Senior Incident Response Analyst - NIH Support (Fully Remote)

cFocus Software Incorporated • United State
Remote
Apply
AI Summary

Protect NIH enterprise systems as a Senior Incident Response Analyst. Monitor, detect, analyze, and respond to security incidents. Requires 5+ years of cybersecurity experience, SIEM expertise, and public trust clearance.

Key Highlights
Monitor and respond to cybersecurity incidents across NIH/OD-OIT environment
Perform incident triage and coordinate with NIH/HHS cybersecurity organizations
Support 24x7 security monitoring operations and identify indicators of compromise
Key Responsibilities
Monitor security events and detect, analyze, and respond to cybersecurity incidents
Perform incident triage to determine scope, severity, urgency, and operational impact
Support incident containment, eradication, recovery, and restoration activities
Investigate suspected security incidents within established response time requirements
Coordinate incident handling activities with NIH and HHS cybersecurity organizations
Monitor enterprise security logs and alerts, perform network and host-based intrusion detection
Monitor cloud applications and cloud infrastructure, support continuous 24x7 security monitoring operations
Identify indicators of compromise (IOCs) and suspicious activity
Technical Skills Required
Incident Response SIEM Technologies Windows/Linux/Cloud Enterprise Networks
Benefits & Perks
Fully Remote Work
Public Trust Clearance Required

Job Description


cFocus Software seeks a Incident Response Analyst to join our program supporting the National Institutes of Health (NIH). This position is fully remote. This position requires a Public Trust or the ability to obtain a public trust clearance.
Qualifications:
  • Public Trust Clearance
  • B.S. Computer Science, Information Technology, or a related field
  • 5+ years of cybersecurity experience.
  • 5+ years supporting cybersecurity incident response or Security Operations Center (SOC) environments.
  • Experience investigating security incidents across Windows, Linux, cloud, and enterprise networks.
  • Experience with SIEM technologies and security monitoring platforms.
  • Experience performing incident triage and root cause analysis.
  • Knowledge of malware analysis and digital forensics concepts.
  • Understanding of NIST Cybersecurity Framework and NIST SP 800-61 Incident Handling Guide.
  • Ability to obtain and maintain required NIH suitability/background investigation.
  • Active GCIH, GCFA, GCIA, CISSP, CySA+, Security+, CEH, CHFI, CISM, or GSEC
Duties:
  • Monitor security events across the NIH/OD-OIT environment.
  • Detect, analyze, and respond to cybersecurity incidents affecting enterprise systems.
  • Perform incident triage to determine scope, severity, urgency, and operational impact.
  • Support incident containment, eradication, recovery, and restoration activities.
  • Investigate suspected security incidents within established response time requirements.
  • Coordinate incident handling activities with NIH and HHS cybersecurity organizations.
  • Monitor enterprise security logs and alerts.
  • Perform network and host-based intrusion detection.
  • Monitor cloud applications and cloud infrastructure.
  • Support continuous 24x7 security monitoring operations.
  • Identify indicators of compromise (IOCs) and suspicious activity.

Similar Jobs

Explore other opportunities that match your interests

Senior IT Engineer

Networking
•
17m ago
Visa Sponsorship Relocation Remote
Job Type Full-time
Experience Level Mid-Senior level

qualiphy pc

United State

Senior Director, Infrastructure & Operations

Networking
•
45m ago

Premium Job

Sign up is free! Login or Sign up to view full details.

•••••• •••••• ••••••
Job Type ••••••
Experience Level ••••••

QuidelOrtho

United State
Visa Sponsorship Relocation Remote
Job Type Full-time
Experience Level Not Applicable

Serco

United State

Subscribe our newsletter

New Things Will Always Update Regularly