Incident Responder

Job description

cFocus Software seeks a n Incident Responder to support the Administrative Offices of the United States Courts (AOUSC) in Washington, DC. This position will require 4 days a week onsite at the Thurgood Marshall Building and 1 day remote with hours of 8am- 4:30pm. Position Overview The Incident Responder supports the Administrative Office of the U.S. Courts (AOUSC) by delivering advanced cybersecurity incident response and threat hunting services across both cloud and on-premises environments. This role focuses on identifying, analyzing, and mitigating sophisticated cyber threats while strengthening detection capabilities and improving overall security posture. Key Responsibilities: Provide incident response support for declared security incidents and proactively hunt for threats not detected through automated systems Conduct counterintelligence activities, develop Threat Actor (TA) dossiers, and identify adversary tactics, techniques, and procedures (TTPs) Analyze SIEM alerts and security events to determine risk, impact, and appropriate response actions Collect and analyze forensic data from compromised systems using EDR tools and custom scripts Track and document incidents from i...