Incident Response Analyst Tier 2 (Hybrid)

Gray Tier technologies is seeking an experienced Incident Response Analyst to support this highly visible cyber security operations center (SOC) for Customs Border Protection (CBP), cyber analysis, application development, and a 24x7x365 support staff.

Primary Responsibilities: 

• Shift schedule: 7am-7pm, Thurs-Sat, every other Wednesday. 
• The ideal candidate will have a basic understanding of cyber threats, information security, and monitoring and detection. The candidate must be familiar with TCP/IP ports and protocols, intrusion detection systems, and netflow analysis.
•  - Security+ Certification or equivalent in industry certification, background and knowledge. 
•  - Knowledge of TCP/UDP/IP networking, familiarity with packet analysis tools such as WireShark, and a general understanding of networking protocols similar to COMPTIA Network+ 

Basic Qualifications:. 

Prior relevant experience should be in the areas of incident detection and response, malware analysis, or computer forensics. Additional certs may be considered in place of a degree.

Clearance: A Secret Clearance is required with the ability to obtain a Top Secret SCI. In addition to specific security clearance requirements all CBP SOC employees are required to successfully complete a CBP Background Investigation to support this program 

Preferred Qualifications:

• Experience in Federal Government, DOD or Law Enforcement in CND, IR or SOC role 
• Cyber Kill Chain Knowledge 
• Ability to script in one more of the following computer languages Python, Bash, Visual Basic or Powershell 

• One of the following certs: CCNA, CCNP, CCSP, CEH, CNDA, DCITA, ECES, ECSA, ECSP, ECSS, ENSA, GCIA, GCIH, GISF, GNFA, GPPA, GWEB, LPT, OSCP, OSEE, SEI, CCISO