NexThreat
Cyber Defense Incident Responder (SME) - FBI
NexThreat - MD, United States
Work at NexThreat
Overview
- View job
Overview
Join to apply for the Cyber Defense Incident Responder (SME) - FBI role at NexThreat
Job Details
- Title: Cyber Defense Incident Responder (SME)
- Location: NCR
- Category: Information Technology
- Type: Full-time
- Clearance: Current TS/SCI Clearance required
- Security Suitability: Must pass FBI security suitability
- Polygraph: Must pass an FBI-administered Counterintelligence polygraph if not conducted within the last five years
- Employee Type: W2 or 1099
- Citizenship: US Citizen, no Dual Citizenship
Summary
The Cyber Defense Incident Responder (SME) will be a key member of the Digital Forensics and Incident Response (DFIR) team. Responsibilities include analyzing digital evidence from security incidents to support mitigation of vulnerabilities, bridging informational gaps related to cyber-attacks, identifying perpetrators, understanding intrusion methods, and documenting actions that compromise system integrity.
Key Responsibilities
- Conduct investigations into security incidents, collecting and documenting digital evidence.
- Analyze large datasets to uncover indicators of compromise and develop attack timelines.
- Collaborate with teams to understand attack vectors and develop mitigation strategies.
- Use forensic tools to analyze data from compromised systems and networks.
- Prepare detailed reports with findings and recommendations.
- Provide expertise on digital forensics and incident response, staying updated on emerging threats and tools.
Skills and Software
- Required: Splunk Enterprise Security
- Preferred: Axiom Forensics Suite
Certifications
- GIAC Continuous Monitoring Certification (GMON)
- GIAC Certified Incident Handler (GCIH)
- GIAC Certified Forensic Analyst (GCFA)
- GIAC Certified Intrusion Analyst (GCIA)
- GIAC Network Forensic Analyst (GNFA)
- GIAC Cloud Threat Detection (GCTD)
- GIAC Cloud Forensics Responder (GCFR)
- GIAC Advanced Smartphone Forensics Certification (GASF)
- GIAC Mobile Device Security Analyst (GMOB)
Qualifications
- Bachelor’s degree in Computer Science, Cybersecurity, or related field
- Experience in digital forensics and incident response, preferably in a SOC
- Strong understanding of network protocols, OS, and forensics methodologies
- Excellent analytical and communication skills