Overview
Cyber Security Engineer Jobs in McLean, Virginia, USA at ManTech
Title: Cyber Security Engineer
Company: ManTech
Location: McLean, Virginia, USA
Type: Full Time
Category: IT/Tech, Security
Man Techis seeking a highly skilled and motivated Cyber Detection and Response Analyst to join ourdynamicCyber Incident Response Team. As a key member of the team, you will be responsible for proactively monitoring, detecting, analyzing, and responding to cybersecurity incidents within our large enterprise network. Your expertise in incident detection, analysis, and response will play a vital role in safeguarding our organization’s critical assets and ensuring the integrity of our information systems.
Responsibilities include, but are not limited to:
Incident Detection and Monitoring
Utilize SIEM (Security Information and Event Management) systems and other detection technologies to identify and investigate security anomalies.
Collaborate with other teams to establish and fine-tune detection rules and alerts.
Incident Analysis and Investigation
Conduct in-depth analysis of detected incidents to determine the nature, extent, and impact of the cybersecurity threats.
Perform forensic analysis, including examining network traffic, log files, and system artifacts, to identify the root cause and potential entry points of incidents.
Document incident findings, including the attack methodology, IOCs, and recommended mitigation measures.
Collaborate withcross-functional teams, such as network engineers, system administrators, and legal representatives, to gather and analyze relevant information during incident investigations
Incident Response and Mitigation
Execute the incident response process, following established procedures and protocols, to contain, mitigate, and remediate security incidents.
Coordinate with internal teams and external stakeholders to ensure a swift and effective response to incidents, includingcommunication, containment, and recovery activities.
Utilize incident response tools and technologies to facilitate the investigation, containment, and eradication of threats.
Provide recommendations for remediation actions and improvements to security controls and processes based on incident findings and lessons learned.
Threat Intelligence and Vulnerability Management
Stay up to date with the latest cybersecurity threats, vulnerabilities, and industry best practices.
Monitor external sources for threat intelligence and emerging trends to enhance the organization’s incident detection and response capabilities.
Contribute to vulnerability management activities by assessing and prioritizing vulnerabilities and providing guidance on remediation strategies.
Reporting and Documentation
Prepare clear and concise incident reports, including detailed timelines, analysis, and recommendations forsenior managementand relevant stakeholders.
Maintain accurate andup-to-datedocumentation of incidents, investigations, actions taken, and lessons learned.
Use the red Application button below to Read More / Continue the application process.
