Triumph Enterprises--Corporate Headquarters

Returning Candidate?

Senior Cyber Security Incident Response Analyst

Senior Cyber Security Incident Response Analyst

Job ID 
2018-2096
Location 
US-MD-Bethesda
Posted Date 
3/30/2018
Category 
Leadership

More information about this job

Job Description

Senior Cyber Security Incident Response Analyst

 

Triumph Enterprises is currently looking for a Senior Cyber Security Incident Response Analyst to join a Security Operations organization on a contract with a federal government client with an important mission.

 

Members of this team are highly motivated, self-driven, and are given great latitude to operate. This is an advanced hybrid role combining intel, investigations, analysis, and hunting.  Qualified candidates must have great initiative, a positive and healthy questioning attitude, and a drive to continuously help mature SOC operations.  This role affords the opportunity to work with a great team while serving a fulfilling mission.  Apply today!

 

Responsibilities

  • Apply strategic, operational, and tactical cyber intelligence to improve security operations
  • Lead and/or support efforts to prepare for, monitor, detect, analyze/confirm, contain, remediate, and recover from security incidents
  • Conduct deep analysis and hunting operations
  • Perform investigation of network traffic and hosts/endpoints for potential security incidents, to include
    • Sensor data and log analysis
    • Netflow data
    • Packet captures
    • Memory analysis
    • Disk forensics
  • Provide adequate metrics, documentation, executive summaries and briefings to leadership and other stakeholders

 

Qualifications / Requirements

Credentials

  • BS/BA degree
  • Five or more years of work experience
  • Three or more years of cyber security work experience
  • One or more certifications in information security (such as GCIA, GCIH, CEH, CISSP, SSCP, Sec+, etc)

Sound cyber security knowledge foundation, to include understanding of:

  • Adversary TTPs
  • Network technology and common protocols
  • Network security
  • Host security
  • Malware
  • Security tools and sensors

Experience, Skills and Abilities

  • High technical ability/aptitude, demonstrated through prior technical experience and accomplishment
  • Network investigation experience, to include netflow and packet/protocol capture and analysis
  • Endpoint/host forensics experience
  • SIEM experience
  • Strong critical thinking, problem solving, and organization skills
  • Strong teamwork and collaboration skills
  • Good written and verbal communication skills
  • Ability to pass a security clearance background investigation

 

Preferred Qualifications:

  • Security clearance
  • Experience and effective participation in hunt, computer network defense, real-time analysis and incident response activities, to include ability to reconstruct events from network, endpoint, and log data
  • Experience and understanding of host-based/endpoint protection systems
  • Cyber intelligence experience
  • Intelligence community expereince 
  • Programming experience
  • Scripting experience
  • Server administration experience
  • Enterprise forensic tool(s) experience
  • Federal contract experience

Company Overview

Founded in 2005, Triumph Enterprises, Inc. (Triumph) is a Service-Disabled Veteran-Owned Business. We are headquartered in McLean, Virginia. Triumph offers the federal Civilian and Defense markets personalized knowledge-based professional services.  Our company provides world-class solutions leveraging the following core disciplines:

  • Program Management Support
  • Engineering Support Services
  • Training and Exercise Support Services
  • IT Security (Cyber Operations and Risk Management Services)
  • Sustainment and Life Cycle Logistics Services
  • Data Management and Analytical Services

Our pursuit of excellence is driven by an emphasis on Client Focus, Integrity, Imagination, and Employee Engagement – the Core Values that motivate and inspire our leadership, business practices, and company culture.

 

Triumph participates in e-Verify. We provide the Social Security Administration (SSA) and, if necessary, the Department of Homeland Security (DHS) with information from each new employee’s I-9 Form to confirm work authorization. Triumph is an equal opportunity employer and gives consideration for employment to qualified applicants without regard to race, color, religion, sex, national origin, disability, protected veteran status or any other status defined by law. Go to www.triumph-enterprises.com to learn more about Triumph.