Onsite - Cyber Security - Digital Forensic Incident Response (DFIR) Analyst - Full Time Job at Allegis IT, Washington DC

SWFFN2FHdmlsb2F6Q1hrOEZzVHpTM3Q0bEE9PQ==
  • Allegis IT
  • Washington DC

Job Description

Digital Forensic Incident Response (DFIR) Analyst

On-site/Remote: On-site

Location: Washington, DC, Need locals

Visa: USC only ( Active TS Top Secret Clearance with eligibility to obtain SCI and pass CI Poly)

Interview: Phone or video call; then in-person Interview travel reimbursement: NO

Ideal Skillset, years of experience

Skillset

Actual Candidate skills, years of exp

Required

Lives within commutable distance from Wash DC

Required

US Citizen

Required

Active TS Top Secret Clearance with eligibility to obtain SCI and pass CI Poly

5+ years

Experience as mid-level Digital Forensic Incident Response (DFIR) Analyst or directly related

Optional/Preferred

Experience working with either Federal Civilian, DoD, and U.S. Intelligence Communities.

5+ years

Experience working for a cyber intelligence-driven firm or initiative

5+ years

Crisis management, incident response, strategic communications, and/or risk management

5+ years

Supporting the facilitation of trainings or briefing sessions and ability to leverage available learning resources, both internal and external

5+ years

Adept knowledge of cybersecurity and incident response principles, crisis management, and emergency management principles

5+ years

Usage of Microsoft Office products

5+ years

work within a highly collaborative, fast-paced, dynamic environment

5+ years

Strong IR and Digital forensics experience and cloud experience are preferred

Required

monitor network activity, document and report on information security issues and emerging trends

Required

Provide threat and vulnerability analysis

Monitor endpoint protection/detection for anomalies using designated escalation paths for remediation

Required

Review and monitor Security Information and Event Management (SIEM) log data for unauthorized access and initiate investigations if necessary

Required

Perform malware threat hunting using industry-leading products and applications

Required

Participate in developing security strategies

Required

Perform against established operational rhythm, expectations, and standards for the Security Operations Center (SOC) DFIR line of effort

Required

Perform advanced incident handling responsibilities with a direct interface with the ESOC management team

Required

Identify areas of improvement for SOC processes and tools to enhance the mission

Required

Excellent verbal and written communication skills

Required

excellent interpersonal skills, including client management skills

Required

Must have English Native or bilingual proficiency

Required

Minimum education: Bachelors degree

Executive Summary:

Mid-level Digital Forensic Incident Response (DFIR) Analyst to support an exciting information operation, intelligence analysis, and cybersecurity requirement.

Position Description: The DFIR Analyst is responsible for preventing the escalation of severe security threats and providing reports to the security team. This position utilizes tools to minimize the effects of a security breach on the computer network and performs an analysis to ensure that computer networks are clear of threats.

Roles and Responsibilities:

  • Conduct a full range of advanced professional duties required to monitor network activity, document and report on information security issues and emerging trends
  • Provide threat and vulnerability analysis
  • Monitor endpoint protection/detection for anomalies using designated escalation paths for remediation
  • Review and monitor Security Information and Event Management (SIEM) log data for unauthorized access and initiate investigations if necessary
  • Perform malware threat hunting using industry-leading products and applications
  • Participate in developing security strategies
  • In addition, the DFIR Analyst shall:
  • Perform against established operational rhythm, expectations, and standards for the Security Operations Center (SOC) DFIR line of effort
  • Be part of the 24x7 operations of the FBI ESOC
  • Perform advanced incident handling responsibilities with a direct interface with the ESOC management team
  • Identify areas of improvement for SOC processes and tools to enhance the mission

Additional Qualifications:

The ideal candidate will have experience with four or more of the items below:

  • Splunk Search Processing Language (SPL)
  • Microsoft Defender for Endpoint (MDE)
  • Microsoft Azure Sentinel
  • Kusto Query Language (KQL)
  • Linux Bash
  • PowerShell/CMD
  • Networking - intermediate level knowledge of computer networking
  • Type 2 Hypervisor software such as VMware Workstation Pro, VirtualBox, Hyper-V
  • Comfortable using various distributions of Linux.

Bhushan Giri

Recruitment Manager

Email: bhushan.giri@allegisit.com

Phone: 703-423-0341

Website:

Address: Allegis IT LLC, 3701 Pender Dr Ste 510 Fairfax, VA 22030

Job Tags

Full time, Local area, Remote job,

Similar Jobs

Honeywell

Mechanical Engineer II Job at Honeywell

Summary The Mechanical Engineer II role is an experienced level position performing routine to moderately complex maintenance engineering functions on assigned projects and equipment by applying, standard mathematical, physical science, and engineering disciplines to...

Gpac

DIRECTOR OF MARKETING AND ATTORNEY RECRUITING - Legal Job at Gpac

 ...identity, marital status, military status, genetic information, or any other status protected by applicable laws or regulations. GPAC (Growing People and Companies) is an award-winning search firm specializing in placing quality professionals within multiple industries... 

Team One Chevrolet Buick GMC Truck

Vehicle Sales Representative Job at Team One Chevrolet Buick GMC Truck

 ...One Chevrolet Buick GMC Truck is looking for an experienced Auto Sales Representative to join our team!REQUIREMENTS- Previous...  ...application, and benefits to prospects.Describes all optional equipment available for customer purchase.Offers test drives to all prospects... 

Mars

Waste Water Treatment Plant Operator Job at Mars

 ...Job Purpose/Overview The Waste Water Treatment Plant Operator ensures that all plant process water is treated to acceptable levels prior to discharge to the local municipality. This role operates within a limited supervision role that requires self-direction... 

FEMA

Emergency management specialist Job at FEMA

 ...this agency Help Duties What will I do in this position if hired? In this position, you will serve as an Emergency Management Specialist. Typical assignments include Managing, and coordinating with other entities the response to unintentional...