×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity

Cyber Incident Response Team; CIRT Lead

Job in Ashburn, Loudoun County, Virginia, 22011, USA
Listing for: SOSi
Full Time position
Listed on 2026-02-28
Job specializations:
  • IT/Tech
    Cybersecurity
Salary/Wage Range or Industry Benchmark: 60000 - 80000 USD Yearly USD 60000.00 80000.00 YEAR
Job Description & How to Apply Below
Position: Cyber Incident Response Team (CIRT) Lead

Company Description

Founded in 1989, SOSi is among the largest private, founder-owned technology and services integrators in the defense and government services industry. We deliver tailored solutions, tested leadership, and trusted results to enable national security missions worldwide.

This position is contingent upon contract award

Job Description

SOSi is seeking highly qualified senior professionals to support a DHS enterprise cybersecurity program providing 24/7 Security Operations Center (SOC) services. These roles deliver leadership, operational oversight, and technical expertise across cyber defense, incident response, intelligence, engineering, and modernization activities.

Leads the end-to-end incident response function for the DHS enterprise SOC, coordinating triage, containment, eradication, and recovery; drives tool efficacy (SIEM/EDR/IDS/IPS), case management, and communications with stakeholders.

Responsibilities
  • Lead incident detection, analysis, escalation, and coordinated response across SOC towers.
  • Standardize IR runbooks, playbooks, and communications; ensure evidence handling and documentation.
  • Measure and improve MTTA/MTTR; track lessons learned and corrective actions.
  • Ensure IR alignment to DHS/CBP policy and reporting requirements.
Qualifications
  • Education
    :
    Bachelor’s of Science in computer engineering, computer science, IT or cyber security (or eight (8) years of relevant work experience in lieu of a degree).
  • Experience
    : 5+ years of progressively responsible experience in cyber security, information security, security engineering, network engineering with emphasis in cyber security issues and operations, computer incident response, systems architecture, or data management.
  • Certifications (Required): CISSP and have one or more of the following certifications: SANS GIAC Certified Intrusion Analyst (GCIA), SANS GIAC Certified Incident Handler (GCIH); SANS GIAC Certified Forensic Analyst (GCFA); SANS GIAC Certified Enterprise Defender (GCED) or other Information Assurance Technician (IAT) Level III certification in accordance with DoD 8140.
  • Technical Proficiency
    : SIEM, EDR, IPS/IDS, and case management platforms.
  • Clearance
    : TS, SCI-eligible.
Work Environment
  • Normal office conditions with potential to perform duties in various CONUS locations.
  • Core hours of operation are Monday through Friday, 0600 – 1700.
  • May be requested to work evenings and weekends to meet program and contract needs.
Working at SOSi

All interested individuals will receive consideration and will not be discriminated against for any reason.

#J-18808-Ljbffr
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)

Job Posting Language
Employment Category
Education (minimum level)
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search