Onsite - Cyber Security - Digital Forensic Incident Response (DFIR) Analyst - Full Time Job at Allegis IT, Washington DC

SWFFN2FHdmlsb2F6Q1hrOEZzVHpTM3Q0bEE9PQ==
  • Allegis IT
  • Washington DC

Job Description

Digital Forensic Incident Response (DFIR) Analyst

On-site/Remote: On-site

Location: Washington, DC, Need locals

Visa: USC only ( Active TS Top Secret Clearance with eligibility to obtain SCI and pass CI Poly)

Interview: Phone or video call; then in-person Interview travel reimbursement: NO

Ideal Skillset, years of experience

Skillset

Actual Candidate skills, years of exp

Required

Lives within commutable distance from Wash DC

Required

US Citizen

Required

Active TS Top Secret Clearance with eligibility to obtain SCI and pass CI Poly

5+ years

Experience as mid-level Digital Forensic Incident Response (DFIR) Analyst or directly related

Optional/Preferred

Experience working with either Federal Civilian, DoD, and U.S. Intelligence Communities.

5+ years

Experience working for a cyber intelligence-driven firm or initiative

5+ years

Crisis management, incident response, strategic communications, and/or risk management

5+ years

Supporting the facilitation of trainings or briefing sessions and ability to leverage available learning resources, both internal and external

5+ years

Adept knowledge of cybersecurity and incident response principles, crisis management, and emergency management principles

5+ years

Usage of Microsoft Office products

5+ years

work within a highly collaborative, fast-paced, dynamic environment

5+ years

Strong IR and Digital forensics experience and cloud experience are preferred

Required

monitor network activity, document and report on information security issues and emerging trends

Required

Provide threat and vulnerability analysis

Monitor endpoint protection/detection for anomalies using designated escalation paths for remediation

Required

Review and monitor Security Information and Event Management (SIEM) log data for unauthorized access and initiate investigations if necessary

Required

Perform malware threat hunting using industry-leading products and applications

Required

Participate in developing security strategies

Required

Perform against established operational rhythm, expectations, and standards for the Security Operations Center (SOC) DFIR line of effort

Required

Perform advanced incident handling responsibilities with a direct interface with the ESOC management team

Required

Identify areas of improvement for SOC processes and tools to enhance the mission

Required

Excellent verbal and written communication skills

Required

excellent interpersonal skills, including client management skills

Required

Must have English Native or bilingual proficiency

Required

Minimum education: Bachelors degree

Executive Summary:

Mid-level Digital Forensic Incident Response (DFIR) Analyst to support an exciting information operation, intelligence analysis, and cybersecurity requirement.

Position Description: The DFIR Analyst is responsible for preventing the escalation of severe security threats and providing reports to the security team. This position utilizes tools to minimize the effects of a security breach on the computer network and performs an analysis to ensure that computer networks are clear of threats.

Roles and Responsibilities:

  • Conduct a full range of advanced professional duties required to monitor network activity, document and report on information security issues and emerging trends
  • Provide threat and vulnerability analysis
  • Monitor endpoint protection/detection for anomalies using designated escalation paths for remediation
  • Review and monitor Security Information and Event Management (SIEM) log data for unauthorized access and initiate investigations if necessary
  • Perform malware threat hunting using industry-leading products and applications
  • Participate in developing security strategies
  • In addition, the DFIR Analyst shall:
  • Perform against established operational rhythm, expectations, and standards for the Security Operations Center (SOC) DFIR line of effort
  • Be part of the 24x7 operations of the FBI ESOC
  • Perform advanced incident handling responsibilities with a direct interface with the ESOC management team
  • Identify areas of improvement for SOC processes and tools to enhance the mission

Additional Qualifications:

The ideal candidate will have experience with four or more of the items below:

  • Splunk Search Processing Language (SPL)
  • Microsoft Defender for Endpoint (MDE)
  • Microsoft Azure Sentinel
  • Kusto Query Language (KQL)
  • Linux Bash
  • PowerShell/CMD
  • Networking - intermediate level knowledge of computer networking
  • Type 2 Hypervisor software such as VMware Workstation Pro, VirtualBox, Hyper-V
  • Comfortable using various distributions of Linux.

Bhushan Giri

Recruitment Manager

Email: bhushan.giri@allegisit.com

Phone: 703-423-0341

Website:

Address: Allegis IT LLC, 3701 Pender Dr Ste 510 Fairfax, VA 22030

Job Tags

Full time, Local area, Remote job,

Similar Jobs

ASSYST, Inc.

Senior Data Engineer Job at ASSYST, Inc.

ASSYST is seeking a Senior Data Engineer with expertise in Azure Synapse Analytics and Microsoft Fabric to build, manage, and optimize...  ...hybrid data architectures that synchronize on-premises data centers with Azure cloud environments. Utilize tools like Azure Purview... 

Worth AI

Sales Development Representative (SDR/BDR) Job at Worth AI

Worth AI, a leader in the computer software industry, is seeking a driven and enthusiastic Sales Development Representative to join our team. As a Sales Development Representative at Worth AI, you will play a key role in generating new business opportunities and fueling...

Providence Health & Services

Pharmacist Intern Job at Providence Health & Services

 ...Under the direct supervision and control of a licensed pharmacist, the pharmacy intern assists the pharmacist in all aspects of departmental operation, including all functions of a pharmacist at the discretion of the pharmacist. Duties and responsibilities include the... 

PAI Inc.

Military Logistics Planner - Norfolk VA New Job at PAI Inc.

 ...with Naval Expeditionary forces. This individual will serve as a Navy Subject Matter Expert for the development and application of...  ...operating forces. The individual will work closely with senior civilians, military senior and junior officers, and senior enlisted within... 

Advanced Therapy Clinic LLC

RBT/ Behavioral Tech/ ABA Therapist/ Para Job at Advanced Therapy Clinic LLC

 ...your work What we offer: Professional development and ongoing supervision in the emerging field of Applied Behavior Analysis (ABA) working with individuals on the autistic spectrum. A flexible, part-time schedule, many times near your home A rewarding experience...