Tier 2 Incident Response Analyst - Night Shift jobs in United States
cer-icon
Apply on Employer Site
company-logo

Tyto Athene, LLC · 6 hours ago

Tier 2 Incident Response Analyst - Night Shift

positionWashington, DC
timeFull-time
remoteHybrid
seniorityMid Level
date4+ years exp

Tyto Athene is searching for a Tier 2 Incident Response Analyst to support our customer in Washington, DC. The role involves monitoring cybersecurity tools, triaging alerts, and investigating potential cyber threats to ensure effective responses to incidents.

Information Technology
check
Work & Life BalancebadNo H1BnoteSecurity Clearance RequirednoteU.S. Citizen Onlynote
Hiring Manager
Jordan Nugent
linkedin

Responsibilities

Utilize security tools to analyze, investigate, and triage security alerts
Monitor our customers environments, including cloud and SaaS solutions for evidence of adversarial activity
Perform in-depth analysis and investigation of high-priority cybersecurity incidents
Utilize advanced tools, such as host based digital forensics or malware analysis capabilities, to identify incidents’ root causes, scope, and impact
Collaborate with cyber threat hunting and cyber threat intelligence teams
Participate in the development, implementation, and tuning of the SOC tools detection content and alerting signatures
Accurately document triage findings, and intake reports of external cybersecurity events from SOC customers via phone or email in the SOCs Incident Management System(IMS)
Learn new open and closed-source investigative techniques
Perform research into emerging threats and vulnerabilities to aid their prevention and mitigation
Help shape the evolution of processes and procedures of the SOC
Provide guidance and mentorship to Tier 1 SOC Analysts to enhance their skills and capabilities

Qualification

Cybersecurity experienceSIEM experienceCISSPCEH certificationMalwareCloud servicesTTPEnterprise architectureOperating systemsCustomer service mentalityTechnical writingCommunication skillsInitiative

Required

Minimum of four (4) years of cybersecurity experience with at least three (3) years in a SOC watch floor analyst or IR role
CISSP or CEH certification; additional experience, formal training, certifications, and/or education may be substitutable at the client's discretion
Experience in some of the following tools and technologies: i.e. SIEM experience required with Sumo Logic/Splunk preferred
Knowledge of common attacker tools, techniques and procedures (TTP)
Experience with major cloud service provider offerings
Knowledge of malware
Knowledge of enterprise architecture including zero trust principles
Knowledge of Windows and Unix operating systems
Knowledge of common phishing techniques and how to investigate them
Proficiency in technical writing
Able to accurately and succinctly convey information through speaking, email, and presentations
Comfortable in customer facing environments
Ability to maintain a positive customer service mentality
Active Secret Clearance Required

Preferred

Bachelor's Degree or higher in Cybersecurity or related is preferred
Previous SOC or incident response experience
Working knowledge of regex and scripting languages
Any SOC analyst relevant certifications such as those from GIAC or CompTIA
The initiative to ask for assistance and offer fresh ideas to improve the SOC's performance

Company

Tyto Athene, LLC

twittertwittertwitter
company-logo
At Tyto Athene, we help turn Data to Dominance.
dateFounded in 2018
location
Herndon, Virginia, USA
people-size1001-5000 employees
web-link
https://gotyto.com/

Funding

Current Stage
Late Stage

Leadership Team

leader-logo
Dennis Kelly
Chief Executive Officer
linkedin
leader-logo
Peter O'Donoghue
Chief Technology Officer
linkedin

Recent News

Washington Technology
Growth, tech and operations leadership moves across the market
2025-11-23
Washington Technology
Arlington Capital fetches $6B for its seventh fund
2025-11-01
Washington Technology
Tech, finance and operations leadership moves across the market
2025-09-16
Company data provided by crunchbase