Yesterday
Secret
Early Career (2+ yrs experience)
$80,000 - $90,000
No Traveling
IT - Security
Herndon, VA (On-Site/Office)
Position: Junior Incident Responder
Location: Onsite – Herndon, VA
Clearance: Active Secret required
We are seeking a Junior Incident Responder to join our cyber defense team. In this role, you will play a hands-on part in protecting enterprise, IoT, and OT environments by executing every phase of the incident response lifecycle — from detection to recovery. This is an excellent opportunity for candidates looking to grow their expertise in real-world incident response operations while working with a mission-driven team.
Key Responsibilities
• Support and execute the Incident Response Program in alignment with the six-phase process: planning, identification, containment, eradication, recovery, and post-incident reporting.
• Investigate and respond to security alerts and incidents detected by the SOC or reported by stakeholders.
• Perform malware triage and initial analysis, leveraging IR tools and techniques to assess impact.
• Use SIEMs, log analysis tools, and packet capture (PCAP) data to investigate and validate threats.
• Provide incident documentation, reporting, and briefings to leadership and stakeholders.
• Assist with the implementation of countermeasures and controls to prevent recurrence.
• Contribute to incident response involving IoT and OT systems, ensuring security across non-traditional endpoints.
Required Skills & Experience
• Prior experience identifying and analyzing security events to distinguish real incidents from false positives.
• Familiarity with malicious code identification, adversary behaviors, and threat indicators.
• Solid understanding of Windows, Linux, and macOS operating systems; working knowledge of Active Directory.
• Knowledge of network protocols (TCP, UDP, ICMP, BGP, MPLS) and internet standards/applications (SMTP, DNS, DHCP, SQL, HTTP/HTTPS).
• Hands-on experience with event logging systems, SIEM platforms, and PCAP analysis tools.
• Ability to recommend or apply countermeasures and mitigations in enterprise environments.
• Exposure to IoT/OT environments and related data security considerations.
• Strong written and verbal communication skills to produce clear incident reports and deliver briefings.
• Highly organized with attention to detail in fast-paced response environments.
Location: Onsite – Herndon, VA
Clearance: Active Secret required
We are seeking a Junior Incident Responder to join our cyber defense team. In this role, you will play a hands-on part in protecting enterprise, IoT, and OT environments by executing every phase of the incident response lifecycle — from detection to recovery. This is an excellent opportunity for candidates looking to grow their expertise in real-world incident response operations while working with a mission-driven team.
Key Responsibilities
• Support and execute the Incident Response Program in alignment with the six-phase process: planning, identification, containment, eradication, recovery, and post-incident reporting.
• Investigate and respond to security alerts and incidents detected by the SOC or reported by stakeholders.
• Perform malware triage and initial analysis, leveraging IR tools and techniques to assess impact.
• Use SIEMs, log analysis tools, and packet capture (PCAP) data to investigate and validate threats.
• Provide incident documentation, reporting, and briefings to leadership and stakeholders.
• Assist with the implementation of countermeasures and controls to prevent recurrence.
• Contribute to incident response involving IoT and OT systems, ensuring security across non-traditional endpoints.
Required Skills & Experience
• Prior experience identifying and analyzing security events to distinguish real incidents from false positives.
• Familiarity with malicious code identification, adversary behaviors, and threat indicators.
• Solid understanding of Windows, Linux, and macOS operating systems; working knowledge of Active Directory.
• Knowledge of network protocols (TCP, UDP, ICMP, BGP, MPLS) and internet standards/applications (SMTP, DNS, DHCP, SQL, HTTP/HTTPS).
• Hands-on experience with event logging systems, SIEM platforms, and PCAP analysis tools.
• Ability to recommend or apply countermeasures and mitigations in enterprise environments.
• Exposure to IoT/OT environments and related data security considerations.
• Strong written and verbal communication skills to produce clear incident reports and deliver briefings.
• Highly organized with attention to detail in fast-paced response environments.
group id: 10202776
