Lafayette Group
Cyber Incident Analyst
Lafayette Group
is seeking experienced professionals to provide advanced consulting support for federal cybersecurity programs. The Cyber Incident Analyst focuses on deep technical analysis during active cyber incidents across IT, OT/ICS, cloud, and AI systems.
Job Responsibilities
Perform analysis on active cyber incidents, events, and vulnerabilities to provide guidance and targeted mitigation recommendations.
Support the development of written guidance and recommendations to assist client partners with solutions for active and ongoing cyber vulnerabilities.
Remain current with emerging technologies and trends in cybersecurity and apply this knowledge to improve threat detection and mitigation efforts.
Provide insights into vulnerabilities, adversarial tactics, and mitigation strategies across diverse environments like IT, OT/ICS, cloud, and AI systems.
Assist with mapping technical insights on cyber threats to frameworks such as MITRE ATT&CK and other cyber frameworks.
Translate strategic products into clear, practical formats tailored to the specific needs and operational constraints of stakeholder groups, including large and small jurisdictions and critical infrastructure partners.
Customize vulnerability mitigation recommendations and contextualized examples to address implementation challenges and encourage rapid adoption.
Required Skills
Bachelor’s or Master’s degree in cybersecurity, information technology, political science, or a related field.
6+ years of professional experience in cyber analysis, threat intelligence, cyber security, incident response, or a similar role.
Demonstrated expertise in cyber incident response coordination, incident monitoring, and operational reporting.
Strong understanding of current cyber threats/exploits, attack methodology, and detection techniques using a variety of security products, including COTS and open source.
Strong understanding of computer and network fundamentals; working knowledge of computer architecture, operating systems, vulnerabilities, encryption, etc.
Experience defining data sources and writing detection rules for discovering malicious behavior.
Excellent analytical and critical‑thinking skills with an open‑minded, flexible, and curious problem‑solving approach.
Excellent oral and written communication skills.
Ability to manage time effectively to meet deadlines, adhere to project plans, and work on several projects simultaneously; strong organizational skills and attention to detail.
Proficiency with Microsoft Office Suite.
Active TS security clearance and SCI eligibility; U.S. citizenship with the ability to obtain and maintain DHS Suitability (EOD).
Desired Skills
Familiarity with the .gov Cyber Mission space and legal constraints applicable to civilian Government Agencies (e.g., FISMA).
Experience collecting, analyzing, and categorizing threat intelligence data from multiple sources to author actionable intelligence reports.
Familiarity with at least one scripting language such as Python and capable of manipulating data, interfacing with APIs, and automating repetitive tasks.
Ability to interpret complex cybersecurity topics and effectively communicate or present information to various stakeholder groups (e.g., Executives, SOC).
Field‑related certifications such as CTIA, CEH, GREM, GCIH, GCFA.
Experience with tools in both Linux and Windows environments.
Experience applying AI/ML to identify anomalous behavior in security data, especially using Elasticsearch.
Familiarity with MITRE ATT&CK and/or similar frameworks.
Location: Arlington, VA; on‑site 3‑5 days per week
Salary Range: $80,000–$130,000
Federal Contracts: This position involves working on federal contracts that require all workers on the contract to be U.S. Citizens. Some contracts may require the ability to obtain a security clearance.
Contingent Hire: This position will be hired contingent upon winning the Federal contract work.
Lafayette Group provides equal employment opportunities to all persons and prohibits employment decisions based on race, religion, color, creed, national origin, sex, age, disability, political affiliation, protected veteran status, or sexual orientation. Equal Opportunity Employer, including disabled and veterans. If reasonable accommodation is needed, please contact talent@lafayettegroup.com.
#J-18808-Ljbffr
is seeking experienced professionals to provide advanced consulting support for federal cybersecurity programs. The Cyber Incident Analyst focuses on deep technical analysis during active cyber incidents across IT, OT/ICS, cloud, and AI systems.
Job Responsibilities
Perform analysis on active cyber incidents, events, and vulnerabilities to provide guidance and targeted mitigation recommendations.
Support the development of written guidance and recommendations to assist client partners with solutions for active and ongoing cyber vulnerabilities.
Remain current with emerging technologies and trends in cybersecurity and apply this knowledge to improve threat detection and mitigation efforts.
Provide insights into vulnerabilities, adversarial tactics, and mitigation strategies across diverse environments like IT, OT/ICS, cloud, and AI systems.
Assist with mapping technical insights on cyber threats to frameworks such as MITRE ATT&CK and other cyber frameworks.
Translate strategic products into clear, practical formats tailored to the specific needs and operational constraints of stakeholder groups, including large and small jurisdictions and critical infrastructure partners.
Customize vulnerability mitigation recommendations and contextualized examples to address implementation challenges and encourage rapid adoption.
Required Skills
Bachelor’s or Master’s degree in cybersecurity, information technology, political science, or a related field.
6+ years of professional experience in cyber analysis, threat intelligence, cyber security, incident response, or a similar role.
Demonstrated expertise in cyber incident response coordination, incident monitoring, and operational reporting.
Strong understanding of current cyber threats/exploits, attack methodology, and detection techniques using a variety of security products, including COTS and open source.
Strong understanding of computer and network fundamentals; working knowledge of computer architecture, operating systems, vulnerabilities, encryption, etc.
Experience defining data sources and writing detection rules for discovering malicious behavior.
Excellent analytical and critical‑thinking skills with an open‑minded, flexible, and curious problem‑solving approach.
Excellent oral and written communication skills.
Ability to manage time effectively to meet deadlines, adhere to project plans, and work on several projects simultaneously; strong organizational skills and attention to detail.
Proficiency with Microsoft Office Suite.
Active TS security clearance and SCI eligibility; U.S. citizenship with the ability to obtain and maintain DHS Suitability (EOD).
Desired Skills
Familiarity with the .gov Cyber Mission space and legal constraints applicable to civilian Government Agencies (e.g., FISMA).
Experience collecting, analyzing, and categorizing threat intelligence data from multiple sources to author actionable intelligence reports.
Familiarity with at least one scripting language such as Python and capable of manipulating data, interfacing with APIs, and automating repetitive tasks.
Ability to interpret complex cybersecurity topics and effectively communicate or present information to various stakeholder groups (e.g., Executives, SOC).
Field‑related certifications such as CTIA, CEH, GREM, GCIH, GCFA.
Experience with tools in both Linux and Windows environments.
Experience applying AI/ML to identify anomalous behavior in security data, especially using Elasticsearch.
Familiarity with MITRE ATT&CK and/or similar frameworks.
Location: Arlington, VA; on‑site 3‑5 days per week
Salary Range: $80,000–$130,000
Federal Contracts: This position involves working on federal contracts that require all workers on the contract to be U.S. Citizens. Some contracts may require the ability to obtain a security clearance.
Contingent Hire: This position will be hired contingent upon winning the Federal contract work.
Lafayette Group provides equal employment opportunities to all persons and prohibits employment decisions based on race, religion, color, creed, national origin, sex, age, disability, political affiliation, protected veteran status, or sexual orientation. Equal Opportunity Employer, including disabled and veterans. If reasonable accommodation is needed, please contact talent@lafayettegroup.com.
#J-18808-Ljbffr