Incident Response Analyst

Job ID
Experience (Years)
Security Clearance

Job Description

NetCentrics is a leading provider of enterprise systems management, solutions engineering, applications development, information assurance, computer network defense and cybersecurity for The Department of Defense, Department of Homeland security and other federal agencies. This position is open only to candidates with an active Top Secret/SCI clearance.


NetCentrics is looking for an experienced Incident Response Analyst to support our team in Washington, D.C. The Incident Response Analyst will be a key team member on this highly visible, critical program that bridges DoD and DHS programs, and will be joining a team of highly respected technical professionals.  The NetCentrics team is not your average team, and we are definitely not your average company.  We do mission critical work, we value our people, and we demonstrate it every day.  Come talk to us and learn more.  We encourage our team members’ professional development, and actively support ongoing education, training and certifications.



Specific Areas of Responsibility:


The Incident Response Analyst works with the incident response team and interacts with a desk watch responsible for providing 24x7x365 operational support. The team is responsible for the monitoring of security devices including IDS, IPS, Firewall and the enterprise SIEM. The team must acknowledge and correspond to DOD and DHS orders. The team processes web filtering requests, suspect malicious cyber incidents, suspected PII and suspect classified reports. The incident responders follow DOD and DHS protocols for incident response a perform actions until the incident is remediated.


The Incident Response Analyst is responsible for working within the Cyber team and providing Incident Response support for the 24x7x365 team.


NetCentrics desires versatile IT experience with a minimum of 4 years of IA experience and a diverse set of skills in a combination of intrusion detection, incident response, malware, and forensics. Ideal candidates are technical with hands-on experience, but have a vision to work with the government personnel to improve the overall security posture and cross-train team members to build a stronger team.




  • Minimum of 4 years of IA experience
  • Must be proficient in EnCase
  • Must be able to analyze security events from IDS, IPS, Firewall and Log Monitoring Systems
  • Comfortable with Windows Server and Workstation OSes, Linux, Mac OS X and Solaris
  • Knowledge of a programming and scripting language (python, Perl, visual basic, PowerShell and/or comfortable with regex expressions)
  • Ability to deploy custom signatures for IDS and IPS systems
  • Ability to analyze network security data
  • Excellent analytical skills required
  • Ability to work independently and with a team
  • Ability to perform behavioral and network malware analysis
  • Ability to produce comprehensive documentation on findings and actions taken in formal and informal incident reports with distribution to proper channels and LE/CI
  • Understanding of attack vectors, staged attacks, etc.
  • Understanding of Incident Response tools, processes, and procedures
  • Familiarity with debugging code using Immunity Debugger or OllyDbg and familiarity with static analysis tools such as IDA Pro is a plus
  • Experience working with intrusion sets
  • Must be DoD 8570.01M IAT III or must receive within 6 months (CISSP, CASP) 
  • CND-IR compliant (CEH Certified) or must receive certifications within first 90 days 
  • Must have active Top Secret/SCI Clearance 
  • As a contingency to employment at NetCentrics, all candidates who are given offers must successfully pass a full background investigation including criminal history, education and employment verifications



**In order to be considered for this position, you must apply directly through our careers site**


NetCentrics is an Equal Opportunity/Affirmative Action Employer.  All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability or protected veteran status.



Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
Share on your newsfeed