Date Posted: 04/04/2025
Hiring Organization: Rose International
Position Number: 480790
Industry: Retail
Job Title: CSIRT (Cyber Security Incident Response Team) Engineer
Job Location: Washington, DC, USA, 20005
Work Model: Hybrid
Work Model Details: Must be willing to perform shift work, weekends, a
Shift: Must be willing to perform shift work, weekends, and holidays as well as participate in a rotating shift consisting of four (4) 10 hour shifts with four days on, three (3) days off and possible rotations across Day, Swing, and Graveyard shifts as needed.
Employment Type: Temporary
FT/PT: Full-Time
Estimated Duration (In months): 6
Min Hourly Rate($): 50.00
Max Hourly Rate($): 65.00
Must Have Skills/Attributes: Security
Experience Desired: Incident response, Threat response (2+ yrs)
Required Minimum Education: Bachelor’s Degree
Preferred Education: Bachelor’s Degree
**C2C is not available**
Job Description
Working within client’s Computer Security Incident Response Team (CSIRT) you will have the opportunity to build innovative solutions to identify and mitigate information-security threats. You will work collaboratively to creatively solve complex security problems in a heterogeneous environment. With your contributions, we’re building the best security incident response team in the industry. Your skills, vision, tenacity, and passion will help us defend and respond daily to keep client's critical information assets away from threats and hackers.
Candidates must have extensive experience working with various security methodologies and processes, advanced knowledge of TCP/IP protocols, extensive experience providing analysis and trending of security log data from a large number of heterogeneous security devices.
Must demonstrate expert knowledge in one (1) or more of the following areas:
Incident Response, Digital Forensics, Monitoring and Detection, Cyber Intelligence Analysis
Core Job Functions Include:
Investigations – Investigating computer and information security incidents to determine extent of compromise to information and automated information systems
Escalations – Responding to escalated events from security tooling to develop/execute security controls, Defense/countermeasures to prevent internal or external attacks or attempts to infiltrate company email, data, e-commerce and web-based systems.
Research – Researching attempted or successful efforts to compromise systems security and designs countermeasures.
Education - maintaining proficiency in tools, techniques, countermeasures, and trends in computer network vulnerabilities, data hiding and network security and encryption.
Communications – Provides information and updates to shift leads & leadership, creates pass-downs for next shift, work closely with supporting teams, provide feedback for new security policy and standards, engage with other teams and adjacencies through email and conference calls.
Digital Forensics – As it relates to information systems, performs HR investigations and legal holds in a forensically sound manner. Consults with HR and legal subject matter experts to adhere to local country law
Coverage – Must be willing to perform shift work, weekends, and holidays as well as participate in a rotating shift consisting of four (4) 10 hour shifts with four days on, three (3) days off and possible rotations across Day, Swing, and Graveyard shifts as needed.
To be successful in this position, you should be proficient with:
Offensive Techniques – Penetration testing, IOCs, and exploits at all layers of the stack.
Logs - you should be comfortable with a SEIM to be able to gather and analyze logs to recreate incidents and hunt for threats.
System Forensics – Basic understanding of image acquisition techniques, memory forensics, and the like.
Networking Fundamentals - TCP/IP Protocols (HTTP, DNS, FTP, DHCP, ARP, etc.), and Wireshark/TCPDump.
Scripting – Should be familiar with scripting in at least one of the following: python, perl or a similar language.
Risk Analysis – Evaluating a vulnerability in a particular environment and understanding the associated risks to enterprise systems.
Qualifications:
Bachelor’s degree in Computer Science, Engineering, Information Technology, Cybersecurity, or a related field.
Minimum three (3) years of professional experience in incident detection and response, malware analysis, or digital forensics.
Must have at least one (1) of the following certifications:
SANS GIAC: GCED, GCIA, GPEN, GWAPT, GSNA, GPPA, GAWN, GWEB, GNFA, GREM, GXPN, GMON, GCIH
ISC2: CCFP, CCSP, CISSP
Cisco: CCNA, CCNP
CERT: CSIH
EC Council: CEH, ENSA, CNDA, ECSS, ECSP, ECES, CHFI, LPT, ECSA, or ECIH
Offensive Security: OSCP, OSCE, OSWP and OSEE
Digital Forensics: EnCE, CB, MiCFE, ACE, GCFA, GCFE
In addition, a minimum of one (1) year of specialized experience in one or more of the following areas:
Security Assessment or Offensive Security
Application Security
Security Operations Center/Security Incident Response
Cyber intelligence Analysis
- **Only those lawfully authorized to work in the designated country associated with the position will be considered.**
- **Please note that all Position start dates and duration are estimates and may be reduced or lengthened based upon a client’s business needs and requirements.**
Benefits:
For information and details on employment benefits offered with this position, please visit here. Should you have any questions/concerns, please contact our HR Department via our secure website.
California Pay Equity:
For information and details on pay equity laws in California, please visit the State of California Department of Industrial Relations' website here.
Rose International is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, age, sex, sexual orientation, gender (expression or identity), national origin, arrest and conviction records, disability, veteran status or any other characteristic protected by law. Positions located in San Francisco and Los Angeles, California will be administered in accordance with their respective Fair Chance Ordinances.
If you need assistance in completing this application, or during any phase of the application, interview, hiring, or employment process, whether due to a disability or otherwise, please contact our HR Department.
Rose International has an official agreement (ID #132522), effective June 30, 2008, with the U.S. Department of Homeland Security, U.S. Citizenship and Immigration Services, Employment Verification Program (E-Verify). (Posting required by OCGA 13/10-91.).
I am very happy with the Rose International, and the professionalism of the employees.
Robin, Consultant
I had a very positive experience working for Rose. The entire process is very efficient and easy.
Joanne, Consultant
I believe the best thing that Rose HR has going for it is the incredible responsiveness. Everyone is very quick to reply to any concerns, and contacts the contracted employees very quickly and efficiently.
Kevin, Consultant
Working for Rose International was the most pleasant assignment I have ever had. They were always on top of situations when necessary, and very helpful. I was very proud to be an employee of Rose International, and would recommend anyone to try to work with them.
Melvon, Consultant
Thanks for the opportunity. If in the future I ever need a job, I would like to work for Rose International.
David, Consultant
EMPLOYEE COMMENTS