Let’s get started
By clicking ‘Next’, I agree to the Terms of Service
and Privacy Policy, and consent to receive emails from Rise
Jobs / Job page
CSOC Cyber Incident Response Tier II Analyst image - Rise Careers
Job details

CSOC Cyber Incident Response Tier II Analyst

Location: On-site in Hines, IL Martinsburg, WV, or Austin, TX

Required Clearance: Ability to obtain Tier 4 / High Risk Background Investigation

Required Education: Bachelor's degree in computer science, Cybersecurity, Information Technology, or a related field (or equivalent work experience)

Required Experience: 3+ years of experience supporting incident response in an enterprise-level Security Operations Center (SOC)


Description


PingWind is seeking a Cyber Incident Response Tier II Analyst to support our VA customer at Hines, IL Martinsburg, WV, or Austin, TX.


Certifications: Must currently have or be willing to obtain one of the following certifications (or equivalent):


• GIAC Certified Incident Handler

• EC-Council’s Certified Incident Handler (ECIH)

• GIAC Certified Incident Handler (GCIH)

• Incident Handling & Response Professional (IHRP)

• Certified Computer Security Incident Handler (CSIH)

• Certified Incident Handling Engineer (CIHE)

• EC-Council’s Certified Ethical Hacker

 

Responsibilities


• Perform real-time monitoring and triage of security alerts in Cybersecurity toolsets including SIEM, and EDR

• Make accurate determination of what alerts are false positives or require further investigation and prioritization 

• Lead and actively participate in the investigation, analysis, and resolution of cybersecurity incidents. Analyze attack patterns, determine the root cause, and recommend appropriate remediation measures to prevent future occurrences

• Ensure accurate and detailed documentation of incident response activities, including analysis, actions taken, and lessons learned. Collaborate with knowledge management teams to maintain up-to-date incident response playbooks

• Collaborate effectively with cross-functional teams, including forensics, threat intelligence, IT, and network administrators. Clearly communicate technical information and incident-related updates to management and stakeholders

• Identify and action opportunities for tuning alerts to make the incident response team more efficient 

• Monitor the performance of security analytics and automation processes regularly, identifying areas for improvement and taking proactive measures to enhance their efficacy

• Leverage Security Orchestration, Automation, and Response (SOAR) platforms to streamline and automate incident response processes, including enrichment, containment, and remediation actions

• Support the mentoring and training of more junior IR staff

• Stay informed about the latest cybersecurity threats, trends, and best practices. Actively participate in cybersecurity exercises, drills, and simulations to improve incident response capabilities


Requirements


• Work 100% on-site Tuesday through Saturday

• A deep understanding of cybersecurity principles, incident response methodologies, and a proactive mindset to ensure our SOC operates effectively in a high-pressure environment

• Strong experience with security technologies, including SIEM, IDS/IPS, EDR, and network monitoring tools

• Experience with enterprise ticketing systems like ServiceNow

• Excellent analytical and problem-solving skills

• Ability to work independently and in a team environment to identify errors, pinpoint root causes, and devise solutions with minimal oversight

• Ability to learn and function in multiple capacities and learn quickly

• Strong verbal and written communication skills


Preferred Qualifications


• Ability to investigate Indicators of Compromise (IOCs) using Splunk by correlating logs from multiple sources to detect, trace, and assess threat activity across the enterprise

• Experience leveraging Microsoft Defender for Endpoint (MDE) to perform endpoint investigations, analyze process trees, and validate IOCs during active threat scenarios

• Ability to remediate phishing incidents, including analysis of email headers, links, and attachments, identifying impacted users, and executing containment actions such as user lockouts, email quarantine, and domain blacklisting

• Experience performing root cause analysis of malware leveraging PowerShell, using tools such as MDE advanced hunting (KQL) and Splunk to identify infection paths, attacker behavior, and persistence mechanisms


About PingWind

 

PingWind is focused on delivering outstanding services to the federal government. We have extensive experience in the fields of cybersecurity, development, IT infrastructure, supply chain management and other professional services such as system design and continuous improvement. PingWind is an SBA certified Service-Disabled Veteran-Owned Small Business (SDVOSB) with offices in Northern Virginia and Huntsville AL. www.PingWind.com

 

Our benefits include:


• Paid Federal Holidays

• Robust Health & Dental Insurance Options

• 401k with matching

• Paid vacation and sick leave

• Continuing education assistance

• Short Term / Long Term Disability & Life Insurance

• Employee Assistance Program through Sun Life Financial EAP Guidance Resources

 

Veterans are encouraged to apply

 

PingWind, Inc. does not discriminate in employment opportunities, terms, and conditions of employment, or practices on the basis of race, age, gender, religious or political beliefs, national origin or heritage, disability, sexual orientation, or any characteristic protected by law



PingWind Glassdoor Company Review
4.6 Glassdoor star iconGlassdoor star iconGlassdoor star iconGlassdoor star icon Glassdoor star icon
PingWind DE&I Review
No rating Glassdoor star iconGlassdoor star iconGlassdoor star iconGlassdoor star iconGlassdoor star icon
CEO of PingWind
PingWind CEO photo
Unknown name
Approve of CEO

Average salary estimate

$80000 / YEARLY (est.)
min
max
$70000K
$90000K

If an employer mentions a salary or salary range on their job, we display it as an "Employer Estimate". If a job has no salary data, Rise displays an estimate if available.

