Jobs at Sharp Solutions, Inc.

View all jobs

619. Incident Response Analyst

Arlington, VA
 
 



SSi has principals that are an integral part of the organizations characteristic and are fundamentally essential to the shaping of everyday activities that connect to our broader mission and vision. As an organization SSi is committed to:
 
Foster a culture of innovative and out of the box thinking: 
We fundamentally understand that each employee has something unique to offer to the organization.  We foster a culture that nourishes innovation by empowering staff, leverages their passions, and encompasses a circle of trust where it’s all about thinking of new ideas and getting good feedback.
 
Invest in our Resources
Employees are essential, their physical and mental well-being are pivotal to the growth of our organization.  Our company culture, productivity, and overall employee happiness stem directly from how much training, responsibility, and empowerment they have within our organization. Our focus is on improving the growth of individual through education, allowing them to play central roles, so they can grow and add value to the company.
 
Provide solutions that are in the best interest of the customer and improve their strategic posture
We are in business to serve our customers and do what is in their best interest. Our philosophy is to offer services that are complete.  We strive to provide services that do more than meets the eye, to achieve more than superficial results and to help the business improve in areas that they may not have considered.
 
Give thoughtful considerations to our actions and their affects
We give thoughtful consideration to each other’s differences and opinions. We must give our individual best to get the job done right. Everyone is accountable for their behaviors, exercising rational judgment, and giving thoughtful consideration to their professional activities and decisions.

Sharp Solutions, Inc has an immediate need for a Incident Response Analyst for a new customer on a highly-visible and strategic Cybersecurity Task Order. The Incident Response Analyst will be a self-starter with excellent analytical and problem-solving skills, flexibility, good judgment, and the ability to work within a team to stand up and mature the cybersecurity capabilities of our customer.


JOB RESPONSIBILITIES
* Perform incident handling responsibilities with direct interface to customers and management team
* Perform analysis on anomalous behavior based on log data from firewalls, packet capture, web proxy services, network flow analysis, intrusion detection, and malware analysis tools
* Instill and reinforce industry best practices in the domains of incident response, cybersecurity analysis, case and knowledge management, and SOC operations
* Promote and drive implementation of automation and process efficiencies
* Recommend implementation and improvement of new tools, capabilities, frameworks, and methodologies
* Provide guidance and mentorship to improve analyst skill sets and ensure delivery of high quality analysis and work products
* Establish trust and business relationships with customer and other relevant stakeholders


BASIC QUALIFICATIONS

 
* Prior experience working as a SOC analyst
* 5+ years of intrusion detection and/or incident handling experience 
* Working knowledge of SIEM solutions and incident management solutions 
* In-depth knowledge of each phase of the Incident Response life cycle 
* Expertise of Operating Systems (Windows/Linux) operations and artifacts 
* Understanding of Enterprise Network Architectures to include routing/switching, common protocols (DHCP, DNS, HTTP, etc), and devices (Firewalls, Proxies, Load Balancers, VPN, etc) 
* Ability to recognize suspicious activity/events, common attacker TTPs, perform logical analysis and research to determine root cause and scope of Incidents 
* Department of Homeland Security (DHS) Entry on Duty (EOD) is required to support this program


DESIRED QUALIFICATIONS:
* Deep technical understanding of core current cybersecurity technologies as well as emerging capabilities. 
* Hands-on cybersecurity experience (Protect, Detect, Respond and Sustain) within a Computer Incident Response organization including prior experience performing large-scale incident response. 
* Demonstrated understanding of the life cycle of cybersecurity threats, attacks, attack vectors and methods of exploitation with an understanding of intrusion set tactics, techniques and procedures (TTPs). 
* Familiarity or experience in Intelligence Driven Defense, Cyber Kill Chain methodology, and/or MITRE ATT&CK framework. 
* Familiarity with Cloud concepts and experience performing monitoring and responding to threats in Cloud environments


CERTIFICATION REQUIRMENTS:  (Must have one of the following)
none

EDUCATION:
BS degree in Science, Technology, Engineering, Math or related field and 8+ years of prior relevant experience with a focus on cybersecurity OR Masters with 4-6 years of prior relevant experience.

Must be a US Citizen

SSi is an equal opportunity employer regardless of race, color, religion, creed, sex, marital status, national origin, disability, age, veteran status, on-the-job injury, sexual orientation, political affiliation or belief. Employment decisions are made without consideration of these or any other factors that employers are prohibited by law from considering. Any discriminatory action can be a cause for disciplinary action. SSi also prohibits discrimination against individuals with disabilities and will reasonably accommodate applicants with a disability, upon request, and will also ensure reasonable accommodation for employees with a disability. VETS are encouraged to apply.

 
Powered by