SkyePoint Decisions, Inc.

Returning Candidate?

Incident Response Analyst

Incident Response Analyst

ID 
2018-1570
Job Location 
US-MD-Beltsville
Job Type 
Immediate Hire
Category 
Information Technology

More information about this job

Overview

SkyePoint Decisions, Inc. is seeking a highly motivated team member to fill the role of Incident Response Analyst. Perform analysis on reported incidents and escalate to the JSOC or DS CIRT as needed.  Facilitate impact analysis, issue resolution and remediation, case management/reporting, root cause analysis, and other incident management functions as needed.  Perform various tasks and hold key responsibilities within the Cybersecurity Integrity Center (CIC) team.

Responsibilities

  • Coordinate response action to identified threats and incidents
  • Analyze operational anomalies, network behavior and performs mitigation actions derived from cyber threat monitoring and anomaly analysis, and actively monitors the Department’s network for cybersecurity threats and vulnerabilities to include intrusion analysis and reporting
  • Coordination of Cyber Hygiene Remediation activities
  • Level III IDS/IPS Ticket Response
  • Mentorship of Level I-II SOC Operations team personnel
  • Incident Investigation Procedures Maintenance
  • Notification Procedures Management
  • Case Management and Reporting
  • NOC/CIC Technical Support
  • Impact Analysis
  • Issue Resolution
  • Operational Event Analysis, Triage and Incident Response
  • Recovery Support
  • Support for Cybersecurity Incident Response Remediation
  • Perform other tasks consistent with the goals and objectives of the department/contract
  • Perform other duties as assigned by management

Qualifications

  • BS degree in Information Security or relevant field
  • Active Top-Secret Clearance
  • 5+ years of knowledge and related experience
  • Experience in tools for the following:
    • Splunk
    • Lumeta
    • Remedy
    • Palo Alto
    • Active Directory
    • SCOM
    • SCCM
    • SEP
    • Bromium
    • CISCO Iron Port
  • Demonstrated experience and competency with Incident Management Programs/Solutions
  • Ability to work in a fast-paced, demanding environment
  • Strong understanding and demonstrated experience applying a risk-based approach to information security and IT assessments
  • Excellent organizational skills and strong attention to detail
  • Ability to prioritize duties based on shifting demands
  • Strong analytical and problem-solving skills
  • Excellent verbal and written communication skills

Preferred Knowledge/Experience:

  • CISSP
  • Demonstrated experience in a SOC as an Event Handler or Incident Responder

 

SkyePoint Decisions is an established ISO 9000:2008 certified small business headquartered in Dulles, Virginia, with local offices across the Washington, DC, metropolitan area. SkyePoint Decisions has grown into a successful federal contractor by combining industry best practices with innovative solutions that consistently meet or exceed customer requirements. We understand and integrate our customer’s technology and mission requirements to successfully deliver high quality, cost effective services on time and on budget.

 

SkyePoint Decisions empowers a secure dynamic workforce to complete any mission -- anytime, anywhere. It’s what we call Agency Anywhere®. SkyePoint Decisions delivers Agency Anywhere® by tightly integrating our technical competencies (cybersecurity, cloud services, remote access, collaboration, system & network optimization, device management and more) to provide our customer’s operating environments with the security, flexibility, availability, and operational continuity required to enable today’s on-the-go federal workforce to successfully and securely complete any mission – anytime, anywhere. 

 

SkyePoint Decisions is committed to hiring and retaining a diverse workforce. We are an Equal Opportunity Employer, making decisions without regard to race, color, religion, sex, national origin, age, veteran status, disability, or any other protected class. U.S. Citizenship is required for most positions.