Returning Candidate?

Incident Response Analyst

Incident Response Analyst

Requisition ID 
# of Openings 
Job Location 
Job Function 
Information Technology
Security Clearance Level 
Full/Part Time 
Full Time

More information about this job

Job Description

The Cyber Analyst supports agency efforts to provide incident response and analytic capabilities to an enterprise wide cybersecurity program. The successful candidate for this position has technical knowledge and experience performing incident response, network monitoring, malware analysis, and has performed cyber incident related digital forensics. Candidate should be a strong leader with the ability to perform multiple types of analysis roles in a Security Operations Center includes providing mitigation recommendations for impacted parties. Candidate shall at times deliver senior level briefings that address Departmental cases or ongoing investigations.

Location: Germantown MD


Preferred Background:

  • Bachelor’s degree in Engineering, Computer Science, Information Technology, Cybersecurity, or a mathematics-intensive discipline or 4+ years hands on experience
  • Network Security Monitoring support as part of the 24x7 Security Operations Center
  • Experience performing "deep dive" analysis and correlation of log data from multiple sources including PCAP and forensic artifacts
  • Experience working with Incident Response involving APT threat actors and working ongoing pervasive intrusion sets
  • Performing day-to-day system analyst activities for enterprise cyber security solutions
  • Prior experience leveraging common languages (like Perl and Python) to parse logs, automate processes, and integrate systems
  • Experience in computer network defense and in-depth technical knowledge/mastery with intrusion detection systems
  • Security+, GCIH, CISSP, EnCE, or other digital forensics certifications
  • Ideal candidate must be self-directed and capable of working in a fast paced operations environment. 
  • Ideal candidate has experience leading a small technical team
  • “Top Secret” or DOE “Q” security clearance prefer


Bachelor’s degree in Engineering, Computer Science, or a mathematics-intensive discipline. 


Technical Requirements:

  • Strong understanding of TCP/IP networking including knowledge of protocols, ports, and services
  • Forensic analysis experience or administrator level knowledge of Windows, Mac, and Linux systems
  • Experience with log analysis, event correlation and incident management procedures and systems
  • IT Network or Security Operation Center experience
  • Experience monitoring network traffic (i.e. netflow and PCAP) and IDS/IPS data



  • Strong oral and written communication skills. Ability to effectively communicate and translate highly technical information in a professional manner at all levels, including high-ranking executives
  • Aptitude for learning, be self-directed, and be capable of working in a fast-paced operations environment
  • Ability to produce high-quality, executive-ready deliverables while working independently
  • Obtain and maintain Security+ or higher certification
  • Obtain and maintain a DOE “Q” security clearance (US Citizenship required)

As a trusted systems integrator for more than 50 years, General Dynamics Information Technology provides information technology (IT), systems engineering, professional services and simulation and training to customers in the defense, federal civilian government, health, homeland security, intelligence, state and local government and commercial sectors.With approximately 32,000 professionals worldwide, the company delivers IT enterprise solutions, manages large-scale, mission-critical IT programs and provides mission support services.GDIT is an Equal Opportunity/Affirmative Action Employer - Minorities/Females/Protected Veterans/Individuals with Disabilities.

Need help finding the right job?

We can recommend jobs specifically for you! Click here to get started.