Job Details

Cybersecurity Incident Response Coordinator

Overview:

NikSoft Systems Corporation is a recognized Information Technology solutions provider. Founded in 1998 and based in Reston, Virginia, NikSoft is a CMMI Level 3 Certified company with an established reputation for excellence and on-time delivery with a consistently high customer satisfaction rating from its Federal Government and private consulting contracts.

NikSoft is currently conducting a search for an Incident Response Coordinator to join our federal clients cybersecurity team. The successful candidate will experience an unparalleled large-scale enterprise environment with over 800 Information Technology systems, supporting billions of dollars in annual revenue, supporting a diverse user base spread across the entire US. Join the NikSoft team to scale up your career to the next level.

Responsibilities:

• Collaborate and lead the response actions for cybersecurity incidents in a large-scale cloud-based enterprise environment.
• Follow Advanced Persistent Threat (APT) procedures and systems to respond to complex threat behaviors or indications requiring experts to hunt and characterize APTs.
• Plan and execute incident response actions in a timely manner.
• Collaborate with threat management/detection specialists and other cybersecurity SMEs to respond to security incidents.
• Effectively collaborate with colleagues and counterparts internally and externally.
• Recognize potential, successful, and unsuccessful intrusion attempts and compromises, and perform careful reviews and analyses of relevant event detail and summary information.
• Experience managing cases with enterprise SIEM systems like ArcSight, Splunk or Sourcefire.

Qualifications:

• Bachelors Degree in Computer Science, Information Technology or Cybersecurity related field.
• 8+ years of experience in computer forensics or vulnerability analysis.
• 8+ years of experience in information security, especially in an incident response role.
• Strong knowledge and hands-on experience responding to incidents and threats in a large-scale enterprise environment is a must. Be ready to discuss best practices, lessons learned, and challenges.
• Must demonstrate a solid understanding of cyber security analysis, incident response, incident handling, and a proven member of an incident response team.
• Experience with Splunk, Sentinel One, Armis, SNA preferred.

****Candidates must be able to obtain a Postal Sensitive Clearance (US Citizenship or Green Card required). Additionally, candidates must not have traveled outside of the USA for a combined period not to exceed 6 months within the last 5 years.***

Seniority level

Associate

Employment type

Full-time

Job function

Information Technology

Industries

IT Services and IT Consulting