes-related jobs
- Open EDR-related jobs
- Open Malware-related jobs
- Open APIs-related jobs
- Open IDS-related jobs
- Open Security Clearance-related jobs
- Open CI/CD-related jobs
- Open DevSecOps-related jobs