Senior Incident Responder

Braxton-Grant Technologies

Anne Arundel County, Maryland

JOB DETAILS
SKILLS
Amazon Web Services (AWS), Analysis Skills, Automation, CEH - Certified Ethical Hacker, CISSP - Certified Information Systems Security Professional, Cancer, Cloud Computing, Communication Skills, Computer Security, Continuous Improvement, DNS (Domain Name System), Dental Insurance, Documentation, Enterprise Protection, Firewalls, Forensic Science, GCFA - GIAC Certified Forensic Analyst, GCIH - GIAC Certified Incident Handler, GCP (Good Clinical Practices), Government Contracts, HTTP (HyperText Transport Protocol), HTTPS (HyperText Transport Protocol Secure), Healthcare, Hospital, Hunting, ISO 9000, Incident Management, Incident Response, Industry/Trade Analysis, Information/Data Security (InfoSec), Insurance, Linux Operating System, Malware, Microsoft Windows Azure, Microsoft Windows Operating System, Network Protocols, Network Traffic Analysis, Organizational Skills, Preferred Provider Organization (PPO), Presentation/Verbal Skills, Protective Services, Ransomware, Securities and Exchange Commission (SEC), Security Analysis, Security Attacks, Security Information and Event Management (SIEM), Security Monitoring, Splunk, Standard Operating Procedures (SOP), TCP/IP (Transmission Control Protocol/Internet Protocol), Team Player, Technical Leadership, Time Management, United States Citizen, Wireshark (Ethereal), Writing Skills, tcpdump
LOCATION
Anne Arundel County, Maryland
POSTED
14 days ago
Due to contract requirements, United States Citizenship is required for this role.
 

Key Responsibilities:

  • Monitor security information and event management (SIEM) platforms and other security tools to identify potential security incidents and anomalous activity across multiple client environments.
  • Lead the investigation and triage of complex security incidents, determining scope, impact, and appropriate response actions.
  • Perform advanced threat hunting activities to proactively identify indicators of compromise and emerging threats.
  • Coordinate incident response efforts across multiple stakeholders, including clients, technical teams, and management.
  • Execute containment, eradication, and recovery procedures in accordance with incident response playbooks and client requirements.
  • Analyze security events and correlate data from multiple sources, including network traffic, endpoint detection and response (EDR) tools, firewall logs, and threat intelligence feeds.
  • Escalate critical incidents following established protocols and ensure timely communication with clients and internal teams.
  • Document all incident response activities, findings, and recommendations in detailed incident reports.
  • Develop and maintain incident response procedures, playbooks, and standard operating procedures.
  • Conduct post-incident reviews and contribute to lessons learned documentation.

Qualifications:

  • General Experience:
    • Minimum eight (8) years of hands-on experience in information security with at least five (5) years focused on incident response, security operations, or threat analysis.
    • Demonstrated experience working in a managed security services provider (MSSP) or enterprise SOC environment.
    • Proven track record of investigating and responding to complex security incidents, including malware infections, data breaches, ransomware attacks, and advanced persistent threats (APTs).
    • Strong working knowledge of SIEM platforms (e.g., Splunk, QRadar, Sentinel, Chronicle) and security orchestration, automation, and response (SOAR) tools.
    • Experience with monitoring, analyzing, and tuning industry-leading EDR solutions.
    • Proficiency in network traffic analysis, log analysis, and forensic investigation techniques.
    • Understanding of common attack vectors, MITRE ATT&CK framework, and threat actor tactics, techniques, and procedures (TTPs).
    • Proven organizational and communication skills
    • Demonstrate excellent writing and oral communication skills.
    • US citizen
  • Specialized experience:
    • Deep understanding of Windows and Linux operating systems, including registry analysis, process behavior, and system artifacts.
    • Knowledge of network protocols (e.g., TCP/IP, DNS, HTTP/HTTPS, SMB) and ability to analyze packet captures using tools like Wireshark or tcpdump.
    • Experience with threat intelligence platforms and integrating threat feeds into detection and response workflows.
    • Familiarity with cloud environments (AWS, Azure, GCP) and their associated security tools and logging capabilities.
  • Preferred certifications:
    • GIAC Certified Incident Handler (GCIH);
    • GIAC Certified Forensic Analyst (GCFA);
    • Certified Information Systems Security Professional (CISSP);
    • Certified Ethical Hacker (CEH);
    • SANS FOR508, FOR572, or SEC504 course completion; or
    • Vendor-specific certifications (CrowdStrike Certified Falcon Responder, Splunk Enterprise Security Certified Admin, etc.)


What We Offer:

Braxton-Grant is committed to being a place where talented people do their best work. You’ll join a collaborative, high‑performing team that values curiosity, knowledge‑sharing, and continuous improvement. We support your growth through competitive pay, meaningful professional development opportunities, and a comprehensive benefits package designed to help you thrive both at work and beyond.


Pay Range:  $140,800-$174,600

Pay rates listed for this position serve as a general guideline and are not a guarantee of compensation. Compensation rates vary dependent upon factors including but not limited to: government contract rates; education; relevant prior work experience, knowledge, skills, and competencies; and certifications. Pay rates reflect the pre-benefit gross wage amounts.

We offer comprehensive benefits for full-time employees:
  • Employer-subsidized HSA-compliant medical plans with out-of-network coverage and wellness rewards
  • Vision and dental PPO plans
  • Employer-paid short term disability coverage
  • Employer-paid basic life and AD&D coverage
  • Voluntary long-term disability
  • Voluntary supplemental disability, hospital protection, accident insurance, critical illness and cancer, and whole life policies
  • 401k plan with generous employer match
  • Professional development and tuition reimbursement up to $5,250 annually
  • Employee referral bonus eligibility
  • Up to 160 hours of PTO annually, aligned with applicable state leave regulations
  • 10 paid holidays

Company Overview: Braxton-Grant Technologies, Inc. is a respected provider of global cybersecurity services, platforms, training, and support for public- and private-sector organizations. Serving as trusted advisors to our clients, our security and network specialists are known for their listen-first approach. We take the time to understand your organization, mission, and priorities before recommending and deploying the most effective and practical solution available. Our engineers are security-cleared, vendor-certified U.S. citizens with proven experience in environments from defense to healthcare. We are ISO 9000:2015, 20000-1:2018, 27001:2013 and 20243 registered, are based in Maryland, and offer a broad array of U.S. government contract vehicles.

Braxton-Grant Technologies, Inc. is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran. 
  
Braxton-Grant Technologies, Inc. is committed to providing an inclusive and accessible hiring process. If you need any accommodations during the application or interview process, please contact HR at 443-545-2052 x8006 or hrsupport@braxtongrant.com. 

About the Company

B

Braxton-Grant Technologies