Job Details

Cybersecurity Analyst


ActioNet Inc


Germantown, MD 20874

The Incident Response Analyst supports agency efforts to provide incident response capabilities to an enterprise wide cybersecurity program. The Incident Response Analyst provides technical knowledge and is experienced with Incident Response procedures. The successful candidate for this position has experience performing network analysis, dynamic malware analysis has performed ‘incident commander’ duties during incident response activities. Candidate is also expected to brief departmental executives and technical Incident Responders across the enterprise. Candidate should be a strong leader with the ability to perform multiple types of analysis in a Security Operations Center. This includes detection, analysis and providing mitigation recommendations for impacted parties. Candidate shall deliver senior level briefings that address Departmental cases or ongoing investigations.

Location: Germantown MD

Preferred Background:

Bachelor’s degree in Engineering, Computer Science, or a mathematics-intensive discipline
Active “Top Secret” or DOE “Q” security clearance
Security+, GCIH, or CISSP certifications are preferred
Strong oral and written communication skills
Experience working with Incident Response involving threat actors and working ongoing pervasive intrusion sets.
Prior experience leveraging common scripting languages (like Perl) to parse logs, automate processes, and integrate systems
Providing Network Security Monitoring support as part of the 24x7 Security Operations Center
Experience performing "deep dive" analysis and correlation of log data from multiple sources
Performing day-to-day system analyst activities for enterprise cyber security solutions
Experience in computer network defense and in-depth technical knowledge/mastery with intrusion detection systems.
Ideal candidate must be self-directed and capable of working in a fast paced operations environment.

Technical Requirements:

Strong understanding of TCP/IP networking including knowledge of protocols and services
Administrator level knowledge of OS basics
Experience with log analysis, event correlation and incident management procedures and systems
IT Network or Security Operation Center experience
Experience monitoring network traffic (i.e. netflow and PCAP) and IDS/IPS data


Strong oral and written communication skills
Ability to effectively communicate and translate highly technical information in a professional manner at all levels, including high-ranking executives
Aptitude for learning, be self-directed, and be capable of working in a fast-paced operations environment
Ability to produce high-quality, executive-ready deliverables while working independently
Obtain and maintain Security+ or higher certification
Obtain and maintain a DOE “Q” security clearance
Post Date:
Minimum Clearance:
DoE Q or L
No Traveling
Minimum Experience Required:
5+ yrs experience
Job Category:
IT - Security
Unspecified annual salary
Unspecified hourly wage
Group ID: