Incident Responder, Senior

Job description

Responsibilities We are seeking a highly skilled and innovative Incident Responder to join our team in the greater DMV area, supporting the Army National Guard. Responsibilities: - Lead detection, containment, eradication, and recovery activities for cybersecurity incidents across enterprise and mission systems. - Conduct root‑cause analysis, threat actor attribution, and technical investigations to determine scope, impact, and remediation requirements. - Coordinate cross‑functional response efforts with SOC, CIRT, network, engineering, legal, and leadership stakeholders to execute containment and recovery actions. - Preserve and document evidentiary artifacts, maintain chain‑of‑custody, and ensure forensic integrity for investigations and potential legal/counterintelligence use. - Develop and execute remediation validation plans, confirm eradication, and oversee system recovery and hardening activities. - Produce executive briefings, incident timelines, after‑action reports, and recommended long‑term remediation strategies to inform risk management and defensive improvements. - Drive improvements to incident response playbooks, detection content, and response workflows based on le...