Job Description

Join Our Team as a Cybersecurity Engineer at Zachary Piper Solutions!

Are you a skilled Cybersecurity Engineer seeking an opportunity to make a real impact? ZPS is seeking a qualified Cyber Professional to support a US Government Customer.

Position Title: Cybersecurity Engineer

Location: Lorton, VA – Onsite 5x a week

Clearance Requirement: Top Secret

Job Summary

The Cybersecurity Incident Response and Investigation Analyst plays a crucial role in safeguarding customer information systems by conducting initial triage, containment, and in-depth investigation of cyber threat events. This position involves managing signals, coordinating incident responses, and providing detailed analyses to remediate attacks.

Key Responsibilities

• Initial Triage and Analysis:
  • Perform initial triage, containment, and analysis of cyber threat events.
  • Document objective incident details (5Ws) within one hour of detection.
  • Ensure healthy intake of signals across the ecosystem.
  • Monitor alert queues and execute both automated and manual remediation.
  • Prioritize alerts and confirm security incidents through triage.
  • Conduct daily checks of CTOC operations tool security suite and report outages.
  • Escalate events requiring advanced investigation or remediation.
• Incident Response and Management:
  • Manage incident response, coordination, and after-action reporting.
  • Maintain incident management processes, playbooks, and workflows.
  • Validate system outage severity according to the CEN Matrix and JSIG.
  • Coordinate with teams for incident resolution and communication.
• In-Depth Investigation and Remediation:
  • Analyze incidents for root cause, remediate threats, and mitigate future risks.
  • Monitor alerts for sensitive assets and investigate potential compromises.
  • Recommend and conduct necessary incident remediation activities.
  • Reconcile technical details from various information sources during events.
  • Identify impacted assets, endpoints, and users from attacks.
  • Initiate threat hunt activities across the ecosystem.
• Continuous Improvement:
  • Propose improvements to Indicators of Compromise (IOCs) and response techniques.
  • Develop and maintain Security Operations Dashboards.
  • Enhance SOAR and SIEM capabilities.
  • Assess security risks impacting CTOC operations tools.
  • Assist in developing custom scripts and tools for CTOC tasks.

Qualifications

• 3-5 years of experience in cybersecurity incident response and investigation.
• Strong understanding of cybersecurity principles, threat analysis, and incident management.
• Proficient with security tools and ecosystems.
• Excellent analytical, problem-solving, and communication skills.
• Ability to thrive in a fast-paced and dynamic environment.

Compensation

• Competitive Salary Range up to $150,000 based on your experience and skills.
• Comprehensive Benefits: Enjoy medical, dental, vision, Paid Time Off (PTO), 401k, and holiday benefits.

Keywords

Top secret, SCI, TS/SCI, offensive cyber, Splunk, Nessus, Cyber, Analyst, analysis, engineer, triage, threats, cyber threat, defense, incident response

#LI-JB1