Cybersecurity Incident Response Analyst

Description Leidos is seeking passionate Cybersecurity Incident Response Analysts to join our Network Assurance Team as part of the DISA GSM-O program. We support 24/7 operations in Pearl Harbor, Hawaii, requiring flexibility in shift assignments based on individual preferences and contract needs. Job Overview: You will collaborate closely with Government counterparts to provide expert guidance in the Cyber Network Defense Service Provider area. Your role will involve generating CND reports, analyzing trends, and responding to potential threats. As a technical leader within the CSSP Team, you will ensure the integrity and security of enterprise systems and networks, driving security initiatives through proactive and reactive analysis. Key Responsibilities: Conduct computer network incident detection and response activities to identify and characterize anomalous behaviors indicative of threats. Monitor security tools for potential malicious activities, investigate alerts, and recommend effective mitigation strategies. Analyze low-level events to uncover unauthorized activities using innovative problem-solving techniques. Perform real-time event triage and analysis to validate network traffic or respond to incident reports from mission partners. Utilize approved DoD monitoring policies with advanced tools to detect suspicious network traffic continuously. Review logs promptly to detect intrusions and communicate findings via formal reporting processes. Apply and optimize countermeasures to prevent or minimize cyber event impacts. Perform network traffic analysis using packet data and custom sensor outputs related to cyber security. Understand advanced threat attack signatures, techniques, and procedures. Document each event and analysis meticulously in the ticketing system to support team reviews. Engage in regular coordination and communication with team members and customers to ensure seamless operations. Basic Qualifications: Must have a minimum active DoD Secret clearance (ability to obtain Top Secret preferred). Hold an active DoD 8570 IAT Level II Certification (e.g., Sec+ CE) or higher by the time of hire. Willingness to obtain DoD 8570 CSSP-Analyst certification within 180 days of hire. Bachelor's degree with 2+ years of relevant experience (additional experience or military service can substitute for degree). Experience in Cyber Network Defense roles (Protect, Defend, Respond, Sustain). Proficient in evaluating packet captures with knowledge of systems and networking. Strong communication skills to liaise with DoD/Government leaders at all levels. Flexibility to work shifts as required. Preferred Qualifications: Proficient in command line scripting (PERL, Python, Shell) for task automation. Understanding of hacker tactics, techniques, and procedures. Familiarity with cybersecurity frameworks like MITRE ATT&CK and the Cyber Kill Chain. Experience with intrusion detection tools like Splunk and Elastic. Knowledge of software exploits and the ability to analyze packed or obfuscated code. We invite you to apply and become a key player in safeguarding our nation's cyber infrastructure!