Cybersecurity Incident Response Team (CIRT) Incident Response Analyst – Seaside, CA

ASRC Federal Holding Company

Job Description

ASRC Federal NetCentric Technology seeks a Cybersecurity Incident Response Team Incident Response Analyst to support our Cybersecurity Support Services contract with the Defense Manpower Data Center (DMDC). This position performs activities related to the Cyber Incident Response Team (CIRT), the team responsible for containing, responding to, and eradicating threats and other malicious activity. This position helps build and improve cybersecurity incident response capabilities and coordinate or participate in high-priority investigations, identifying incident response improvements, and preparing reports for management.

Work location is Seaside California.

Duties and Responsibilities

Perform technical incident response investigations into cybersecurity related events and incidents
Determine the nature, scope, and cause of incidents including root cause analysis
Identify corrective actions and aid in the containment, eradication, and recovery of a given event and incident
Track incident response, corrective measures taken, recommendations, and remediation activities; complete incident reports for investigations as needed; provide or contribute to weekly report of events and incidents
Create and maintain incident response SOP in accordance with CJCSM 6510.01B, NIST SP 800-61R2, DoD regulations, and industry best practices
Respond to and investigate cyber events should an incident occur after regular business hours
ASRC Federal Advantages Benefits: Comprehensive insurance packages including medical, dental, vision, life insurance, and short term/long term disability, as well as a 401k with generous company match
Learning and Development: After 90 days of employment, regular full-time employees can get reimbursed up to $5,250 annually to go towards Associate’s, Bachelor’s, or Graduate Degrees; Industry standard professional certification; a professional certificate program; continuing education classes; and registration fees to attend professional conferences.
Holidays: 11 paid holidays
Paid Time Off: You will accrue 4.62 hours of paid time off per pay period which equates to 3 weeks annually. This amount goes up the longer you are with ASRC Federal.
Employee Resource Groups: That provide our employees the opportunity to collaborate and network with colleges with common interests, backgrounds, and experiences including Women’s Impact Network (WIN), Multicultural ERG, Military Community (MILCOM), and Pride ERG for LGBTQ+ employees and allies.
We invest in the lives of our employees, both in and out of the workplace, by providing competitive pay and benefits packages. This position is offering a pay range of $120,000.00- $154,000.00 depending on experience, seniority, geographic locations, and other factors permitted by law. Benefits offered may include healthcare, dental, vision, life insurance; 401(k); education assistance; paid time off including PTO, holidays, and any other paid leave required by law.


Qualifications and Requirements Active DoD 8570 IAT Level II certification or greater , including at least one of the following certifications in good standing: CCNA Security, CySA+, GICSP, GSEC, Security+ CE, CND, SSCP, CASP+CE, CCNP Security, CISA, CISSP (or Associate), GCED, GCIH, or CCSP.
Active DoD 8570 CSSP Incident Responder certification a plus, including at least one of the following certifications in good standing: CEH, CFR, CCNA Cyber Ops, CHFI, CySA+, GCFA, GCIH, SCYBER, or PenTest+
Knowledge of Incident Response Handling Procedures (NIST SP 800-61)
Familiarity with cyber adversary tactics and frameworks (such as ATT CK and D3FEND)
Experience/Education Bachelor’s Degree in computer science or related field
7+ years in Information Technology or Information Security
3+ years in Cybersecurity Incident Response
CIRT lead experience a plus
Clearance The selected candidate must have an active DoD Secret clearance with the ability to obtain and maintain a Top Secret Clearance

**COVID-19 Vaccination Requirement Statement

The COVID-19 vaccination requirement in Executive Order 14042 and FAR 52.223-99 is currently not effective. But please note that if those or other related requirements become effective, positions will require successful candidates to obtain and show proof of COVID-19 vaccination(s). ASRC Federal is an equal opportunity employer and will provide reasonable accommodation to those individuals who are unable to be vaccinated consistent with federal, state, and local law.

EEO Statement

ASRC Federal and its Subsidiaries are Equal Opportunity / Affirmative Action employers. All qualified applicants will receive consideration for employment without regard to race, gender, color, age, sexual orientation, gender identification, national origin, religion, marital status, ancestry, citizenship, disability, protected veteran status, or any other factor prohibited by applicable law.

Job Overview
  • Region
  • Categories

  • Receive job alerts:
    Your subscription could not be saved. Please try again.
    Your subscription has been successful.

    By subscribing below, you acknowledge that your email address will be transferred to Sendinblue for processing in accordance with their terms of use

Receive job alerts:

Your subscription could not be saved. Please try again.
Your subscription has been successful.

We use Sendinblue as our marketing platform. By Clicking below to submit this form, you acknowledge that the information you provided will be transferred to Sendinblue for processing in accordance with their terms of use