ANALYGENCE is seeking an experienced Cyber Incident Response Manager (SME) to support our federal customer who plays a key role in enhancing the security, resiliency, and reliability of the nation’s cyber and communications infrastructure. This role directly supports the customer Mission Engineering (ME) Information Security Branch (ISB) responsible for providing Cybersecurity and Information Assurance support. Services include providing programmatic, technical, engineering, and integration support for the continued design, development, enhancement, integration, deployment, operations, and sustainment of security supported initiatives.
The Cyber Incident Response Manager (SME) will coordinate the incident response plans, processes, and providers, and advise on steps to achieve incident response readiness (logging and monitoring configurations, triage and escalation procedures, wider stakeholder liaison, etc.) for both on-premises and cloud-based programs. Additionally, you will coordinate the incident response plans, processes, and providers, and advise on steps to achieve incident response readiness (logging and monitoring configurations, triage and escalation procedures, wider stakeholder liaison, etc.) for both on-premises and cloud-based programs. The current team member work arrangement for this position is hybrid and requires your on-site presence on a reoccurring basis as determined by the customer.
Must have an active TS/SCI security clearance.Requires a minimum of one current incident response certification: CERT-Certified Computer Security Incident Handler (CSIH), or Certified Incident Handler (CIH), or Certified Information Systems Security Professional (CISSP). 10+ years of proven experience as a Cyber Incident Response Analyst.Demonstrated supervisory/leadership abilities to oversee and coordinate with large teams in planning, directing and managing Cyber Incident Response Team (CIRT) and/or Security Operations Center (SOC) operations for a large and complex enterprise. Must have excellent knowledge of performance evaluation and change management principles and excellent communication, problem solving and leadership skills.Must have excellent understanding of the life cycle of cybersecurity threats, attacks, attack vectors, and methods of exploitation with an understanding of intrusion set tactics, techniques, and procedures (TTPs).