Offer summary

Qualifications:

Master's Degree in Cybersecurity, Computer Science, or related field., At least 10 years of experience in incident response or cybersecurity operations., Strong understanding of federal cybersecurity frameworks like NIST and FISMA., Proven ability to handle complex security incidents in high-stakes environments..

Key responsibilities:

Lead investigation and resolution of cybersecurity incidents.

Develop and implement incident response plans and procedures.

Conduct forensic analysis of compromised systems and networks.

Coordinate with internal teams, external agencies, and law enforcement during incidents.

Job description

Senior Incident Response Analyst

Location: Remote (with 1 day per week onsite at Alexandria, VA location)
Employment Type: FullTime Contract Position

Job Summary
We are seeking a highly experienced Senior Incident Response Analyst to support the National Credit Union Administration (NCUA) in safeguarding the integrity and security of the nations credit union system. This role involves leading incident response efforts for cybersecurity threats, data breaches, and other security incidents affecting NCUAregulated entities. The ideal candidate will possess deep expertise in threat detection, mitigation, and recovery, with a focus on financial sector regulations and compliance. This position requires collaboration with NCUA teams, external stakeholders, and law enforcement to ensure rapid and effective resolution of incidents while minimizing risks to credit unions and their members.

Key Responsibilities

Lead the investigation, analysis, and resolution of cybersecurity incidents, including malware infections, ransomware attacks, phishing campaigns, and unauthorized access events.

Develop and execute incident response plans, including containment, eradication, recovery, and postincident reviews to prevent recurrence.

Conduct forensic analysis of compromised systems, networks, and data using advanced tools and methodologies.

Coordinate with NCUAs internal security operations center (SOC), credit union representatives, and federal agencies (e.g., FBI, Client) during highpriority incidents.

Prepare detailed incident reports, including root cause analysis, impact assessments, and recommendations for remediation, in compliance with NCUA guidelines and federal standards (e.g., NIST SP 80061).

Monitor threat intelligence feeds and emerging vulnerabilities relevant to the financial services sector, providing proactive recommendations to enhance NCUAs defensive posture.

Train and mentor junior staff and NCUA personnel on incident response best practices and tools.

Participate in tabletop exercises, simulations, and audits to test and improve incident response capabilities.

Ensure all activities adhere to regulatory requirements, including those under the Federal Information Security Modernization Act (FISMA) and NCUAspecific policies.

Required Qualifications

Education: Masters Degree in Cybersecurity, Computer Science, Information Technology, or a closely related field.

Experience: Minimum of 10 years of professional experience in incident response, digital forensics, or cybersecurity operations, preferably within the financial services or government sectors.

Proven track record of handling complex security incidents in highstakes environments.

U.S. Citizenship and ability to obtain and maintain a Public Trust or Secret security clearance.

Strong understanding of federal cybersecurity frameworks, including NIST, FISMA, and relevant financial regulations (e.g., GrammLeachBliley Act).

Preferred Qualifications

Certifications such as Certified Incident Handler (GCIH), Certified Information Systems Security Professional (CISSP), Certified Forensic Computer Examiner (CFCE), or equivalent.

Experience supporting federal agencies or financial regulators, with knowledge of credit union operations.

Familiarity with tools like Splunk, EnCase, Wireshark, Volatility, or similar for incident investigation.

Advanced knowledge of cloud security (e.g., AWS, Azure) and endpoint detectionresponse (EDR) solutions.

Required Skills

Expertise in incident response lifecycle management and forensic techniques.

Proficiency in scripting languages (e.g., Python, PowerShell) for automation of response tasks.

Excellent analytical, problemsolving, and communication skills, with the ability to convey technical details to nontechnical stakeholders.

Ability to work under pressure in a fastpaced, 247 oncall environment.

Strong ethical standards and commitment to confidentiality.

This position offers an opportunity to contribute to the stability of the U.S. financial system by protecting credit unions from evolving cyber threats. Qualified candidates are encouraged to apply with a resume highlighting relevant experience and education. Equal Opportunity Employer.

#cjjobs
Marathon TS is committed to the development of a creative, diverse and inclusive work environment. In order to provide equal employment and advancement opportunities to all individuals, employment decisions at Marathon TS will be based on merit, qualifications, and abilities. Marathon TS does not discriminate against any person because of race, color, creed, religion, sex, national origin, disability, age or any other characteristic protected by law (referred to as protected status).