logo inner

HHS - Incident Responder

Companycfocussoftware
LocationWorldwide
TypeRemote
cFocus Software seeks a Incident Responder to join our program supporting the Department of Health and Human Services (HHS) This position is remote. This position requires the ability a Public Trust clearance.

Qualifications:


  • Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or related field.
  • Minimum 4–7 years of experience in incident response, SOC operations, or cybersecurity operations.
  • Hands-on experience responding to enterprise cybersecurity incidents.
  • Strong understanding of NIST SP 800-61, NIST SP 800-53, and federal incident response requirements.
  • Experience analyzing logs, alerts, malware, and security events.
  • Ability to work effectively under pressure during active incidents.
  • Strong written and verbal communication skills.
  • Active GCIH, CISSP, CEH, or Security+ (preferred).

Duties:


  • Monitor, triage, and respond to cybersecurity alerts and incidents in accordance with HRSA Incident Response Plans and SOC SOPs.
  • Perform incident analysis to determine scope, impact, root cause, and affected systems.
  • Execute containment, eradication, and recovery actions for cybersecurity incidents.
  • Respond to malware infections, phishing campaigns, ransomware, insider threats, and data breaches.
  • Collect, preserve, and analyze evidence in accordance with chain-of-custody requirements.
  • Support forensic analysis and coordinate with digital forensics and threat hunting teams.
  • Document incident activities, timelines, findings, and remediation actions within defined SLAs.
  • Prepare incident reports, notifications, and after-action reports for HRSA and HHS stakeholders.
  • Coordinate incident response activities with SOC Analysts, ISSOs, system owners, Privacy Officials, and leadership.
  • Support reporting requirements to HHS CSIRC, CISA, and other federal entities as required.
  • Participate in incident response drills, tabletop exercises, and cyber exercises.
  • Support continuous improvement of incident response playbooks, SOPs, and workflows.
  • Assist with remediation validation and lessons-learned activities following incident closure.


Your tracker settings

We use cookies and similar methods to recognize visitors and remember their preferences. We also use them to measure ad campaign effectiveness, target ads and analyze site traffic. To learn more about these methods, including how to disable them, view our Cookie Policy or Privacy Policy.

By tapping `Accept`, you consent to the use of these methods by us and third parties. You can always change your tracker preferences by visiting our Cookie Policy.

logo innerThatStartupJob
Discover the best startup and their job positions, all in one place.
Quick SearchSearch JobsSearch Remote Jobs hiring WorldwideSearch Remote Jobs in the USSearch Jobs in IndiaSearch Remote Jobs in UKSearch by Title
AreaCaliforniaMassachusettsNew YorkTexasVirginiaWashington D.C.View all
Popular SubRemote JobsWeb3 JobsiOS Developer JobsFront End Developer Remote JobsComputational Geometry JobsCannabis CareersView all
CompanyAbout UsContact usBlogCreditsCareersPrivacy PolicyCookie Policy
Copyright © 2025