PenFed Credit Union · 1 day ago
Engineer III, Digital Forensics & Incident Response
McLean, VA
Full-time
Hybrid
Senior Level, Lead/Staff
8+ years expPenFed Credit Union is hiring an Engineer III for their Digital Forensics & Incident Response team. This role involves managing security incidents, investigating security risks, and leading a team to respond to all security incidents detected within the enterprise network.
BankingCreditFinanceFinancial ServicesLending
Responsibilities
Utilize understanding of attack signatures, tactics, techniques and procedures associated with advanced threats
Lead, investigate, coordinate, bring to resolution, and report on security incidents as they are escalated or identified
Supervision over the DFIR Incident Handler/Analyst Team
Forensically analyzed end user systems and servers found to have possible indicators of compromise
Provide engineering and administrative functions for all tools in support of the DFIR mission
Train and assist other analysts/engineers and provide guidance on best practices in forensics and incident response
Complete complex analysis of artifacts collected during a security incident/forensic analysis
Identify security incidents through 'Hunting' operations within a SIEM and other relevant tools and partner organizations/technologies
Interface and communication with server owners, system custodians, and IT contacts to pursue security incident response activities, including obtaining access to systems, digital artifact collection, and containment and/or remediation actions
Provide expert consultation and forensic analysis on security incidents
Acquire, preserve, and analyze digital evidence following chain of custody and industry best practices
Identify root causes, attack paths, and indicators of compromise
Maintain, manage, improve and update the system forensics process and protocol documentation
Regularly provide reporting and metrics on case work
Provide SME level resolution of security incidents by identifying root causes and solutions through forensic analysis
Analyze results in investigative matters and develop fact-based reports
Develop and maintain incident response playbook, runbooks, and communication protocols
Qualification
Required
Bachelor's degree in information security / technology or related field, or equivalent combination of education & experience in information security in a large, highly regulated enterprise
Minimum of eight (8) years of work experience in the Cyber Security field
Minimum of three (3) years prior Forensics / Incident Response team lead experience
Minimum of two (2) years prior security analysis experience is required
Knowledge of security response operations, threat identification and forensic analysis software, equipment, and processes required
Knowledge of EDR/XDR platforms and SIEM technologies
Proficient technical level of digital forensic and security incident response required
Capable of identifying vectors of threats and security incidents, able to remediate or coordinate remediation efforts of a security incident and develop documentation to support the security incident response process required
Demonstrate integrity and judgment within a professional environment
Ability to appropriately balance work/personal priorities
Experience configuring and managing security systems
Experience configuring and managing UTM devices
Experience using Threat Intelligence Platforms for continuous monitoring
Experience using vulnerability management/scanning tools and obtaining valuable output for senior management
Strong Host based security experience. Ability to leverage Host based security systems to perform proper incident investigations and resolution
Strong filesystem and malware behavioral knowledge. Experience building a forensics capability. Strong experience with forensics tools for incident response
Knowledge of the Cyber threat landscape and APT groups
Knowledge of the MITRE ATT&CK Framework and ability to identify incident types and attack lifecycle
Knowledge of change management process and experience proposing and presenting changes to the enterprise infrastructure
Must Have At Least Two (2) Certifications In The Field Of Information Security From a Respectable Security Organization
Preferred
Desirable Certifications Include, But Not Limited To GSEC, GCIH, GCIA, GCFE, GREM, GCFA, CEH, CISSP, CASP or equivalent Certifications
Benefits
Comprehensive health, dental, and vision plans
Paid time off
Paid parental leave
Care support
Fitness center access
401(k) match
Employee loan discounts
Fully paid life and disability coverage
Education assistance
Community involvement
Volunteer opportunities
Company
PenFed Credit Union
PenFed Credit Union offers banking services, loans, mortgages, and credit cards to individuals and small businesses.
1001-5000 employees
H1B Sponsorship
PenFed Credit Union has a track record of offering H1B sponsorships. Please note that this does not
guarantee sponsorship for this specific role. Below presents additional info for your
reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (19)
2024 (20)
2023 (10)
2022 (21)
2021 (12)
2020 (11)
Funding
Current Stage
Late StageTotal Funding
$845.89M2025-09-22Debt Financing· $398.49M
2024-08-29Debt Financing· $447.4M
Leadership Team
Sarah Heintzman
Executive Vice President, CFO
Andrea McCarren
Senior Vice President & Chief Content Officer, PenFed Digital
Recent News
The Virginian-Pilot
2025-11-05
Company data provided by crunchbase