Back to Jobs

Cybersecurity Incident Response Engineer- Secret

Remote, USA Full-time Posted 2026-06-13

We are hiring for Jr, Mid, and SR levels for this role! This role requires an active Secret Clearance or within 24 months. Falsely claiming a DoD clearance can lead to serious legal consequences, including criminal charges under 18 U.S. Code § 1001, which may result in fines and imprisonment of up to five years. Clearance: Active Secret Clearance required Travel: Up to 10% We are seeking Cybersecurity Incident Response Engineer to support a mission-critical federal environment. This role is responsible for monitoring enterprise security tools, identifying potential threats, and supporting incident response efforts. The ideal candidate will have foundational cybersecurity knowledge, strong analytical skills, and the ability to operate in a fast-paced Security Operations Center (SOC).

Key Responsibilities

  • Monitor SIEM and security tools to detect, analyze, and correlate potential cybersecurity threats
  • Perform alert triage, including validating alerts, assessing severity, and escalating as needed
  • Differentiate false positives from legitimate security incidents
  • Support incident response activities, including evidence collection and containment efforts
  • Document investigations thoroughly for audit and reporting purposes
  • Follow SOC playbooks, procedures, and escalation protocols
  • Assist in tuning detection rules and improving alert accuracy
  • Collaborate with IT, operations, and risk teams to align with security policies and mission needs
  • Maintain awareness of security technologies such as firewalls, IDS/IPS, endpoint protection, and vulnerability scanners

Required Qualifications

  • Bachelor’s degree in Cybersecurity, IT, Computer Science, or related field (or equivalent experience)
  • 1–10 years of experience in cybersecurity, IT operations, or related field
  • Basic understanding of cybersecurity principles and threat detection
  • Experience or familiarity with SIEM and other security tools
  • Active Secret Clearance (required)
  • Strong problem-solving, communication, and analytical skills

Preferred Qualifications

  • Experience in a SOC or 24/7 monitoring environment
  • Relevant Certification (Security+, CySA+, etc.)
  • Familiarity with incident response playbooks and procedures
  • Exposure to federal cybersecurity frameworks or compliance standards

Apply To This Job

Apply Now

Similar Jobs

Future Opportunity, Customer Account Executive (Enterprise)

Remote, USA Full-time

Associate Technical Support Engineer - Red Hat Advanced Cluster Management for Kubernetes

Remote, USA Full-time

Windows System Admin

Remote, USA Full-time

Need submission details for Network Administrator, Remote

Remote, USA Full-time

Rust Engineering Lead - Linux and Open Source

Remote, USA Full-time

Security Engineer, Product Security

Remote, USA Full-time

Security Engineer III

Remote, USA Full-time

Associate Principal OT Penetration Tester

Remote, USA Full-time

Staff Product Manager – Shared Services

Remote, USA Full-time

Business Analyst (Supply Chain) – UK Remote / Any Location

Remote, USA Full-time

Intern, Government Relations

Remote, USA Full-time

Senior Data Entry Specialist - Remote Financial Records Management | arenaflex

Remote, USA Full-time

Financial Advisor & Planner – Investment Services

Remote, USA Full-time

Experienced Live Chat Representative – Ecommerce Loyalty Program Support

Remote, USA Full-time

[Remote] Certified Test Consultant

Remote, USA Full-time

Experienced Part-Time Weekend Customer Support Representative (Overnight Shift) – Delivering Exceptional Internet Services and Unparalleled Customer Experiences

Remote, USA Full-time

Quantitative Developer (Fintech)

Remote, USA Full-time

Field Clinical Advisor - Cell Therapy - 1 FTE – Pacific Northwest (WA/OR/Northern CA/West Canada)

Remote, USA Full-time

Graduate Trainee – Medical Affairs

Remote, USA Full-time

Patient Support Case Manager

Remote, USA Full-time