15 of 15 Permanent Security Incident Manager Jobs

Incident Response Manager I'm working with a global tech-led FS business Cyber Incident Response Manager to lead their incident response function and manage complex, high-impact security events. They're looking for a hands-on, proactive leader who can drive incident remediation, improve response playbooks, and coordinate CIRT teams during major … incidents. Perfect for someone who enjoys being in sole contributor and operating strategically and tactically. We're looking for candidates with experience in: Managing global security incidents at scale Vulnerability management and remediation programs Frameworks like NIST and MITRE ATT&CK Cloud security (Azure preferred) Reporting and communicating with both technical teams and senior stakeholders Comfortable working closely More ❯

Job Title: Incident Manager Location: Arlington, VA Minimum Requirements: U.S. Citizenship Must have an active TS/SCI clearance Must be able to obtain DHS Suitability 5+ years of directly relevant experience in cyber incident management or cybersecurity operations Knowledge of incident response and handling methodologies Having close familiarity with NIST 800-62 (latest revision), and … FISMA standards as they pertain to reporting incidents. Knowledge of the NCCIC National Cyber Incident Scoring System to be able to prioritize triaging of incident Knowledge of general attack stages (e.g., foot printing and scanning, enumeration, gaining access, escalation of privileges, maintaining access, network exploitation, covering tracks, etc.) Skill in recognizing and categorizing types of vulnerabilities and associated … attacks Knowledge of different operational threat environments (e.g., first generation script kiddies , second generation non nation-state sponsored , and third generation nation-state sponsored ) Knowledge of system and application security threats and vulnerabilities (e.g., buffer overflow, mobile code, cross-site scripting, PL/SQL and injections, race conditions, covert channel, replay, return- oriented attacks, and malicious code) Excellent oral More ❯

our clients. That means a career packed with opportunities to grow and the ability to have an impact on every client you work with. ARSIEM is looking for an Incident Manager 3 (Cyber Action Officer 3) to support on-site incident response to civilian Government agencies and critical asset owners who experience cyberattacks, providing immediate investigation and … resolution. This position will support one of our Government clients in Arlington, VA. Responsibilities Supporting the management of cyber incidents through the incident response lifecycle. Creating and maintaining routine reporting of cyber incidents in official systems of record, including case management systems and ticketing. Coordinating with internal and external customers, partners, and stakeholders. Ingesting, validating, and evaluating information to … leadership. Maintaining knowledge objects in a system of record consistently and professionally. Supporting teams that apply risk management and protocols to evaluate risks and prioritize responses based on national security strategies (NCISS). Supporting teams conducting threat and vulnerability management to recognize and categorize types of vulnerabilities, threat actors, and different operational threat environments, and associated attacks (MITRE ATT More ❯

Our Partner is supporting a U.S. Government Customer to provide support for onsite incident response to civilian Government agencies and critical asset owners who experience cyber-attacks, providing immediate investigation and resolution. Contract personnel perform investigations to characterize the severity of breaches, develop mitigation plans, and assist with the restoration of services. We are seeking a Cyber Incident Manager to support this critical Customer mission. Responsibilities: Correlating incident data to identify specific trends in reported incidents Recommending defense in depth principles and practices (i.e. Defense in Multiple Places, layered defenses, security robustness, etc.) Performing Computer Network Defense incident triage to include determining scope, urgency, and potential impact Researching and compiling known resolution steps … small, and large-scale IT networks, and conduct cursory analysis of log data Monitoring external data sources to maintain currency of Computer Network Defense threat condition and determine which security issues may have an impact on the enterprise Identifying the cause of an incident and recognizing the key elements to ask external entities when learning the background and More ❯

our clients. That means a career packed with opportunities to grow and the ability to have an impact on every client you work with. ARSIEM is looking for an Incident Manager III (Cyber Incident Manager) to support on-site incident response to civilian Government agencies and critical asset owners who experience cyberattacks, providing immediate investigation … and resolution. This position will support one of our Government clients in Arlington, VA. Responsibilities Correlating incident data to identify specific trends in reported incidents Recommending defense in depth principles and practices (i.e., Defense in Multiple Places, layered defenses, security robustness, etc.) Performing Computer Network Defense incident triage to include determining scope, urgency, and potential impact Researching … and large-scale IT networks, and conducting a cursory analysis of log data Monitoring external data sources to maintain currency of Computer Network Defense threat conditions and determine which security issues may have an impact on the enterprise Identifying the cause of an incident and recognizing the key elements to ask external entities when learning the background and More ❯

