Cyber Incident Responder
$86,800–$198,000 year
On-site · Arlington, Virginia, United States or Falls Church, Virginia, United States
Job Summary
Cyber Incident Responder responsible for advanced threat identification and incident response across critical infrastructure. Analyze logs, forensic data, and threat intelligence to detect adversaries, respond in real time, and advise customers on hardening networks. Apply experience-based knowledge to understand attackers’ goals and close gaps in SEIM-detected blind spots, leveraging AWS security services and cloud infrastructure expertise. Requires working with customers to prevent, contain, and report cyber incidents and contribute to risk mitigation efforts.
Required Qualifications
- 5+ years of experience in malware analysis, digital forensics, data and network analysis, penetration testing, information assurance, trends analysis, quality control analysis, information assurance, or vulnerability management
- Experience applying the NIST incident response lifecycle to cybersecurity events
- Experience with vulnerability analysis, including static code analysis
- Experience with security monitoring and alert triage
- Knowledge of system administration, network security concepts, and operating system hardening techniques
- Knowledge of security AWS cloud computing services, including IAM, CloudTrail, CloudWatch, GuardDuty, and common log sources (VPC Flow Logs, S3 access logs, DNS logs, Config)
- Knowledge of AWS services: EC2, S3, VPC, Lambda, EKS, RDS, Route 53
- Ability to apply techniques for detecting host and network-based intrusions using intrusion detection technologies
- TS/SCI clearance
- Bachelor's degree
Additional Requirements
- None specified
Apply with one swipe on Sorce. We auto-fill applications and apply on your behalf — no cover letters, no 40-minute forms.
Hiring someone like this?
Get your role in front of qualified candidates on Sorce.