Back to search
cFocus Software Incorporated Himalayas · Posted today

NIH - Incident Response Analyst

Full time Remote

Incident Response Analyst Cybersecurity Analyst SOC Analyst Security Operations Analyst
Continue to application Add your email once, then Caio opens the original posting.

Indexed description

cFocus Software seeks a Incident Response Analyst to join our program supporting the National Institutes of Health (NIH). This position is fully remote. This position requires a Public Trust or the ability to obtain a public trust clearance.
Qualifications:
  • Public Trust Clearance
  • B.S. Computer Science, Information Technology, or a related field
  • 5+ years of cybersecurity experience.
  • 5+ years supporting cybersecurity incident response or Security Operations Center (SOC) environments.
  • Experience investigating security incidents across Windows, Linux, cloud, and enterprise networks.
  • Experience with SIEM technologies and security monitoring platforms.
  • Experience performing incident triage and root cause analysis.
  • Knowledge of malware analysis and digital forensics concepts.
  • Understanding of NIST Cybersecurity Framework and NIST SP 800-61 Incident Handling Guide.
  • Ability to obtain and maintain required NIH suitability/background investigation.
  • Active GCIH, GCFA, GCIA, CISSP, CySA+, Security+, CEH, CHFI, CISM, or GSEC

Duties:
  • Monitor security events across the NIH/OD-OIT environment.
  • Detect, analyze, and respond to cybersecurity incidents affecting enterprise systems.
  • Perform incident triage to determine scope, severity, urgency, and operational impact.
  • Support incident containment, eradication, recovery, and restoration activities.
  • Investigate suspected security incidents within established response time requirements.
  • Coordinate incident handling activities with NIH and HHS cybersecurity organizations.
  • Monitor enterprise security logs and alerts.
  • Perform network and host-based intrusion detection.
  • Monitor cloud applications and cloud infrastructure.
  • Support continuous 24x7 security monitoring operations.
  • Identify indicators of compromise (IOCs) and suspicious activity.

Originally posted on Himalayas

Free. 20 seconds. No password. See every match in this search.

Create a free Caio profile to unlock more results and save your role and location preferences.

Unlock free search
Want help applying to roles like this? Search Caio for free. If CV tailoring and application tracking get heavy, Full Caio Agent adds a human specialist.
View Full Agent