Job Description ANALYGENCE is seeking an experienced Cyber Incident Response Manager (SME) to supportour federal customer who plays a key role in enhancing the security, resiliency, and reliability of the nation's cyber and communications infrastructure. This role directly supports the customer Mission Engineering (ME) Information Security Branch (ISB) responsible for providing Cybersecurity and Information Assurance … support. Services include providing programmatic, technical, engineering, and integration support for the continued design, development, enhancement, integration, deployment, operations, and sustainment of security supported initiatives. The Cyber Incident Response Manager (SME) will coordinate the incident response plans, processes, and providers, and advise on steps to achieve incident response readiness (logging and monitoring configurations, triage and … escalation procedures, wider stakeholder liaison, etc.) for both on-premises and cloud-based programs. Additionally, you will coordinate the incident response plans, processes, and providers, and advise on steps to achieve incident response readiness (logging and monitoring configurations, triage and escalation procedures, wider stakeholder liaison, etc.) for both on-premises and cloud-based programs. The current team member More ❯

Our Arlington VA based client is looking for Incident Manager III. If you are qualified for this position, please email your updated resume in word format to Responsibilities: - Correlating incident data to identify specific trends in reported incidents - Recommending defense in depth principles and practices (i.e. Defense in Multiple Places, layered defenses, security robustness, etc.) - Performing … Computer Network Defense incident triage to include determining scope, urgency, and potential impact - Researching and compiling known resolution steps or workarounds to enable mitigation of potential Computer Network Defense incidents within the enterprise - Applying cybersecurity concepts to the detection and defense of intrusions into small, and large-scale IT networks, and conduct cursory analysis of log data - Monitoring external … data sources to maintain currency of Computer Network Defense threat condition and determine which security issues may have an impact on the enterprise - Identifying the cause of an incident and recognizing the key elements to ask external entities when learning the background and potential infection vector of an incident, - Receiving and analyzing network alerts from various sources More ❯

Farfield Systems is supporting a U.S. Government customer to provide support for onsite incident response to civilian Government agencies and critical asset owners who experience cyber-attacks, providing immediate investigation and resolution. Contract personnel perform investigations to characterize the severity of breaches, develop mitigation plans, and assist with the restoration of services. Farfield is seeking a Cyber Incident Manager to support this critical customer mission. Responsibilities: - Correlating incident data to identify specific trends in reported incidents - Recommending defense in depth principles and practices (i.e. Defense in Multiple Places, layered defenses, security robustness, etc.) - Performing Computer Network Defense incident triage to include determining scope, urgency, and potential impact - Researching and compiling known resolution steps … small, and large-scale IT networks, and conduct cursory analysis of log data - Monitoring external data sources to maintain currency of Computer Network Defense threat condition and determine which security issues may have an impact on the enterprise - Identifying the cause of an incident and recognizing the key elements to ask external entities when learning the background and More ❯

PROGRAM DESCRIPTION: The DHS's Hunt and Incident Response Team (HIRT) secures the Nation's cyber and communications infrastructure. HIRT provides DHS's front line response for cyber incidents and proactively hunting for malicious cyber activity. MicroSys performs HIRT investigations to develop a preliminary diagnosis of the severity of breaches. MicroSys provides HIRT remote and onsite advanced technical assistance … proactive hunting, rapid onsite incident response, and immediate investigation and resolution using host-based and network-based cybersecurity analysis capabilities. JOB DESCRIPTION: Cyber Incident Manager (IMG) Responsibilities: • Researching and compiling known resolution steps or workarounds to enable mitigation of potential Computer Network Defense incidents within the enterprise • Applying knowledge of the tactics, techniques, and procedures of various … and conduct cursory analysis of log data • Conducting cursory analysis of log data • Monitoring external data sources (e.g., Computer Network Defense vendor sites, Computer Emergency Response Teams CERTs , SANS, Security Focus) to maintain currency of Computer Network Defense threat condition and determine which security issues may have an impact on the enterprise • Identifying the cause of an incident More ❯

clients. That means a career packed with opportunities to grow and the ability to have an impact on every client you work with. ARSIEM is looking for a Cyber Incident Manager 3 to support on-site incident response to civilian Government agencies and critical asset owners who experience cyber attacks, providing immediate investigation and resolution. This position … will support one of our Government clients in Arlington, VA. Responsibilities Correlating incident data to identify specific trends in reported incidents Recommending defense in depth principles and practices (i.e., Defense in Multiple Places, layered defenses, security robustness, etc.) Performing Computer Network Defense incident triage to include determining scope, urgency, and potential impact Researching and compiling known resolution … small and large-scale IT networks and conducting cursory analysis of log data Monitoring external data sources to maintain currency of Computer Network Defense threat conditions and determine which security issues may have an impact on the enterprise Identifying the cause of an incident and recognizing the key elements to ask external entities when learning the background and More ❯

