Cyber Defense Incident Responder (Sr.)

Quadrant, Inc.
United States, D.C., Washington
Sep 11, 2025
Senior Cyber Defense Incident Responder Washington, DC Pay From: $155,000 per year MUST: Experienced Senior Cyber Defense Incident Responder Must have active TS/sci clearance 8+ years of cyber experience Extensive understanding of cyber-attack stages (e.g., reconnaissance, scanning, enumeration, gaining access, escalation of privileges, maintaining access, network exploitation, covering tracks) Ability to apply techniques for detecting host and network-based intrusions using intrusion detection technologies Knowledge of cyber attackers (e.g., script kiddies, insider threat, non-nation state sponsored, and nation sponsored) Strong understanding of system administration, network, and operating system hardening technique Knowledge of incident categories, incident responses, and timelines for responses Experience running damage assessments is a plus Ability to work well with senior leadership Active CEH, CSIH, GCIH, GISF, GIAC or CISSP Bachelor's Degree is required DUTIES: Collects intrusion artifacts (e.g., source code, malware, trojans) and uses discovered data to enable mitigation of potential cyber defense incidents within the enterprise. Performs analysis of log files from a variety of sources to identify possible threats to network security. Assists in Incident Response processes and in the enhancement of behavioral analytics, including the development of Concept of Operations and Standards Operating Procedures. Performs cyber defense incident triage, to include determining scope, urgency and potential impact, identifies the specific vulnerability, and makes recommendations that enable expeditious remediation. Develops and maintains models for cyber threat mitigation and improves threat modeling. Performs cyber defense trend analysis and reporting. Develops and maintains models for cyber threat mitigation and improves on threat modeling. Use behavior analytics (UBA) and ensures all infrastructure components meet proper performance standards. Coordinates and provide expert technical support to enterprise-wide cyber defense technicians to resolve cyber defense incidents. Monitors external data sources (e.g., cyber defense vendor sites, Computer Emergency Response Teams, Security Focus) to maintain currency of cyber defense threat conditions and determine which security issues may have an impact on the enterprise. Performs cyber defense trend analysis and reporting. Coordinates incident response functions. Performs initial, forensically sound collection of images and inspect to discern possible mitigation/remediation on enterprise systems. Quadrant is an affirmative action/equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, status as a protected veteran, or status as an individual with a disability. "Healthcare benefits are offered to all eligible employees according to compliance mandated by the Affordable Care Act".