Incident Response Lead
Quantico, VA

Job Description

Is it time for a new and exciting job opportunity? Phacil, an employee owned IT consulting company, is seeking a Incident Response Analyst for an important customer in Quantico, VA. Join an amazing group of dedicated professionals and see the possibilities!

We bring service excellence and professional commitment delivering quality service and ferocious execution to our Federal Government customers. We provide solutions in the areas of Information Assurance, Cyber Security, Artificial Intelligence, Software & Systems Engineering, Cloud & Managed Services and Network Engineering. Join us by applying at www.phacil.com/careers/opportunities .

Clearance Level: TS/SCI

Daily Job Responsibilities:

* Monitor network traffic for security events and perform triage analysis to identify security incidents.
* Respond to computer security incidents by collecting, analyzing, preserving digital evidence and ensure that incidents are recorded and tracked in accordance with SOC requirements.
* Work closely with the other teams to assess risk and provide recommendations for improving our security posture.
* The ability to take lead on incident research when appropriate and be able to mentor junior analysts.
* Working knowledge of any of the following tools is required: McAfee, EPO, Wireshark, EnCase, FTK or other information security tools and cyber forensics tools.
* Conduct research on emerging security threats.
* Provides correlation and trending of Program's cyber incident activity.
* Develops threat trend analysis reports and metrics.
* Supports SOC analysis, handling and response activity.
* Maintains situational awareness reports for advanced threats such as Advanced Persistent Threat (APT) and Focused Operations (FO) incidents.
* Author Standard Operating Procedures (SOPs) and training documentation when needed.

Required Skills:

* 5-7 years of IT with at least 3 years of information security operations center or incident response experience

Certifications: CEH and IAT Level II (Security+ CE, GSEC, or SSCP)

Preferred Skills:

* 3+ years in an Incident Responder/Handler role
* Deep packet and log analysis
* Forensic and Malware Analysis experiences
* Cyber Threat and Intelligence gathering and analysis
* Certification Requirements:
* Meet or exceed DoD 8570.1 requirements as follows: Information Assurance Technical (IAT) Level II which consists of either: Security+ CE, GSEC, or SSCP.



Education and Years of Experience: Bachelors w/2-4 years experience or equivalent years of experience without degree

Travel Requirement: A minimum of 5% travel is required on the contract.

Any additional info regarding work environment:

* Onsite Cafeteria
* Onsite Free Parking