Cyber Security Incident Response Lead | Req#2763

Washington, DC Vienna, Virginia


ActioNet is looking for a Cyber Incident Response Team Lead to serve as investigation lead during investigations while also managing the lifecycle of all SOC investigations from creation to closure supporting misuse and information spillage. This position supports a civilian agency Security Operations Center (SOC).


Make security content (e.g. SIEM, EDR, IDS) recommendations to include new signatures, signature modifications, signature removals, and incorporate IOCs from internal and external sources to improve security posture and mitigate cyber threats. Conduct advanced analysis of data file system artifacts, memory, and advanced Network and Log analysis during incidents to detect, investigate, scope and contain compromises on; Windows, Linux, Mac, and/or Cloud Environments such as; AWS, Azure, and others. Provide requirements, playbooks, and workflows, to support automation of Incident Response tasks. Conduct post-incident recommendations for improving security posture based upon the results of an investigation.

Why ActioNet?         

It is simple. We are passionate about the inspirational missions of our customers and we entrust our employees and teams to deliver exceptional performance to enable the safety, security, health, and well-being of our nation.

Basic Qualifications:

  • Excellent written and oral communications skills
  • Bachelor’s degree in computer engineering, computer science, IT or cybersecurity
  • 8 years additional relevant experience in lieu of degree
  • US Citizen
  • DoD TS with SCI eligibility


Preferred Qualifications:

  • Experience with various security technologies (e.g. IDS/IPS, firewalls, SIEM)


What's in It For You?
As an ActioNeter, you get to be part of exceptional team and a corporate culture that nurtures mutual success for our customers, employees and our communities. We give you the tools to be successful; all you need to do is bring your best ideas, your energy and a desire to develop your skills, experience and career.

Are you ready to make a difference?


ActioNet is an equal opportunity employer and value diversity at our company. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status.