Incident Response Analyst (CND) - 2194

MSI is actively seeking an Incident Response Analyst to support our client in Chantilly, VA. Potential candidates should have an active Top Secret clearance, the most recent version of the Security+ certification and the CEH.  


Job Description:

  • The Incident Response Analyst will receive data about and perform further analysis on incidents that are escalated from the CND Watch to include Suspicious Cyber Activity Reports (SCARS).
  • Develops, refines, and performs advanced analysis techniques to uncover new or potential incidents.
  • Analysis techniques may be refined into training and process improvements that are promulgated back to the CND Watch for sustained operations.
  • Performs in-depth analysis and recommends defensive and proactive measures to thwart potential and malicious activity or inappropriate use by any internal or external entity to include: conducting malicious code activity analysis, determining the effects on a system or the network, assisting in gathering potential evidence for law enforcement, etc.

Requirements:

  • Network Securtiy
  • Forensics
  • Network Traffic Analysis
  • IDS/IPS
  • SNORT
  • Wireshark
  • ArcSight
  • Linux
  • Basic Scripting skills
  • Splunk
  • HBSS
  • Knowledge of sensors and Triggers.

MSI is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, or national origin.