Incident Response Engineer

Location: Washington, DC
Date Posted: 05-08-2018
Our client is currently looking for an Incident Response Team Engineer to provide maintenance support for our federal client's secured network systems. USC ONLY!!!

You will be responsible for supporting the client with improvement to real-time monitoring and triage capabilities of incident(s) received at the operations center. You will support efforts on threat hunting, network, host, and malware analysis, sensor tuning and custom signature creation. You will also be responsible for leading the application of cyber intelligence to improve security operations, measure and manage individual and team performance, and ensure adequate metrics and documentation of team operations for leadership. 

What you will accomplish: 
  • Help to maintain a FireEye ecosystem.
  • Patch & administer configurations within a Fire AX, CM, EX, FX, HX, NX environment.
  • Test FireEye HX agent configurations.
  • Test FireEye Appliances and validate deployed signatures-YARA/FireEye.
  • Provide support of RHEL Patching Via Satellite.
  • Maintain an incident response lab environment, that includes: PF Sense, ESXi VM's, Hybrid Analysis, Kahli Linux,
  • Cuckoo Sandbox, Security Onion/ Bro, Nighthawk/Vol Utility.
  • Bachelors Degree
  • Ability to obtain a Public Trust Clearance.
  • One or more certifications in information security (such as Security+, GCIA, GCIH, CEH, CISSP, SSCP) 
  • 5 yrs. of cyber security experience, which includes 2yrs. of Splunk infrastructure. 
  • Knowledge of disaster recover, computer forensic tools, technologies and methods
  • Experience planning, researching, and developing security policies, standards and procedures
  • Systems Administration background a plus.
  • Ability to perform the duties listed above. 
this job portal is powered by CATS