Cyber Defense Incident Responder (CDIR) / Mostly Remote

THIS POSITION IS MOSTLY REMOTE - In its majority, work will be performed remotely from the employee's place of residence. Pre-planned travel to Oak Ridge, Tennessee, will be required twice per quarter (generally 5-day trips, Sunday through Thursday).

Please do not apply to this posting if you have not worked specifically as a Cyber Defense Incident Responder (alternatively referred to as "Incident Responder").

Global Engineering and Technology (GET) is seeking qualified applicants for the position of Senior Cyber Defense Incident Responder (CDIR) to join our cybersecurity team supporting a national security site belonging to the United States Department of Energy (DOE). This is a highly compensated, high-responsibility technical guidance position that is central to our national security mission's success. This is a full-time position as a GET employee with paid leave and benefits.

Paid, pre-planned travel to Oak Ridge, Tennessee, will be required twice per quarter (generally 5-day trips, Sunday through Thursday).

CDIR Duties:

As part of the Cyber Operations team supporting the Y-12 National Security Complex, the CDIR is the principal party that investigates, analyzes, and responds to cyber incidents within the network environment or enclave, reactively addressing and managing security incidents and breaches when they occur.

Requirements

Security Clearance

This position requires an active DOE "Q" or DoD "Top Secret" security clearance

Required Education and Experience

• Pertinent certifications and military training will be considered toward academic degree requirement
• Associate's degree in a technical field and 10 years of hands-on incident response experience - please do not apply if you have not worked specifically as a CDIR (alternatively referred to as "Incident Responder")
• Bachelor's degree in a technical field and 5 years of hands-on incident response experience - please do not apply if you have not worked specifically as a CDIR (alternatively referred to as "Incident Responder")

Required Knowledge, Skills, and Abilities (KSAs)

This is a senior position - APPLICANT MUST MEET ALL OF THE FOLLOWING KSAs:

• Perform cyber defense incident triage, including determining scope, urgency, and potential impact, identifying the specific vulnerability, and making recommendations that enable expeditious remediationDetermine the scope, urgency, and impact of cyber defense incidents
• Perform real-time cyber defense incident handling (e.g., forensic collections, intrusion correlation and tracking, threat analysis, and direct system remediation) tasks to support deployable Incident Response Teams (IRTs)
• Coordinate and provide senior-level technical support to enterprise-wide cyber defense analysts to resolve cyber defense Incidents
• Correlate incident data to identify specific vulnerabilities and make recommendations that enable expeditious remediation
• Coordinate incident response functions and recommend incident remediation strategies
• Perform analysis of log files from a variety of sources (e.g., individual host logs, network traffic logs, firewall logs, and intrusion detection system [IDS] logs) to identify possible threats to network security
• Receive and analyze network alerts from various sources within the enterprise and determine possible causes of such alerts
• Track and document cyber defense incidents from initial detection through final resolution
• Coordinate with intelligence analysts to correlate threat assessment data
• Perform cyber defense trend analysis and reporting

Benefits

We provide exceptional benefits to our full-time employees (spouse/family coverage option also available at a company-subsidized rate).

Benefits include:

• Medical plan options with UnitedHealthcare
• Dental Insurance
• Long-term and Short-term Disability Insurance
• Life Insurance
• AD&D Insurance
• Generous 401(k) match

All benefits are effective on day one of employment.
Global Engineering & Technology, Inc. is an equal opportunity employer and does not discriminate on the basis of race, sex, color, religion, age, national origin, marital status, disability, veteran status, genetic information, sexual orientation, gender identity, or any other reason prohibited by law in provision of employment opportunities and benefits.