Security Incident Responder Lead

2 days ago Be among the first 25 applicants

Job ID: 2506961

Location: REMOTE WORK, TX, US

Date Posted: 2025-06-26

Category: Cyber

Subcategory: Cybersecurity Ops

Schedule: Full-time

Shift: Day Job

Travel: Yes, 10 % of the Time

Minimum Clearance Required: None

Clearance Level Must Be Able to Obtain: None

Potential for Remote Work: Yes

Description

Science Applications International Corporation (SAIC) is seeking a Security Incident Responder Lead to join our team supporting a major state & local government customer. This position reports to the Security Director.

Essential duties of this position include:

• Hybrid role as Security Incident Responder and SOC Tier 3.
• Performs Cybersecurity Defense & Analysis, Incident Response, Threat Analysis, Exploitation Analysis, and Cyber Investigations from the
• National Initiative for Cybersecurity Education (NICE) Framework.
• Work is typically performed in a Security Operations Center (SOC), Network Operations & Security Center (NOSC), Joint Operations Center (JOC), or similar environments.
• Duties are primarily categorized as Incident Investigation and Response, Security Operations, Incident Management, or similar roles.
• Engages in Identity and Access Management operations and utilizes Cyber tools to perform cyber work.
• Utilizes COTS/GOTS applications, ticketing systems, lab systems, forensic applications, and/or custom tools, techniques, and procedures (TTPs) to monitor systems for abnormal events and determine if events are to be deemed an incident.
• Determines if incidents are due to malicious or nefarious actions by one or more threat actors.
• Utilizes threat intelligence to determine if the incident is part of a named campaign to determine appropriate levels of response, or provide new
• intelligence based on investigative actions to threat intelligence teams, organizations, and/or external parties.
• Obtains information and evidence for legal proceedings or to provide to government counterparts for possible military, law enforcement, and/or
• counter-intelligence response actions/activities, Human Resources investigations, and/or management action.
• Works with system owners to restore affected systems to secure baseline configurations.
• Maintains chain of custody on items of evidentiary value.
• Coordinates with contracted vendors for incident control.
• Collaborates with legal, HR, and other non-technical personnel to recommend formal proceedings against personnel.
• Researches, evaluates, and recommends new security tools, techniques, and technologies.
• Supports cyber metrics development, maintenance, and reporting.
• Provides briefings to senior staff.
  
  

Qualifications

Required Education and Qualifications:

• BS Degree and five (5) years or more experience; Masters and three (3) years or more experience; PhD and 0 years related experience
• Complete understanding and wide application of technical principles, theories, and concepts in the cybersecurity field.
• Ability to receive assignments in the form of objectives and establish goals to meet outlined objectives.
• General knowledge of related disciplines.
• Candidates must be able to pass a CJIS Criminal Justice background investigation and maintain CJIS clearance throughout employment term. Citizenship Required
  
  

Required Experience:

• Providing technical solutions to a wide range of difficult problems requiring the analysis of identifiable factors.
• Independent determination and development of approaches to solutions with work reviewed upon completion for adequacy in meeting objectives.
• Demonstrating good judgment in selecting methods and techniques for obtaining solutions.
• Contributing to the completion of specific programs and projects within the government contracting space.
• Security+ or higher certifications
  
  

Preferred Experience:

• ITIL v4 certification preferred (Foundation or above)
• CEH, GCIH, BTL2, CASP, or GSP
• Providing technical solutions to a wide range of difficult problems requiring the analysis of identifiable factors.
• Independent determination and development of approaches to solutions with work reviewed upon completion for adequacy in meeting objectives.
• Demonstrating good judgment in selecting methods and techniques for obtaining solutions.
• Contributing to the completion of specific programs and projects.
  
  

Target salary range: $80,001 - $120,000. The estimate displayed represents the typical salary range for this position based on experience and other factors.

• Seniority level
  Mid-Senior level

• Employment type
  Full-time

• Job function
  Other, Information Technology, and Management
• Industries
  Defense and Space Manufacturing

Referrals increase your chances of interviewing at SAIC by 2x

Get notified about new Security Lead jobs in El Paso, TX.

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.