Maximus is seeking a Cyber Incident Response Tier II Analyst to join their team at our client's Cyber Security Operations Center. This role can be performed on-site at the CSOC in either Martinsburg, West Virginia or Austin, Texas.

What you will do:

• Perform real-time monitoring and triage of security alerts in Cybersecurity toolsets including SIEM, and EDR
• Make accurate determination of what alerts are false positives or require further investigation and prioritization
• Lead and actively participate in the investigation, analysis, and resolution of cybersecurity incidents. Analyze attack patterns, determine the root cause, and recommend appropriate remediation measures to prevent future occurrences
• Ensure accurate and detailed documentation of incident response activities, including analysis, actions taken, and lessons learned. Collaborate with knowledge management teams to maintain up-to-date incident response playbooks
• Collaborate effectively with cross-functional teams, including forensics, threat intelligence, IT, and network administrators. Clearly communicate technical information and incident-related updates to management and stakeholders
• Identify and action opportunities for tuning alerts to make the incident response team more efficient
• Monitor the performance of security analytics and automation processes regularly, identifying areas for improvement and taking proactive measures to enhance their efficacy
• Leverage Security Orchestration, Automation, and Response (SOAR) platforms to streamline and automate incident response processes, including enrichment, containment, and remediation actions
• Support the mentoring and training of more junior IR staff
• Stay informed about the latest cybersecurity threats, trends, and best practices. Actively participate in cybersecurity exercises, drills, and simulations to improve incident response capabilities

Maximus TCS (Technology and Consulting Services) Internal Job Profile Code: TCS056, T2, Band 5

• Due to program requirements, individuals must be US Citizens, authorized to work in the United States without Sponsorship, and eligible to obtain and maintain a public trust security clearance
• Bachelor's degree in Computer Science, Cybersecurity, Information Technology, or a related field (or equivalent work experience)
• Ability to commute daily to the site in either Martinsburg, West Virginia or Austin, Texas
• Ability to work 2nd shift hours: either Sunday-Thursday from 2:30-11:00pm or Tuesday-Saturday from 2:30-11:00pm
• 3+ years of experience supporting incident response in an enterprise-level Security Operations Center (SOC)
• A deep understanding of cybersecurity principles, incident response methodologies, and a proactive mindset to ensure our SOC operates effectively in a high-pressure environment
• Strong experience with security technologies, including SIEM, IDS/IPS, EDR, and network monitoring tools
• Experience with enterprise ticketing systems like ServiceNow
• Experience providing Tier II support within a cloud environment (AWS preferred)
• Excellent analytical and problem-solving skills
• Ability to work independently and in a team environment to identify errors, pinpoint root causes, and devise solutions with minimal oversight.
• Ability to learn and function in multiple capacities and learn quickly.
• Strong verbal and written communication skills

Minimum Requirements

TCS056, T2, Band 5

Must currently have or be willing to obtain one of the following certifications (or equivalent):

• GIAC Certified Incident Handler
• EC-Council's Certified Incident Handler (E|CIH)
• GIAC Certified Incident Handler (GCIH)
• Incident Handling & Response Professional (IHRP)
• Certified Computer Security Incident Handler (CSIH)
• Certified Incident Handling Engineer (CIHE)
• EC-Council's Certified Ethical Hacker

EEO Statement

Active military service members, their spouses, and veteran candidates often embody the core competencies Maximus deems essential, and bring a resiliency and dependability that greatly enhances our workforce. We recognize your unique skills and experiences, and want to provide you with a career path that allows you to continue making a difference for our country. We're proud of our connections to organizations dedicated to serving veterans and their families. If you are transitioning from military to civilian life, have prior service, are a retired veteran or a member of the National Guard or Reserves, or a spouse of an active military service member, we have challenging and rewarding career opportunities available for you. A committed and diverse workforce is our most important resource. Maximus is an Affirmative Action/Equal Opportunity Employer. Maximus provides equal employment opportunities to all qualified applicants without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, protected veteran status or disabled status.

Pay Transparency

Maximus compensation is based on various factors including but not limited to job location, a candidate's education, training, experience, expected quality and quantity of work, required travel (if any), external market and internal value analysis including seniority and merit systems, as well as internal pay alignment. Annual salary is just one component of Maximus's total compensation package. Other rewards may include short- and long-term incentives as well as program-specific awards. Additionally, Maximus provides a variety of benefits to employees, including health insurance coverage, life and disability insurance, a retirement savings plan, paid holidays and paid time off. Compensation ranges may differ based on contract value but will be commensurate with job duties and relevant work experience. An applicant's salary history will not be used in determining compensation. Maximus will comply with regulatory minimum wage rates and exempt salary thresholds in all instances.