and conduct cursory analysis of log data • Conducting cursory analysis of log data • Monitoring external data sources (e.g., Computer Network Defense vendor sites, Computer Emergency Response Teams CERTs , SANS, Security Focus) to maintain currency of Computer Network Defense threat condition and determine which security issues may have an impact on the enterprise • Identifying the cause of an incident and recognizing the key elements to ask external entities when learning the background and potential infection vector of an incident • Receiving and analyzing network alerts from various sources within the enterprise and determine possible causes of such alerts • Tracking and documenting Computer Network Defense (CND) incidents from initial detection through final resolution • Working with other components within the … work week) Required Skills: • U.S. Citizenship • Must have an active TS/SCI clearance • Must be able to obtain DHS Suitability • 2+ years of directly relevant experience in cyber incident management or cybersecurity operations • Knowledge of incident response and handling methodologies • Knowledge of the NCCIC National Cyber Incident Scoring System to be able to prioritize triaging of More ❯

our clients. That means a career packed with opportunities to grow and the ability to have an impact on every client you work with. ARSIEM is looking for an Incident Manager 2 to support on-site incident response to civilian Government agencies and critical asset owners who experience cyberattacks, providing immediate investigation and resolution. This position will … small and large-scale IT networks Conducting a cursory analysis of log data Monitoring external data sources (e.g., Computer Network Defense vendor sites, Computer Emergency Response Teams CERTs , SANS, Security Focus) to maintain currency of Computer Network Defense threat conditions and determine which security issues may have an impact on the enterprise Identifying the cause of an incident and recognizing the key elements to ask external entities when learning the background and potential infection vector of an incident Receiving and analyzing network alerts from various sources within the enterprise and determining possible causes of such alerts Tracking and documenting Computer Network Defense (CND) incidents from initial detection through final resolution Working with other components within the More ❯

Blue Rose Consulting Group is seeking an EOC (Enterprise Operations Center) Incident Manager/Watch Officer to lead and manage resolution of Major Incidents in a 24x7x365 federal operations environment. This position requires strong coordination skills, technical judgment, and the ability to manage incidents across multiple teams and systems. This is an On-Site role and is open … shift In this role, you will: Lead resolution of Major Incidents, coordinating across enterprise systems and teams Facilitate bridge calls and troubleshoot to restore services quickly Monitor and support Incident Management across environments Develop and maintain SOPs, troubleshooting guides, and contact databases Define and track performance metrics (MTTR, MTBF, repeat incidents) Provide daily SLA reporting and support CIO-level … briefings Maintain and update the knowledge base with incident and resolution data Identify areas for documentation and process improvement Manage ticket queues and escalations related to third-party dependencies Operate independently in high-pressure scenarios to ensure service continuity REQUIREMENTS: 3+ years in fault and performance monitoring (e.g., Netcool, AppDynamics, HP Ops Manager) 3+ years in incident More ❯

Blue Rose Consulting Group is seeking a NOC (Network Operations Center) Incident Manager to support our work with a federal client in Ashburn, VA. This is an On-Site role and is open to U.S. Citizens ONLY. Successful candidates will be required to complete a full background investigation. Shift Schedule: Training: Mon-Fri (), split between Ashburn, Springfield, and … remote Post-training: Tues-Sat () onsite in Ashburn Candidates must be willing to support 2nd () or 3rd () shifts In this role, you will: Manage and coordinate major incident resolution in real time Lead bridge calls, troubleshoot issues, and drive incidents to closure Monitor all environments for operational impacts Escalate critical issues per defined procedures Define and report metrics (MTTR … leadership review Maintain and audit operational documentation quarterly Identify and drive process and documentation improvements REQUIREMENTS: 3+ years with monitoring tools such as IBM Netcool, AppDynamics, or HP Ops Manager 3+ years using ServiceNow or BMC Remedy 3+ years in large-scale MoM monitoring environments 3+ years of ITIL experience (incident, problem, change, RCA) 2+ years of advanced More ❯

Senior Incident/Problem Analysis Manager Onsite: Arlington, VA IPTA is passionate about providing our customers with technical solutions that satisfy their business needs. Through collaborative interactions with customers, team members, subject matter experts (SMEs), technical leaders, and partners we design practical solutions that solve real problems for major government and business organizations. As a member of our … Smart people with a passion for technology Ability to solve challenging technical business problems Self-directed professionals Hunger to continually learn and grow Responsibilities: Present the summary results of incident analysis, along with identifying areas for improvement, on a regular basis, as part of the standard MPSR Support Problem Management processes and activities Conduct problem analysis on all problem … Bachelor's degree in a related field Ten (10) years of prior experience in a similar role Strong communication and organizational skills IAT or IAM Level I certification Active Security Clearance IPTA is an Equal Opportunity/Affirmative Action employer. We are committed to providing equal employment opportunity to all qualified employees and applicants for employment. The Company does More ❯