top of page

Cyber Incident Responder Detect-Response Level 4 104-043

SysEng.png

See a complete list of our open positions

Apply at the Bottom of the Page

IC-CAP LLC is a Woman Owned / HUBZone Small Business working in the Department of Defense and Intelligence Community.  We are always looking for highly talented, energetic, and dynamic professionals that are interested in protecting the defense of our nation.  

Some of the positions are future positions.  Please look at the opening line of the job description to determine if this is an open or future position.

 

Our positions are not remote unless stated in the job description below.

We are looking to fill this position at the following location(s):

    Bolling AFB, Washington DC

Job Description

Cyber Incident Responder – Detect-Response performs all procedures necessary to ensure the safety of information systems assets and to protect systems from intentional or inadvertent access or destruction. Monitor, evaluate, and maintain systems and procedures to safeguard internal information systems, network, databases, and Web-based security. Shift work may be required.


Level 4:

  • Investigates, analyzes, and responds to cyber incidents within a network environment or enclave.\Uses data collected from a variety of cyber defense tools (e.g., IDS alerts, firewalls, network traffic logs) to analyze events that occur within their environments for the purposes of mitigating threats.

  • Interprets, analyzes, and reports all events and anomalies in accordance with computer network directives, including initiating, responding, and reporting discovered events.

  • Evaluates, tests, recommends, coordinates, monitors, and maintains cybersecurity policies, procedures, and systems, including access management for hardware, firmware, and software.

  • Ensures that cybersecurity plans, controls, processes, standards, policies, and procedures are aligned with cybersecurity standards.

  • Identifies security risks and exposures, determines the causes of security violations and suggests procedures to halt future incidents and improve security.

  • Researches and evaluates new concepts and processes to improve performance.

  • Analyzes cross-functional problem sets, identifies root causes and resolves issues.

  • Develops techniques and procedures for conducting cybersecurity risk assessments and compliance audits, the evaluation and testing of hardware, firmware and software for possible impact on system security, and the investigation and resolution of security incidents such as intrusion, frauds, attacks or leaks.

  • May coach and provide guidance to less-experienced professionals.

  • May serve as a team or task lead.


Job Description:

  • Monitors and analyzes Intrusion Detection Systems (IDS) to identify security issues for remediation

  • Recognizes potential, successful, and unsuccessful intrusion attempts and compromises thorough reviews and analyses of relevant event detail and summary information.

  • Evaluates firewall change requests and assesses organizational risk

  • Communicates alerts to agencies regarding intrusions and compromises to their network infrastructure, applications, and operating systems.

  • Assists with implementation of countermeasures or mitigating controls

  • Conducts regular audits to ensure that systems are being operated securely, and information systems security policies and procedures are being implemented as defined in security plans.

  • Develops, tests, and operates firewalls, intrusion detection systems, enterprise antivirus systems and software deployment tools.

  • Safeguards the network against unauthorized infiltration, modification, destruction, or disclosure.

  • Researches, evaluates, tests, and implements new security software or devices

  • Conducts investigations of information systems security violations and incidents, reporting as necessary to management.

  • Implements, enforces, communicates, and develops security policies or plans for data, software applications, hardware, telecommunications, and information systems security education/awareness programs

  • Performs periodic and on-demand system audits and vulnerability assessments, including user accounts,application access, file system and external Web integrity scans to determine compliance

  • Provides information to management regarding the negative impact on the business caused by theft, destruction, alteration or denial of access to information.

  • Provides information assurance project management, technical security staff oversight, and development of mission-critical technical documents.

  • Ensure compliance with regulations and privacy laws.

  • Develops materials for computer security education/awareness programs.

  • Responds to queries and requests for computer security information and reports.

  • May coach and provide guidance to less-experienced professionals.

  • May serve as a team or task lead.


Education and Experience:

  • HSD/GED+12yrs

  • Associates+10yrs

  • Bachelors+8yrs

  • Masters+6yrs

  • PhD+4yrs

  • Relevant professional certifications will be considered equivalent to six (6) months of relevant experience.


Training and Certifications:

  • IAT or IAT II and CND-A Certification

  • GMON or equivalent within 120 days of start date



Security Clearance:

  • Active TS/SCI and the willingness to sit for a polygraph, if needed


IC-CAP provides equal employment opportunities (EEO) to all applicants for employment without regard to race, color, religion, gender, sexual orientation, gender identity or expression, national origin, age, disability, genetic information, marital status.

You are applying for the position of 
Cyber Incident Responder Detect-Response Level 4 104-043
bottom of page