Senior Cybersecurity Incident Response Specialist

- High School diploma or GED required - Bachelors degree in computer science or related field preferred - At least five years of hands-on experience in cybersecurity - Demonstrated ability to detect, triage, and manage cyber incidents in enterprise and cloud environments - Proficiency in SIEM, EDR/XDR platforms, and forensic tools - Deep understanding of threat actor tactics, techniques, and procedures (TTPs), including MITRE ATT&CK framework - Capability to analyze network traffic, logs, and endpoint telemetry to spot malicious activities - Familiarity with malware analysis and reverse engineering fundamentals - Experience in creating and refining detection rules, playbooks, and automated response processes - Knowledge of incident response frameworks like NIST SP 800-61 and SANS - Understanding of vulnerability management and SOC metrics/reporting - Grasp of basic computer and networking principles - Experience with Windows, Linux, and Unix operating systems - Familiarity with networking technologies including routing, switching, firewalls, and VLANs - Knowledge of common networking protocols such as SSH, SMB, and HTTP/HTTPS - Experience with enterprise technologies like Active Directory and Microsoft Azure - Understanding of system logging technologies and data retrieval processes - Strong teamwork skills and ability to work independently - Willingness to adapt to new tasks without established SOPs - Capacity for self-directed learning and research - Strong analytical and decision-making capabilities, particularly under pressure - Excellent written and verbal communication skills for incident documentation and executive presentations - Ability to lead investigations and mentor junior team members - U.S. Citizenship required for eligibility to access classified information