Experienced Cybersecurity Incident Response Handler and Analyst - 3rd Shift - ONSITE/REMOTE - Washington DC - Federal Agency Support

Introduction to Visual Soft, Inc. Visual Soft, Inc. is a leading provider of cybersecurity solutions, dedicated to protecting federal agencies and their networks from ever-evolving cyber threats. As a trusted partner, we are seeking a highly skilled and experienced Cybersecurity Incident Response Handler and Analyst to join our team in supporting a federal agency's enterprise Security Operations Center (SOC). If you are a motivated and inquisitive cybersecurity professional with a passion for incident response, we encourage you to apply for this exciting opportunity. Job Overview We are looking for a talented Cybersecurity Incident Response Handler and Analyst to work on our efforts with a Prime for their end customer, a federal agency. As an Incident Response Handler and Analyst, you will play a critical role in responding to and mitigating cyber threats affecting the client's networks. This is a unique opportunity to work on a high-profile project, collaborating with a team of experienced cybersecurity professionals to protect the nation's critical infrastructure. Key Responsibilities: Respond to cyber incidents, including responding to SOC IR phone calls and SOC emails from the client and customer POCs. Provide support in the detection, response, mitigation, and reporting of cyber threats affecting internal and external clients' networks. Maintain an understanding of current vulnerabilities, response, and mitigation strategies used in the cybersecurity operation center. Develop documentation, reports, briefs, and review SOPs with customers to give an accurate depiction of the current threat landscape and associated risk affecting the clients' networks. Provide analysis for correlated information sources to the client, notified by the Cyber SOC Team Lead or the Government Watch Officer. Act as a Subject Matter Expert in investigations for potential incidents at the SOC Tier 1 Level. Analyze and report cyber threats, as well as assist in deterring, identifying, monitoring, investigating, and analyzing computer network intrusions. Work with SOC federal staff, Shift Lead, Senior Analyst to analyze, triage, contain, and remediate security incidents. Follow Federal IRP, SOC SOPs, and other prudent documentation procedures to work effectively while having an eye towards process improvement and efficiency. Essential Qualifications: To be successful in this role, you should have: 3 years of security operations center (SOC) experience, with a focus on incident response and cybersecurity. U.S. Citizenship is required. A Bachelor's degree is preferred but not required. Experience with multiple technology and system types, including wide area networks, host and network IPS/IDS/HIPS, traffic event review, server web log analysis, and raw data logs. Knowledge of multiple attack types and attack vectors, including experience with forensic investigation of emails for phishing campaigns, spam emails, and malware analysis. Experience utilizing Splunk SIEM, writing and creating Splunk Search Processing Language (SPL), creating and running queries, and performing analytics examination of logs and console events. Experience tracking incidents against a framework such as MITRE ATT&CK or Cyber Kill Chain methodology. Familiarity with multiple vendor technologies, such as Azure Sentinel, Microsoft 365 Security Center, FireEye (Trellix) suite of products, Domain Tools, Industry name Firewall/IPS, and OSINT tools. Experience using Helpdesk ticket capturing tools such as HEAT & ServiceNow. Preferred Qualifications: While not required, the following qualifications are highly desirable: Certifications in cybersecurity, such as CompTIA Security+ or CISSP. Experience working in a federal agency or government contracting environment. Knowledge of cloud security platforms, such as Amazon Web Services (AWS) or Microsoft Azure. Experience with scripting languages, such as Python or PowerShell. Familiarity with agile development methodologies and version control systems, such as Git. Skills and Competencies: To excel in this role, you should possess: Strong analytical and problem-solving skills, with the ability to think critically and outside the box. Excellent communication and interpersonal skills, with the ability to work effectively in a team environment. Strong attention to detail, with the ability to maintain accuracy and quality in a fast-paced environment. Ability to work independently, with minimal supervision, and prioritize tasks effectively. Strong knowledge of cybersecurity principles, threats, and vulnerabilities, with the ability to stay up-to-date with emerging trends and technologies. Career Growth Opportunities and Learning Benefits: At Visual Soft, Inc., we are committed to the growth and development of our employees. As a Cybersecurity Incident Response Handler and Analyst, you will have access to: Ongoing training and professional development opportunities, including certifications and conferences. Mentorship and coaching from experienced cybersecurity professionals. Opportunities to work on high-profile projects and collaborate with federal agencies and government contractors. A dynamic and supportive work environment, with a focus on teamwork and innovation. Work Environment and Company Culture: Our company culture is built on a foundation of integrity, respect, and trust. We value our employees and strive to create a work environment that is: Collaborative and inclusive, with a focus on teamwork and open communication. Dynamic and innovative, with a emphasis on creativity and problem-solving. Supportive and flexible, with a focus on work-life balance and employee well-being. Compensation, Perks, and Benefits: We offer a competitive salary and benefits package, including: 3 weeks of paid time off (PTO), including sick leave, with the option to carry over unused PTO. 2 floating holidays and 8 public holidays, with the option to take additional time off with manager approval. 50% company-paid health and dental insurance for full-time employees, with the option to add dependents at an additional cost. Short-term disability (STD), long-term disability (LTD), and life insurance at no cost to full-time employees. 401(k) program with a 4% company match, immediate vesting, and the option to contribute to a retirement savings plan. Profit-sharing program, with no employee contributions required. Conclusion: If you are a motivated and experienced cybersecurity professional looking for a challenging and rewarding role, we encourage you to apply for this opportunity. As a Cybersecurity Incident Response Handler and Analyst, you will play a critical role in protecting federal agencies and their networks from cyber threats. With a competitive salary, comprehensive benefits package, and opportunities for growth and development, this is an exciting chance to join a dynamic and supportive team. Apply now to take the first step in your career with Visual Soft, Inc.! Apply for this job