onsite
Cybersecurity Incident Response Analyst - MANTECH
Security Engineer
Dynamic analyst role focused on 24/7 incident detection, monitoring, and investigation using SIEM tools, threat hunting, and digital forensics. Requires strong Python scripting and network security expertise to respond to high‑profile cyber threats.
About the role
Key Responsibilities
- Monitor and analyze security alerts across enterprise SIEM platforms to detect potential incidents.
- Conduct rapid incident triage, investigation, and containment, documenting findings and actions.
- Perform threat hunting and forensic analysis to uncover advanced threats and root causes.
- Collaborate with cross‑functional teams to remediate vulnerabilities and improve security controls.
- Develop and maintain automated scripts (Python) for log parsing, alert enrichment, and response playbooks.
Requirements
- 3+ years of experience in cybersecurity incident response or related field.
- Proficiency with SIEM solutions (e.g., Splunk, QRadar) and threat intelligence platforms.
- Hands‑on experience in digital forensics, malware analysis, and network traffic analysis.
- Strong scripting skills in Python and familiarity with Linux/Windows environments.
- Excellent communication skills and ability to work in a 4‑day, 10‑hour shift schedule.