Similar Jobs
Photo of the Rise User
Posted 7 days ago

Join PingWind as a .NET Developer, where your expertise will contribute to vital projects within the Department of Veterans Affairs.

Photo of the Rise User
Posted 7 days ago

Join PingWind as a Functional Analyst, where you'll provide critical support to the Department of Veterans Affairs.

Photo of the Rise User
Posted 13 days ago
Inclusive & Diverse
Feedback Forward
Collaboration over Competition
Growth & Learning

OpenAI is looking for a Security Engineer specializing in Detection and Response to support the security of cutting-edge AI technologies.

A detail-oriented Systems Administrator with experience in Windows and Linux environments is needed to manage systems and provide top-tier support in Chantilly, VA.

Photo of the Rise User
Optimiza Remote No location specified
Posted 6 days ago

We are on the lookout for a skilled Integration Architect to lead innovative integration solutions for our diverse clients.

Photo of the Rise User
Posted 13 days ago
Inclusive & Diverse
Rise from Within
Mission Driven
Diversity of Opinions
Work/Life Harmony
Take Risks
Collaboration over Competition
Growth & Learning
Transparent & Candid
Customer-Centric
Social Impact Driven
Rapid Growth
Passion for Exploration
Dare to be Different
Reward & Recognition
Friends Outside of Work
Medical Insurance
Dental Insurance
Vision Insurance
Mental Health Resources
Life insurance
Disability Insurance
Health Savings Account (HSA)
Flexible Spending Account (FSA)
Conferences Stipend
Bias Training
Employee Resource Groups
401K Matching
Paternity Leave
Maternity Leave
Some Meals Provided
Social Gatherings

As a Security Engineer on Google's team, you will help safeguard network systems and data against cyber threats while collaborating with cross-functional teams.

Photo of the Rise User

Join Community Health Network as a Desktop Support Technician, where you'll provide key IT support to improve patient care in a community-focused environment.

Photo of the Rise User
Posted 6 days ago

Join Allied Universal as a SOC Security Analyst to enhance physical security and service delivery in various client sectors.

Photo of the Rise User
American Express Remote New York, New York, United States
Posted 5 days ago
Inclusive & Diverse
Empathetic
Collaboration over Competition
Growth & Learning
Transparent & Candid
Medical Insurance
Dental Insurance
Mental Health Resources
Life insurance
Disability Insurance
Child Care stipend
Employee Resource Groups
Learning & Development

Be a part of American Express as an Information Security Analyst, ensuring safe data practices and enhancing organizational productivity.

Photo of the Rise User
Posted 2 days ago

Join Dorman Products as an IT Support Specialist, where you will provide essential support and maintenance to enhance our IT environment.

Photo of the Rise User
Inclusive & Diverse
Rise from Within
Mission Driven
Diversity of Opinions
Work/Life Harmony
Customer-Centric
Fast-Paced
Growth & Learning
Medical Insurance
Dental Insurance
401K Matching
Paid Time-Off
Maternity Leave
Paternity Leave
Mental Health Resources
Flex-Friendly
Photo of the Rise User
Inclusive & Diverse
Rise from Within
Mission Driven
Diversity of Opinions
Work/Life Harmony
Transparent & Candid
Growth & Learning
Fast-Paced
Collaboration over Competition
Take Risks
Friends Outside of Work
Passion for Exploration
Customer-Centric
Reward & Recognition
Feedback Forward
Rapid Growth
Medical Insurance
Paid Time-Off
Maternity Leave
Mental Health Resources
Equity
Paternity Leave
Fully Distributed
Flex-Friendly
Some Meals Provided
Snacks
Social Gatherings
Pet Friendly
Company Retreats
Dental Insurance
Life insurance
Health Savings Account (HSA)
MATCH
Calculating your matching score...
FUNDING
SENIORITY LEVEL REQUIREMENT
TEAM SIZE
No info
EMPLOYMENT TYPE
Full-time, on-site
DATE POSTED
April 23, 2025

Subscribe to Rise newsletter

Risa star 🔮 Hi, I'm Risa! Your AI
Career Copilot
Want to see a list of jobs tailored to
you, just ask me below!
LATEST ACTIVITY
Photo of the Rise User
51 people applied to IT Intern at USAA
Photo of the Rise User
Someone from OH, Euclid just viewed Technical Account Manager at ZeroFOX
Photo of the Rise User
Someone from OH, Euclid just viewed Technical Account Manager (Enterprise) at Rippling
Photo of the Rise User
Someone from OH, Euclid just viewed Software Engineer (Node.js & AWS) at Litify
Photo of the Rise User
Someone from OH, Euclid just viewed Technical Program Manager at DeepSource Technologies
Photo of the Rise User
Someone from OH, Euclid just viewed Solution Engineer, Amazon Connect at NeuraFlash
G
Someone from OH, Dublin just viewed Outside Sales Representative at Go Flooring, LLC.
M
Someone from OH, Cincinnati just viewed Remote Data Entry Operator at MUTW, LLC