Senior Security Incident Response Analyst

To Apply for this Job Click Here

Always Connecting, Always Evolving.

TECHEAD is seeking qualified applicants for the following Contract position – Senior Security Incident Response Analyst / Richmond VA – (JOB-21353). If you are looking for a new opportunity and this position looks to be a fit, please apply to see the TECHEAD difference that has made us successful for 30+ years!

You can find more about our team and values by checking us out at TECHEAD.com or on Glassdoor

Job Description:
Senior Security Incident Response Analyst

100% Remote
Contract: 1 year

No C2C!!!

Top MUST have Skills:

• 5 or more years of experience in responding to cybersecurity incidents required for this role
• Experience with use of the following tools/capabilities during an incident response:
  • Microsoft Defender,
  • Microsoft Sentinel,
  • Microsoft Azure
• Experienced in the following technical areas: Network Security
  • Endpoint Security,
  • Cybersecurity Incident Response,
  • Security Orchestration and Automation

Requirements:

• Able to closely collaborate with and lead cross functional teams of technical experts during cybersecurity incident response scenarios
• Able to serve on an on-call rotation (24 x 7 phone response for a period of 1 week every 4 weeks).
• Security Incident Handling: Participate directly in security incident handling, supporting the existing CSIRT organization. This will include rotational accountability as the on-call incident handler/coordinator responsible for the 24/7 end to end response lifecycle of reported incidents

• Coordinate and execute response activities, ticket management, engagement with infrastructure and security support partners, impact analysis and CSIRT communications.
• Actively participate in the delivery of IT application, infrastructure and process-oriented projects in support of continuous improvement and ongoing enhancements to the program.
• Work with the Incident Response Program Lead to ensure project milestones and objectives are achieved.
• Proactively identify areas of opportunity and work with the Incident Response Program Lead to recommend and execute improvements to the program.
• Includes but is not limited to CSIRT infrastructure, Security Orchestration and Automated Response capabilities, optimization of the MITRE ATT&CK framework, underlying CISRT processes and incident response documentation, threat intelligence and detection capabilities, and cross functional collaboration with internal and external stakeholders as it relates to incident response.
• Execute the development and implementation of key metrics and reporting to measure the effectiveness of our Threat Detection and Response program.
• Work with the Incident Response Program Lead to facilitate upward reporting of incident response data.
• Actively participate in the planning and execution of internal governance and incident response preparedness activities, including but not limited to incident ticket review, lessons learned activities and incident response tabletop exercises.

TECHEAD’s mission is to make our on-site associates successful by placing them in the right environment so they can grow and prosper. How we treat and respond to our clients and employees is a reflection of who we are and makes us stand out from the rest. Keeping our business focused on building and maintaining relationships with our employees and clients is the key to our success. We won’t strive for anything less.

TECHEAD provides equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, gender, sexual orientation, gender identity or expression, national origin, age, disability, genetic information, marital status, amnesty, or status as a covered veteran in accordance with applicable federal, state and local laws governing nondiscrimination in employment in every location in which the company has facilities. This policy applies to all terms and conditions of employment, including, but not limited to, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation, and training.

For more information on TECHEAD please visit www.techead.com.

No second parties will be accepted.

To Apply for this Job Click Here