Jacobs Lead Incident Responder in Washington, District Of Columbia
Critical Mission Solutions
Your mission is our mission.
We're invested in you and your success. Everything we do - whether Aerospace, Defense, Intelligence, Information Technology, Cybersecurity, Nuclear, Automotive, or Telecommunications - is more than just a project. It's our challenge as human beings, too. That's why we bring a thoughtful and collaborative approach to every one of our partnerships.
It's our promise to challenge the status quo as we redefine how to solve the world's greatest challenges, and transform big ideas into intelligent solutions for a more connected, sustainable world.
Design your career with a company that inspires and empowers you to deliver your best work so you can evolve, grow and succeed –today and into tomorrow.
This position is CONTINGENT upon contract award. Our recruiting team will follow up with you on your application. Our hiring team will not start the interview evaluation process until award.
"Provide senior level knowledge and leadership for the Tier 2/Incident Response Team. Responsible for the following:
Provide Tier 2 level incident response support by using a variety of tools to investigate incidents and taking immediate action or recommending a course of action to safeguard the client. Provide incident triage and response support to court units or AO program office Incident Response Teams. Investigate and document incidents from end to end and identify correlating information to determine incident impact, area of effect, and mitigation requirements for the local court unit and the client overall.
Accurately review, annotate, and resolve security incidents tasked by the Intrusion Detection Team, Watch Officer, SOC management or other SOC teams.
Conduct Incident Triage to prioritize newly identified security incidents for follow-on action.
Provide clear and actionable event notifications to customers.
Coordinate and provide direct support to local incident responders at the circuit, local court unit and program office levels.
Document all communications and actions taken in response to assigned incidents in the SOC ticketing system.
Perform appropriate event escalation for events, notifications, and non-responsiveness from customers.
Continuously review and update the Incident Handlers (IH) Guide and provide recommendations to annual updates for the SOC IR plan.
Typical duties include:
- Incident Responders must be able to perform the tasks and meet the skills, knowledge and abilities as described in NIST Special Publication 800-181 National Initiative for Cybersecurity Education (NICE) Cybersecurity Workforce Framework for the role of Cyber Defense Incident Responder (Work Role ID: PR-CIR-001).
Here’s What You’ll Need:
- Bachelor’s or comparative experience
- Must have at least one (1) certification in the field of information security from a respectable security organization. Desirable certifications include, but not limited to: GCIH, GCIA, GCFE, GREM, GCFA, GSEC, Security +, CEH, CISSP, CCNA (Security) or equivalent Certification
- 5+ years of information security operations center or incident response experience
Work will be performed inside a large facility. An inside environment may be a cubicle (considerations: close quarters, low to moderate noise, bright or dim lighting).
Work assignments vary based on client requirements.
Work may include travel with the military to participate in exercises in austere conditions
Outside work may include various environmental conditions including hot, dusty, cold, icy and windy climates.
Sitting at desk. Phone use and PC or laptop. Filing required. May require lifting and carrying boxes of supplies or files up to 25 lbs. Extended periods of sitting while on PC/laptop or phone.
Equipment and Machines
General office equipment, which includes: telephone, fax machine, copier, PC/laptop, and other miscellaneous office equipment.
May require operating motor vehicles.
Regular attendance in accordance with established work schedule is mandatory.
It is important to be able to work any shift/designated hours required.
You may be asked to continue performance in support of a war, contingency, or exercise
You may be asked to continue performance during inclement weather or other conditions when others are not permitted to work
Position may require night and weekend work and could include travel with the military to participate in operations/exercises located in areas with field conditions
Jacobs is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, religion, creed, color, national origin, ancestry, sex (including pregnancy, childbirth, breastfeeding, or medical conditions related to pregnancy, childbirth, or breastfeeding), age, medical condition, marital or domestic partner status, sexual orientation, gender, gender identity, gender expression and transgender status, mental disability or physical disability, genetic information, military or veteran status, citizenship, low-income status or any other status or characteristic protected by applicable law. Learn more about your rights under Federal EEO laws (https://www.dol.gov/ofccp/regs/compliance/posters/pdf/eeopost.pdf) and supplemental language. (https://www.eeoc.gov/sites/default/files/migrated_files/employers/eeoc_gina_supplement.pdf)
At Jacobs, we’re challenging today to reinvent tomorrow by solving the world’s most critical problems for thriving cities, resilient environments, mission-critical outcomes, operational advancement, scientific discovery and cutting-edge manufacturing, turning abstract ideas into realities that transform the world for good. With $13 billion in revenue and a talent force of more than 55,000, Jacobs provides a full spectrum of professional services including consulting, technical, scientific and project delivery for the government and private sector.