Cybersecurity Incident and Application Analyst

Inqwest - Bethesda, MD

posted 3 months ago

Full-time - Mid Level
Remote - Bethesda, MD
Professional, Scientific, and Technical Services

About the position

InQwest Inc. is seeking a Cybersecurity Incident and Application Analyst to join our team in Bethesda, MD. This full-time position is essential for ensuring the security and integrity of our systems and applications. The ideal candidate will have a strong background in network security, web application security, and cloud technologies, with a focus on incident response and analysis. The role involves working with various security tools and technologies to identify, analyze, and respond to security incidents effectively. The analyst will be responsible for understanding and implementing NIST standards, particularly NIST SP 800-61, and will play a crucial role in the Enterprise Incident Response Cycle, which includes preparation, detection and analysis, containment and recovery, and post-incident analysis. The Cybersecurity Incident and Application Analyst will also be tasked with identifying vulnerabilities within our systems, including default/weak configurations and insecure protocols. A deep understanding of computer intrusion activities and incident response techniques is necessary to effectively manage and mitigate security threats. The analyst will work closely with management and executive teams to produce detailed reports on incidents and the effectiveness of incident response procedures. Additionally, the role requires participation in yearly incident response tests and the ability to create lessons learned from incidents to improve existing procedures and standard operating protocols (SOPs). This position offers the flexibility of remote work, allowing for a dynamic work environment while contributing to the overall security posture of InQwest Inc.

Responsibilities

  • Conduct thorough analysis of security incidents and provide detailed reports to management.
  • Participate in the Enterprise Incident Response Cycle, including preparation, detection, analysis, containment, recovery, and post-incident analysis.
  • Identify vulnerabilities in systems, including weak configurations and insecure protocols.
  • Utilize security tools such as FireEye, IDS/IPS technologies, and SIEM (Splunk) for incident detection and response.
  • Assist in the yearly incident response tests and evaluations.
  • Create and maintain RACI charts in accordance with NIST SP 800-61 standards.
  • Evaluate the effectiveness of incident response procedures and recommend improvements.
  • Monitor network security and web application security to identify malicious or suspicious activities.
  • Produce reports for management and executive teams regarding incident response and security posture.

Requirements

  • Minimum of 2-5 years of experience in network security and web application security.
  • Desired certifications: E|CIH, OSCP, GCIH, and Splunk.
  • Good knowledge of ports and protocols relevant to network security.
  • Experience in identifying default/weak configurations and vulnerable ports.
  • Deep understanding of computer intrusion activities and incident response techniques.
  • Experience with the Enterprise Incident Response Cycle.
  • Good knowledge of NIST SP 800-61 and experience in creating RACI charts.
  • Ability to identify malicious activities and assign appropriate criticality levels.
  • Experience in escalation procedures and incident reporting.
  • Ability to produce comprehensive reports for management.

Nice-to-haves

  • Experience with cloud technologies and their security implications.
  • Familiarity with vulnerability detection tools like Tenable.
  • Knowledge of operating systems, particularly Windows and Linux.

Benefits

  • Competitive salary range of $87.9K - $111K per year.
  • Remote work flexibility.
  • Opportunities for professional development and certifications.

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service