Operations Security Advisor/Cybersecurity Incident Response Engineer, Sr
ASM Research, An Accenture Federal Services Company
Job Description
Position Overview The Cybersecurity Incident Response Engineer, Senior leads complex incident response efforts for enterprise networks and missionâcritical systems, owning the technical direction and coordination of highâimpact events in a highly regulated environment. This role applies ITILâaligned incident management principles to structure major incident handling while maintaining deep technical focus on threat containment and eradication. It also drives proactive cybersecurity initiatives, including automation, custom scripting, and advanced defensive engineering, to strengthen the organizationâs ability to prevent, detect, and rapidly respond to sophisticated adversarial tactics.
The Senior Engineer develops and deploys scalable countermeasures, enhances SOC tooling and integrations, and implements advanced detection and response programs to defend against complex attacks. This role also mentors junior responders, shapes incident response governance, and influences broader security architecture and operations based on emerging threats and incident trends. Key Responsibilities Lead major incident bridges and war rooms, orchestrating technical teams, tracking actions, and making timeâcritical decisions to restore service and mitigate business risk.
Integrate ITIL incident and major incident management practices with technical response workflows, ensuring disciplined prioritization, communication, and closure. Design and optimize incident detection and response processes, including playbooks, escalation paths, and automation, to improve consistency, speed, and quality of response. Build automation, orchestration, and custom scripting solutions to reduce manual workload, enhance triage and response, and streamline containment and eradication actions.
Perform advanced threat and forensic analysis of endpoint, network, identity, and cloud data to understand attacker objectives, lateral movement, and persistence mechanisms. Partner with problem management and change management functions to translate incident findings into longâterm corrective actions, configuration changes, and riskâreducing initiatives. Define and track incident metrics such as MTTR, MTTD, incident volume, and recurrence, using data to identify systemic weaknesses and to brief leadership on operational risk.
Provide technical and procedural coaching to incident handlers and SOC analysts, elevating investigative techniques, documentation quality, and stakeholder communication. Required Qualifications 8+ years of progressive IT and cybersecurity experience with significant responsibility for incident response and major incident leadership. Bachelorâs degree in IT, Cybersecurity, Computer Science, Business Administration, or a related field, or equivalent work experience.
Strong understanding of ITIL principles and incident management best practices, including experience with major incident processes. Proficiency with incident management and service management tools integrated with security operations. Excellent problemâsolving, analytical, communication, and interpersonal skills with demonstrated ability to manage multiple simultaneous incidents.
Candidates must possess a current secret security clearance. Preferred Qualifications Demonstrated leadership of ITILâbased major incident processes in large enterprises, including executive and customerâfacing communications. Strong experience with enterprise incident management tools and service management platforms integrated with SOC and cyber defense functions.
Certifications such as ITIL Foundation plus advanced cybersecurity or incident response credentials evidencing both service management and deep technical capability. At least one cybersecurityârelated professional certification or the ability to obtain one within one year of hire, such as Security+, CySA+, GSEC, CEH, GCIA, GCIH, CISM or another industryârecognized equivalent. Compensation Ranges Compensation ranges for ASM Research positions vary depending on location, skill set, level of education, certifications, client requirements, contract-specific affordability, government clearance, and years of experience.
The displayed range reflects general guideline for this role. EEO Requirements It is the policy of ASM that an individual's race, color, religion, sex, disability, age, sexual orientation or national origin are not and will not be considered in any personnel or management decisions. We affirm our commitment to these fundamental policies.
Physical Requirements These requirements describe the physical capabilities necessary to perform the primary functions of this job. Reasonable accommodations may be provided to qualified individuals with disabilities. #J-18808-Ljbffr