Incident Response Analyst at DHL Holdings Corp in Charleston, South Carolina

Job Description:

About Us:

DLH delivers improved health and national security readiness solutions for federal programs through science research and development, systems engineering and integration, and digital transformation. Our experts in public health, performance evaluation, and health operations solve the complex problems faced by civilian and military customers alike by leveraging advanced tools including digital transformation, artificial intelligence, data analytics, cloud enablement, modeling, and simulation, and more. With over 3,200 employees dedicated to the idea that Your Mission is Our Passion, DLH brings a unique combination of government sector experience, proven methodology, and unwavering commitment to innovation to improve the lives of millions.

Overview:

As a CND Incident Response Analyst you will identify, isolate, investigate, inform, and implement measures to detect and protect data across a wide spectrum of sources and locations. You will validate suspicious events or reports and determine if the event constitutes an incident. You will ensure incidents are properly entered into the appropriate reporting system and determine the severity of the incident.

Responsibilities:

Maintains familiarity with CJCSM 6510.01B.

• Compiles and maintains internal standard operating procedure (SOP) documentation.
• Ensures associated documentation and capabilities remain compliant with CJCSM 6510.01B and other applicable policy directives.
• Provides network intrusion detection and monitoring, correlation analysis, incident response and support for the Cybersecurity Service Provider (CSSP) and its subscriber sites.
• Validates suspicious events or reports and determine if the event constitutes an incident and properly enter associated data into the appropriate reporting systems.
• Coordinates with JFHQ-DoDIN and supported entities regarding significant incidents to ensure proper analysis is performed and timely and accurate reporting of the incident is completed.
• Provides 24x7 support for the CSSPs Incident Response capability during non-core business hours consistent with CSSP requirements as needed.
• Performs network and host-based digital forensics on Microsoft Windows based systems and other operating systems as necessary to enhance response to, support of, and investigation into significant network incidents.
• Possesses working knowledge of full packet capture PCAP analysis and accompanying tools (Wireshark, etc.).
• Explores patterns in network and system activity via log correlation using Splunk and supplemental tools.
• Possesses understanding of IDS/IPS solutions to include signature development and implementation.
• Participates in program reviews, product evaluations, and onsite certification evaluations.
• Overtime may be required as needed to support incident response actions (Surge)
• Due to the nature of the work required, operations are conducted 24/7/365 with three primary shifts. Choice of shifts will be made available with the understanding that placement is at the discretion of the CSSP Services Director and/or assigned manager.

Qualifications:

• 4+ years' experience in Cybersecurity Service Provider (CSSP) environment or similar
• DoD or DoN Cybersecurity Workforce (CSWF) Certification or compliance (DoDD 8140 or SECNAV M-5239)
• Minimum Secret Clearance required with upgrade to TS-SCI

Required Skills:

• Knowledge of Incident Response Procedures
• Knowledge of Packet Analysis
• Knowledge of IDS/IPS solutions
• Familiarity with various Host-Based Tools
• Experience with Log Aggregation Tools
• Logical thinking and analytical ability
• Verbal and written communication ability
• Highly Desired Skills
• Knowledge of CJCSM 6510.01B
• Experience with Digital Forensics
• The ability to solve problems independently.

Benefits: DLH Corp offers our employees an excellent benefits package including - Personal Time Off (PTO), medical, dental, vision, supplemental life with AD&D, short and long-term disability, flexible spending accounts, parental leave, legal services and more. We want our employees to save for their future, therefore we offer a 401(k) Retirement Plan, which includes a matching component. DLH is dedicated to your career development, providing training to help drive success, with access to our best-in-class e-Learning suite for formal and informal learning, professional and technical certification preparation, and education assistance at accredited institutions.

EEO

Women, minorities, individuals with disabilities and Veterans are encouraged to apply. DLH Corporation is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, gender identity, national origin, age, protected veteran status, or disability status.

DLH will provide a reasonable accommodation to individuals with disabilities and disable Veterans who need assistance to apply.

PI239580971