Job Requirements
Arlington, VA
Top Secret/SCI Polygraph not specified
Mid Level Career (5+ yrs experience)
Salary not specified
Join Premium to unlock estimated salaries 
Job Description
Job Title: Cyber Incident Response Expert
Location: Arlington, VA (On-Site)
Clearance: Active TS/SCI Required
Company: Quantum Science Solutions (QSS)
Compensation: Open Rate
Position Overview
Quantum Science Solutions (QSS) is seeking a highly experienced Cyber Incident Response Expert to support the Hunt and Incident Response Team (HIRT) mission of defending critical government and infrastructure networks against advanced cyber threats. This role supports proactive threat hunting, incident response, cyber investigations, and technology insertion efforts across Federal agencies and critical infrastructure environments.
The selected candidate will serve as a senior technical subject matter expert (SME) responsible for analyzing sophisticated cyber incidents, identifying adversarial tactics, techniques, and procedures (TTPs), developing mitigation strategies, and supporting rapid response operations. The position requires deep expertise in incident response, cyber defense, network security, threat analysis, and operational collaboration across distributed teams. This individual will play a key role in strengthening cybersecurity capabilities, improving incident response effectiveness, and supporting mission-critical investigations.
Key Responsibilities
• Serve as a Hunt and Incident Response subject matter expert (SME) providing advanced technical expertise on threat actor tactics, techniques, and procedures (TTPs).
• Support proactive cyber hunting operations and incident response activities across government and critical infrastructure environments.
• Serve as a senior incident response expert supporting technology insertion and cybersecurity capability enhancement initiatives.
• Analyze incident data, threat intelligence, and victim environments to identify root causes, attack methodologies, and operational impacts.
• Develop targeted mitigation and remediation recommendations based on investigative findings.
• Provide technical guidance to incident responders, analysts, and stakeholders regarding containment, eradication, and recovery efforts.
• Distill complex technical findings into executive summaries, operational briefings, and detailed technical reports.
• Support internal stakeholders during containment, eradication, and recovery missions.
• Independently develop innovative technical solutions to address highly complex cybersecurity challenges.
• Provide expert analysis and research supporting advanced hunt and incident response activities.
• Guide the execution and completion of incident response investigations and threat hunting operations.
• Document technical analysis, investigative findings, and lessons learned within standardized knowledge management repositories.
• Assist with maintaining operational procedures, incident response documentation, and branch-level processes.
• Collaborate across geographically dispersed teams and stakeholders to support mission objectives.
• Support evaluation and implementation of emerging cyber response capabilities and technologies.
Mandatory Skills:
• U.S. Citizenship
• Active TS/SCI Clearance
• Ability to obtain DHS Suitability
• Minimum of 7+ years of directly relevant cybersecurity experience in incident response, threat hunting, cyber defense, or related disciplines.
• Minimum of 3+ years supporting evaluation and implementation of cyber response
capabilities.
• Ability to travel domestically on short notice to support incident response engagements.
• Strong understanding of enterprise network architecture and network security principles.
• Experience conducting cyber incident response investigations and remediation activities.
• Strong understanding of system and application security threats, vulnerabilities, and exploitation techniques.
• Experience performing proactive analysis of systems and networks to assess trust levels and identify indicators of compromise.
• Proficiency supporting and analyzing Windows, Linux, and Unix operating environments.
• Ability to work independently and exercise sound technical judgment.
• Excellent written and verbal communication skills.
• Ability to collaborate effectively across distributed and geographically separated teams.
• Experience identifying attack methodologies, attack stages, and adversary behaviors.
Preferred Skills:
• Experience leading, mentoring, and developing technical cybersecurity teams.
• Knowledge of Computer Network Defense (CND) policies, procedures, and regulations.
• Understanding of multiple threat environments, including criminal, hacktivist, advanced persistent threat (APT), and nation-state actors.
• Advanced knowledge of system and application vulnerabilities, including: Buffer Overflows, Cross-Site Scripting (XSS), Injection Attacks, Mobile Code Exploitation, Race Conditions, Replay Attacks, Return Oriented Programming (ROP), and Malicious Code Analysis.
• Experience performing network and system administration activities.
• Strong understanding of adversarial tactics, techniques, and procedures (TTPs).
• Experience utilizing Identity and Access Management (IAM) solutions.
• Ability to assess Enterprise Architecture (EA) from a cybersecurity and risk perspective.
• Knowledge of defense-in-depth cybersecurity principles.
• Hands-on experience with host-based and network-based intrusion detection technologies.
• Experience performing event correlation and threat analysis.
• Experience conducting malicious activity investigations and forensic analysis.
• Ability to collaborate effectively with stakeholders across technical, operational, and executive levels.
Education:
• Bachelor's degree in Systems Engineering, Computer Science, Cybersecurity, Computer Engineering, or related field
Desired Certifications:
• DoD 8140.01 IAT Level II
• DoD 8140.01 IASAE II
• DoD 8140.01 CSSP Analyst
• GIAC Certified Incident Handler (GCIH)
• GIAC Certified Intrusion Analyst (GCIA)
• Certified Ethical Hacker (CEH)
• GIAC Network Forensic Analyst (GNFA) (Preferred)
• GIAC Response and Industrial Defense (GRID)
• GIAC Global Industrial Cyber Security Professional (GICSP)
• GIAC Critical Infrastructure Protection (GCIP)
Why QSS?
At QSS, you'll help shape the future of cybersecurity operations by supporting mission-critical technology integration and modernization efforts that strengthen the nation's cyber defense capabilities.
