Previous Job
Incident Response Engineer
Ref No.: 18-00010
Location: Greenbelt, Maryland
Position Type:Right to Hire
Openings: 1
Duration: 1 year+
Location: Rockville Town Center (onsite, no remote work). Please only send local candidates
Bill Rate: Target is $95/hr. May have some wiggle room
Conversion Salary: Target range is $120-125k w/ Array's benefits
Work Status: GC or US Citizen
Comm skills (written and verbal) are very important
Incident Report Engineer
Job Function and Job Responsibilities:
  • Will be a direct report to the County's Enterprise Information Security Officer, and also receive direction from the Enterprise Information Security Office Security Architect.
  • Will work side by side with County staff to facilitate knowledge transfer
  • Will be responsible to participate in 24/7 on call operation that monitors for and responds to security events on Montgomery County's networks, including working with external entities, where necessary
  • Will respond to information security incidents, including internal and external events and targeted threats
  • Will develop internal tools used to respond to incidents (e.g. forensic toolkits) or recommend the purchase of specific tools to support Montgomery County's unique environment
  • Able to identify and execute ion projects that improve our intrusion detection and incident response capabilities
  • Will prepare recommendations including language where appropriate, for updates to or creation of incident response procedures 
  • Preparation of weekly status report, including work completed, worked planned for following week, risks and items of escalation.
  • Should have demonstrated experience in incident response, security procedures, how to handle incidents, etc
  • Need to have experience in not just using the following tools but understand how it can be implemented to help the County with new threats (Splunk, Snort IDS, AlienVault SIEM, Kali Linux)
  • Need a minimum of 5 years of experience performing analysis of log files, network traffic logs, firewall logs, intrusion detection logs
  • Must have at least 5 years of experience performing client/customer interviews and documentation of security incidents 
  • Must have good written and verbal communication skills to deliver reports to stakeholders
  • Should have strong networking skills
  • Prefer candidates with some sort of certifications like A+, Network + or higher
  • Must have a High School Diploma
  • Must be able to pass Federal and State background investigation