Posted 3 days ago
Top Secret/SCI
Unspecified
Polygraph
ashburn rd, VA (On-Site/Office)
Hello,
Hope you are doing great.
My name is Shashank and I'm a recruiter at Artech, the #1 largest women-owned IT staffing firm in the US. We are constantly on the lookout for professionals to fulfill the staffing needs of our clients, and we currently have a job opening that may interest you. Please find below, summary of the position.
Please give me a call or reply to me @ 973-507-7537 or shashank.mishra@artech.com with your contact information anytime. So, we can discuss about this project more.
Below are the position details for your reference:
Job Title: Incident Response Associate Principal
Location: Reston, VA
Duration: Full Time
Responsibility:
Qualifications:
Warm Regards,
Shashank Mishra
Associate Recruiter
Cell: 973-507-7537
Email: shashank.mishra@artech.com
360 Mt. Kemble Avenue, Suite 2000 | Morristown, NJ 07960
Website: www.artech.com
Hope you are doing great.
My name is Shashank and I'm a recruiter at Artech, the #1 largest women-owned IT staffing firm in the US. We are constantly on the lookout for professionals to fulfill the staffing needs of our clients, and we currently have a job opening that may interest you. Please find below, summary of the position.
Please give me a call or reply to me @ 973-507-7537 or shashank.mishra@artech.com with your contact information anytime. So, we can discuss about this project more.
Below are the position details for your reference:
Job Title: Incident Response Associate Principal
Location: Reston, VA
Duration: Full Time
Responsibility:
- Partner with customers to establish and enhance a mature Insider Threat Monitoring capability across Windows, Linux, and containerized environments.
- Execute a dual mandate within a defined timeframe to:
- Develop and implement detection logic within the customer's SIEM platform.
- Support the migration of detection logic, queries, and visualizations to a new SIEM solution.
- Work with customers to streamline and improve incident response processes.
- Provide investigation and response support to the Tier 1 Security Operations team.
- Strengthen the customer's ability to detect, mitigate, and respond to risks early.
Qualifications:
- Active TS/SCI clearance with polygraph is required.
- Bachelor's degree in Computer Science, Engineering, Information Assurance, or a related field, along with 10+ years of relevant experience. Additional experience may substitute for a degree.
- Hands-on experience with SIEM platforms such as Splunk, Kibana, or similar tools.
- Strong understanding of log telemetry structures and detection logic across Windows, Linux, and containerized environments.
- Proven experience migrating schema mappings between SIEM solutions.
- Demonstrated proficiency in SIEM query languages.
- Experience working with cloud service providers such as AWS, Azure, or Google Cloud.
- Experience deploying and configuring data collection pipelines from operating systems, network devices, and container platforms.
- Strong background in building dashboards, analytics, and alerts within SIEM tools.
- Experience supporting auditing, incident response, and system health monitoring.
- Familiarity with the OSINT framework and related tools.
Warm Regards,
Shashank Mishra
Associate Recruiter
Cell: 973-507-7537
Email: shashank.mishra@artech.com
360 Mt. Kemble Avenue, Suite 2000 | Morristown, NJ 07960
Website: www.artech.com
group id: artech
