More jobs:
CIRT Tier 1 Analyst
Job in
Gaithersburg, Montgomery County, Maryland, 20883, USA
Listed on 2026-06-28
Listing for:
Peraton
Full Time
position Listed on 2026-06-28
Job specializations:
-
IT/Tech
Cybersecurity
Job Description & How to Apply Below
Required qualifications
- Bachelor's degree and at least 2 years of experience or a High School diploma and 6 years of experience.
- Must possess or be able to obtain at least one of the following certifications before start date. Continued certification required as a condition of employment:
- CCNA-SecurityCNDCySA+ GICSPGSECSecurity+ CESSCP
- U.S. Citizenship required.
- Active Secret security clearance required in order to start.
- Knowledge of ticketing systems (i.e. Service Now, Remedy)
- Knowledge of computer networking protocols and principles
- Knowledge of cybersecurity principles, practices, threats, and vulnerabilities
- Knowledge of incident response principles and practices
- Skill in critical thinking by evaluating information and making independent decisions
- Demonstrated ability to work autonomously while taking initiative on assigned responsibilities
- Ability to follow established procedures and written guidance with precision and attention to detail
- Skill in taking ownership of problems and seeing them through to completion
- Experience with Splunk for security monitoring and alert triage
- Knowledge of Microsoft Defender for Endpoint for security monitoring and response
- Experience with Service Now for ticketing and workflow management
- Knowledge of cloud security monitoring fundamentals
- Experience with email security and phishing analysis
- Knowledge of the MITRE ATT&CK framework
- Familiarity with Power Shell and basic scripting concepts
Peraton is seeking an experienced CIRT Tier 1 Analyst to join Peratons' Federal Strategic Cyber Mission program.
Location:
Beltsville, MD and Rosslyn, VA
Work Hours:
0600 – 1400 EST, SUN-THU
In this role, you will:
- Detect, classify, process, track, and report on cyber security events and incidents
- Perform triage of incoming alerts and requests in a 24x7x365 environment
- Monitor and triage the CIRT hotline, email inboxes, and fax
- Create tickets and initiate workflows as instructed in SOPs
- Triage Splunk Enterprise Security (ES) Alerts and Microsoft Defender for Endpoint (MDE) Alerts
- Identify and triage benign, spam, exercise, and malicious phishing email
- Perform binary artifact triage to understand malware behavior
- Coordinate and collaborate with Department teams as needed to analyze and respond to events and incidents
- Report incident information to the Cybersecurity and Infrastructure Security Agency (CISA)
- Collaborate with other local, national and international CIRTs as directed
- Deliver and oversee remediation activities
- Conduct shift change briefs
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
Search for further Jobs Here:
×