Description & Requirements
ManTech is seeking a highly motivated Cyber Incident Response Analyst in McLean, VA. Are you interested in defending the most coveted targets in the world? Is advancing today's technology for tomorrow's threats to national security constantly on your mind? Join ManTech and help protect our country against our adversaries while working on innovative projects that offer opportunities for advancement. As a Cyber Incident Response Analyst on our dynamic cyber operations team, you will be responsible for proactively monitoring, detecting, analyzing, and responding to cybersecurity incidents within our large enterprise network. Your expertise in incident detection, analysis, and response will play a vital role in safeguarding our organization's critical assets and ensuring the integrity of our information systems.
Our team provides 24x7x365 support to our customer. The Cyber Incident Response Analyst will work a 4-day work week; 10 hours per shift. Staff will be assigned to either Sun-Wed or Wed-Sat. The schedule is fixed and does not rotate. We have 1st, 2nd and 3rd shift opportunities available.
Responsibilities include, but are not limited to:
Incident Detection and Monitoring
Incident Analysis and Investigation
Incident Response and Mitigation
Threat Intelligence and Vulnerability Management
Reporting and Documentation
Basic Qualifications:
2+ years of experience in Cybersecurity, Information Technology , Computer Science or other relevant technical field; experience can be any combination of professional experience, internships , lab work or coursework.
Experience with one or more of the following: SIEM systems, network security tools, log analysis tools, cybersecurity principles, incident detection, analysis, and response methodologies, operating systems, network protocols, and security technologies.
DoD 8570 IAT-II required (can be obtained after hire).
Preferred Qualifications:
Bachelor's degree in Computer Science, Information Security, or a related preferred.
Relevant certifications such as GIAC Certified Incident Handler (GCIH) or Certified Incident Response Handler (GCFA) are preferred.
Experience with Cyber incident response
Knowledge of the Mitre ATT&CK framework.
Knowledge of threat intelligence, vulnerability management, and security incident response best practices.
Clearance Requirements: Active/Current TS/SCI with polygraph
Physical Requirements: Ability to remain in a stationary position at least 50% of the time
SKN.7.23