Benefits Include:
• Competitive compensation with annual performance bonuses
• Premium Medical, Dental, & Vision coverage
• Generous PTO plus Federal Holidays
• 401(k) with company match
• Professional development and certification support
Location: Arlington, VA (On-Site)
Clearance: Active TS/SCI Required
Company: Quantum Science Solutions (QSS)
Compensation: Open Rate
Position Overview
Quantum Science Solutions (QSS) is seeking a highly experienced Cyber Incident Response Expert to support the Hunt and Incident Response Team (HIRT) mission of defending critical government and infrastructure networks against advanced cyber threats. This role supports proactive threat hunting, incident response, cyber investigations, and technology insertion efforts across Federal agencies and critical infrastructure environments.
The selected candidate will serve as a senior technical subject matter expert (SME) responsible for analyzing sophisticated cyber incidents, identifying adversarial tactics, techniques, and procedures (TTPs), developing mitigation strategies, and supporting rapid response operations. The position requires deep expertise in incident response, cyber defense, network security, threat analysis, and operational collaboration across distributed teams. This individual will play a key role in strengthening cybersecurity capabilities, improving incident response effectiveness, and supporting mission-critical investigations.
Key Responsibilities
• Serve as a Hunt and Incident Response subject matter expert (SME) providing advanced technical expertise on threat actor tactics, techniques, and procedures (TTPs).
• Support proactive cyber hunting operations and incident response activities across government and critical infrastructure environments.
• Serve as a senior incident response expert supporting technology insertion and cybersecurity capability enhancement initiatives.
• Analyze incident data, threat intelligence, and victim environments to identify root causes, attack methodologies, and operational impacts.
• Develop targeted mitigation and remediation recommendations based on investigative findings.
• Provide technical guidance to incident responders, analysts, and stakeholders regarding containment, eradication, and recovery efforts.
• Distill complex technical findings into executive summaries, operational briefings, and detailed technical reports.
• Support internal stakeholders during containment, eradication, and recovery missions.
• Independently develop innovative technical solutions to address highly complex cybersecurity challenges.
• Provide expert analysis and research supporting advanced hunt and incident response activities.
• Guide the execution and completion of incident response investigations and threat hunting operations.
• Document technical analysis, investigative findings, and lessons learned within standardized knowledge management repositories.
• Assist with maintaining operational procedures, incident response documentation, and branch-level processes.
• Collaborate across geographically dispersed teams and stakeholders to support mission objectives.
• Support evaluation and implementation of emerging cyber response capabilities and technologies.
Mandatory Skills:
• U.S. Citizenship
• Active TS/SCI Clearance
• Ability to obtain DHS Suitability
• Minimum of 7+ years of directly relevant cybersecurity experience in incident response, threat hunting, cyber defense, or related disciplines.
• Minimum of 3+ years supporting evaluation and implementation of cyber response
capabilities.
• Ability to travel domestically on short notice to support incident response engagements.
• Strong understanding of enterprise network architecture and network security principles.
• Experience conducting cyber incident response investigations and remediation activities.
• Strong understanding of system and application security threats, vulnerabilities, and exploitation techniques.
• Experience performing proactive analysis of systems and networks to assess trust levels and identify indicators of compromise.
• Proficiency supporting and analyzing Windows, Linux, and Unix operating environments.
• Ability to work independently and exercise sound technical judgment.
• Excellent written and verbal communication skills.
• Ability to collaborate effectively across distributed and geographically separated teams.
• Experience identifying attack methodologies, attack stages, and adversary behaviors.
Preferred Skills:
• Experience leading, mentoring, and developing technical cybersecurity teams.
• Knowledge of Computer Network Defense (CND) policies, procedures, and regulations.
• Understanding of multiple threat environments, including criminal, hacktivist, advanced persistent threat (APT), and nation-state actors.
• Advanced knowledge of system and application vulnerabilities, including: Buffer Overflows, Cross-Site Scripting (XSS), Injection Attacks, Mobile Code Exploitation, Race Conditions, Replay Attacks, Return Oriented Programming (ROP), and Malicious Code Analysis.
• Experience performing network and system administration activities.
• Strong understanding of adversarial tactics, techniques, and procedures (TTPs).
• Experience utilizing Identity and Access Management (IAM) solutions.
• Ability to assess Enterprise Architecture (EA) from a cybersecurity and risk perspective.
• Knowledge of defense-in-depth cybersecurity principles.
• Hands-on experience with host-based and network-based intrusion detection technologies.
• Experience performing event correlation and threat analysis.
• Experience conducting malicious activity investigations and forensic analysis.
• Ability to collaborate effectively with stakeholders across technical, operational, and executive levels.
Education:
• Bachelor's degree in Systems Engineering, Computer Science, Cybersecurity, Computer Engineering, or related field
Desired Certifications:
• DoD 8140.01 IAT Level II
• DoD 8140.01 IASAE II
• DoD 8140.01 CSSP Analyst
• GIAC Certified Incident Handler (GCIH)
• GIAC Certified Intrusion Analyst (GCIA)
• Certified Ethical Hacker (CEH)
• GIAC Network Forensic Analyst (GNFA) (Preferred)
• GIAC Response and Industrial Defense (GRID)
• GIAC Global Industrial Cyber Security Professional (GICSP)
• GIAC Critical Infrastructure Protection (GCIP)
Why QSS?
At QSS, you'll help shape the future of cybersecurity operations by supporting mission-critical technology integration and modernization efforts that strengthen the nation's cyber defense capabilities.
Benefits Include:
• Competitive compensation with annual performance bonuses
• Premium Medical, Dental, & Vision coverage
• Generous PTO plus Federal Holidays
• 401(k) with company match
• Professional development and certification support
group id: 91142086
