Skip to content


Advertise your job!

Mc Lean, Virginia - USD Full Time Posted: Friday, 7 December 2018
Applicants must be eligible to work in the specified location
Incident Response Analyst

We foster great collaborations and make you feel like you're part of the team. Our organization is truly a community where we're open for everyone to participate in making a difference. If you have insight and ideas and you want to make an impact, you'll feel at home here. Departmental collaborations are encouraged, collaborations between departments often take place. We are a team based culture so we look for people who can work well with others, listen to other people's ideas and be expressive with their own ideas. We are a company that strives to make a significant difference and we want employees who also want to participate in making that positive outcome.
Ready for a challenge that will require your experience and keep you on the edge of cyber security? Come join our Parsons Government Solutions and enjoy a career with some of the best professionals in the market. You will provide support to on-going operations in the areas of incident response and investigation, full-spectrum digital forensics and applied research in emerging areas of Intrusion Detection/Prevention, Insider Threat, and Cloud Converged Security. At times, this position will require you to develop and deliver training modules related to the aforementioned domains.

Cyber Hunt & Incident Response Analyst:

  • Perform analysis on hosts running on a variety of platforms and operating systems, to include, but not limited to, Microsoft Windows, Mac Operating System (OS), UNIX, Linux, as well as Embedded systems and mainframes.
  • Monitor open source channels (eg vendor sites, Computer Emergency Response Teams,
  • Sysadmin, Audit, Network, Security (SANS) Institute, Security Focus) to maintain a current understanding of Computer Network Defense (CND) threat condition and determine which security issues may have an impact on the enterprise.
  • Perform analysis of log files from a variety of sources (eg, individual host logs, network traffic logs, Firewall logs, and intrusion detection system logs) to identify possible threats to network security.
  • Leverages tools including Tanium, FireEye suite, GRR, Volatility, SIFT Workstation, MISP, and/or Bro as part of duties performing cyber incident response analysis.
  • Track and document CND hunts and incidents from initial detection through final resolution.
  • Collect intrusion artifacts (eg, source code, malware, and Trojans) and use discovered data to enable mitigation of potential CND hunts and incidents within the enterprise.
  • Perform forensically sound collection of images and inspect to discern possible mitigation/remediation on enterprise systems.
  • Perform Real Time CND hunt and incident handling (eg forensic collections, intrusion correlation/tracking, threat analysis, and direct system remediation) tasks to support deployable Hunt and Incident Response Teams (IRTs).
  • Write and publish CND guidance and reports (eg engagement reports) on incident findings to appropriate constituencies.

  • Bachelor's degree in a technical discipline with a minimum of 3 years related technical experience.
  • Understanding of how both Windows and Linux systems are compromised.
  • Receive and analyze network alerts from various sources within the enterprise and determine possible causes of such alerts.
  • Utilizes data analytics tools including Splunk to make sense of machine data in performing responsibilities.
  • Correlate incident data to identify specific vulnerabilities and make recommendations that enable expeditious remediation.
  • May be required to travel up to 25% of time.
  • Understanding of cyber forensics concepts including malware, hunt, etc.
  • Active Top-Secret Security Clearance with the ability to obtain a TS/SCI is required. In addition, selected candidate must be able to obtain and maintain a favorably adjudicated DHS background investigation (EOD) for continued employment.
  • Familiar with network analytics including NetFlow/PCAP analysis.
  • Proof of U.S. citizenship or permanent residency is required due to government or federal requirement.
  • U.S. citizens ONLY due to government or federal requirement.
  • Applicants selected for employment will be subject to a federal background investigation and must meet additional eligibility requirements for access to classified information or materials.

Preferred Qualifications:

  • DHS Suitability at the SCI level
  • Experience using Splunk for system data analytics and monitoring strongly preferred.
  • Experience performing cyber forensics, malware analysis, cyber hunt, etc. strongly preferred.
  • A professional certification such as GCFA, GNFA, GREM, or GCIH is highly desirable.

Parsons has been a leader, innovator, and change agent for 75 years. Over this period, our industry has undergone continual change and we have been, and continue to be, proactive in taking advantage of the opportunities presented by change. The pace of adaptation of transformational technologies such as artificial intelligence, cloud computing, robotics, and big data analytics in our markets offers Parsons exciting opportunities to solve complex challenges for our customers in new and different ways.

Ready for action? We're looking for the kind of people who see this opportunity and don't hesitate to act. Parsons is a leader in the world of technical services. We hire people with a broad set of technical skills who have proven experience tackling some of the greatest challenges. Take your next step and apply today.

Parsons Referral Plan

Maybe this opportunity isn't the right fit for you, but you know someone who is? Why not join our Parsons external referral program? When you refer other top professionals and they are hired, you are rewarded with an incredible financial incentive. Help us find top talent!

Mc Lean, Virginia, United States of America
12/7/2018 2:03:24 AM

We strongly recommend that you should never provide your bank account details to an advertiser during the job application process. Should you receive a request of this nature please contact support giving the advertiser's name and job reference.

Other jobs like this

Reston Virginia
115-120k +bonus
Herndon Virginia
$115-123K +Bonus
Herndon Virginia
$115-123K + bonus
Herndon Virginia
110-125K + Bonus
See more