Job Description
Incident Manager III
Arlington, VA
Employment Type : Full-Time, Onsite
Security Clearance: Active TS/SCI clearance required
Benefits : Competitive salary, based on experience and qualifications, and a comprehensive benefits package
Positions to Fill : 1
Start Date : ASAP
Job Description
We are seeking a dynamic and experienced Incident Manager III to provide on-site incident response support to U.S. Government clients. This role involves investigating cyber breaches, assessing their severity, developing mitigation strategies, and restoring critical services. Join a mission-driven team and make a meaningful impact on national cybersecurity operations.
Eligibility Requirements
Must be a U.S. Citizen.
Active TS/SCI clearance required.
Must be able to obtain DHS Suitability.
Minimum of 5+ years in cybersecurity operations or incident management.
Education
Preferred : Bachelor's degree in Incident Management, Operations Management, Cybersecurity, or a related field.
Alternate : High School Diploma with 7-9 years of incident management or cybersecurity experience.
Desired Certifications
Security+
GCIH
Key Responsibilities
Managed and led responses to cybersecurity incidents, ensuring rapid and effective resolution.
Correlate incident data to identify trends and implement proactive measures.
Recommend and implement defense-in-depth principles to enhance cybersecurity strategies.
Conduct Computer Network Defense (CND) triage, assessing incidents' urgency and potential impact.
Develop and apply mitigation strategies or workarounds for known threats.
Monitor external cybersecurity data sources to stay ahead of evolving threats.
Perform Root Cause Analysis, documenting findings to prevent future occurrences.
Analyze and respond to network alerts, collaborating with internal teams and stakeholders.
Track and document incidents from detection to resolution, ensuring transparency and accountability.
Required Skills
Strong knowledge of incident response methodologies and practices.
Familiarity with NIST 800-61 (latest revision) standards for incident reporting.
Expertise with the NCCIC National Cyber Incident Scoring System for prioritizing incidents.
Proficiency in identifying and mitigating vulnerabilities and associated risks.
Understanding of the stages of cybersecurity attacks, including reconnaissance, exploitation, and escalation.
Preferred Skills & Certifications
Advanced knowledge of threat environments, including nation-state-sponsored threats.
Familiarity with system/application vulnerabilities such as buffer overflows, PL/SQL injections, and cross-site scripting.
Why Join Us?
Impactful Work : Protect vital infrastructure and play a key role in national cybersecurity efforts.
Professional Growth : Access opportunities for advanced certifications and career development.
Collaborative Team : Join a mission-focused team that values innovation, integrity, and collaboration.
Apply online TODAY to join a fast-paced and highly rewarding environment!
Proud Equal Opportunity Employer (EOE)
...Registered Radiologic Technician High School Graduate / GED HCA Florida Aventura Hospital... ...Program is accredited by the American College of Surgeons Commission on Cancer.... ...Ethisphere Institute more than ten times. In recent years, HCA Healthcare spent an estimated...
Medical Center in southwest Nebraska is seeking a BE/BC Interventional Cardiologist to join its team. Call required Must do some outreach clinics 2 Cardiac cath labs; endovascular procedures and carotid stenting Must do Echos, EKGs, cardiolites, nuclear stress tests Generous...
...Job Description Job Description Title: Spine Surgeon Employment Type: Full Time City: Quad City Region State: Iowa & Illinois We care about our employees! We value and respect the talented and committed people that make up our practice. Be a part of...
...that values your talent, fuels your growth, and rewards your efforts? Why Vic Vaughan Toyota of Boerne We are a premier Toyota dealership and we need your help to get to 1000 cars and trucks sold monthly! Our showroom is buzzing with customers, our leads are HOT, and...
...about what our tech team does, be sure to visit our tech blog at ally.techThe CSIRT Incident Response position at Ally is a member of the Information Protection and Risk Management team and works closely with other members of the IPRM program to develop and implement...