AFRICOM - United States Africa Command, Analysis Skills, Automation Systems, CENTCOM - Central Command, CISA - Certified Information Systems Auditor, CISSP - Certified Information Systems Security Professional, Cloud Applications, Cloud Computing, Communication Skills, Computer Forensics, Computer Hacking, Computer Science, Computer Security, Control Objectives for Information and related Technology (COBIT), Customer Relations, Data Analysis, Enterprise Architecture, Facilities Management, Firewalls, Home Automation, ISO (International Organization for Standardization), ITIL (IT Infrastructure Library), Incident Response, Information Technology & Information Systems, Information/Data Security (InfoSec), Internet Security, Intrusion Detection Systems, Intrusion Prevention Systems, Malware, Office Equipment, People Management, Presentation/Verbal Skills, Regulatory Compliance, Risk Management, Root Cause Analysis, Secret Clearance, Security Clearance, Security Information and Event Management (SIEM), Security Monitoring, Sensitive Compartmented Information (SCI), Systems Analysis, TOGAF - The Open Group Architecture Framework, Top Secret Clearance, U.S. National Institute of Standards and Technology (NIST), United States Department of Defense (DoD), Zachman Framework
General information
Requisition #
R69129
Locations
USA-FL-Doral
Posting Date
07/06/2026
Security Clearance Required
Secret
Remote Type
Onsite
Time Type
Full time
Description & Requirements
Shape the future of defense with MANTECH! Join a team dedicated to safeguarding our nation through advanced tech and innovative solutions. Since 1968, we've been a trusted partner to the Department of Defense, delivering cutting-edge projects that make a real impact. Dive into exciting opportunities in Cybersecurity, IT, Data Analytics and more. Propel your career forward and be part of something extraordinary. Your journey starts now-protect and innovate with MANTECH!
MANTECH seeks a motivated, career and customer-oriented Senior Incident Response Cybersecurity Analyst to join our team in Doral, FL. This position uses a Panama schedule which includes 12 hour shifts work shifts may include days, nights and weekends
Responsibilities include but are not limited to:
- Active monitoring of security alerts from SIEM, EDR, IDS/IPS, firewalls, and cloud environments to identify potential anomalies and malicious activities.
- Rapidly analyzing and triaging incoming security alerts to distinguish true security incidents from false positives. Classifying the severity and potential business impact of confirmed security incidents to escalate them appropriately.
- Root Cause Analysis: Investigating logs (host, network, cloud, and application) to reconstruct the timeline of an attack and identify the entry point.
- Performing digital forensics on compromised endpoints, servers, and network devices to extract malware artifacts and indicators of compromise (IOCs).
- Proactively searching network and endpoint data to identify undetected malicious activity that bypasses traditional security controls. Identifying and removing all remnants of the threat (e.g., deleting registry keys, removing malware, terminating malicious processes).
- Executing containment protocols to stop the spread of an attack, such as isolating affected hosts, blocking malicious IPs, or disabling compromised user accounts.
- Coordinating with IT infrastructure teams to safely restore services from clean backups and verify system integrity post-incident. Writing comprehensive After-Action Reports (AARs) that detail the technical root cause, impact, and actions taken during the mitigation process.
Minimum Qualifications:
- Bachelor's degree in Information Technology, Cybersecurity, Computer Science, or related field or 4 years of additional experience in lieu of a degree.
- 9+ years of position-specific relevant experience in IT systems assessment, cybersecurity incident response, cybersecurity audit, or a related role.
- Knowledge of various IT domains, including applications, infrastructure, data, and security. Demonstrated experience with facility management systems (FMS) or related building automation systems (BAS).
- Strong understanding of enterprise architecture frameworks (e.g., TOGAF, Zachman), experience with IT security standards, compliance (e.g., NIST, ISO 27001), and risk management methodologies.
- Proven ability to analyze complex data and generate actionable recommendations.
Preferred Qualifications:
- Master's degree in Information Technology, Cybersecurity, Computer Science, or related field.
- Industry certifications such as Certified Information Systems Auditor (CISA), Certified Information Systems Security Professional (CISSP), Certified Facility Manager (CFM), TOGAF, COBIT, ITIL Foundation certificate, or any relevant building automation system or FMS vendor certifications (e.g., Siemens, Johnson Controls, Schneider Electric).
- Experience at a DoD Combatant Command (e.g., SOUTHCOM, NORTHCOM, CENTCOM, CYBERCOM, INDOPACOM, EUCOM, AFRICOM, STRATCOM, TRANSCOM, SOCOM, SPACECOM) or a component is desired.
Clearance Requirements:
- Must have an active/current Secret clearance.
- Must be eligible to obtain and maintain a TS/SCI security clearance.
Physical Requirements:
- Must be able to be in a stationary position more than 50% of the time
- Must be able to communicate, converse, and exchange information with peers and senior personnel
- Constantly operates a computer and other office productivity machinery, such as a computer
- The person in this position frequently communicates with co-workers, management, and customers, which may involve delivering presentations. Must be able to exchange accurate information in these situations
- The person in this position needs to occasionally move about inside the office to access file cabinets, office machinery, etc
MANTECH considers all qualified applicants for employment without regard to disability or veteran status or any other status protected under any federal, state, or local law or regulation.
If you need a reasonable accommodation to apply for a position with MANTECH, please email us at careers@mantech.com and provide your name and contact information.
M
ManTech International Corp
Our Mission
Our mission is empowering our nation through a diverse and skilled workforce securely delivering innovative technology, consulting services and digital solutions for our customers’ mission success, every day.
Our Vision
Our vision is Securing the Future as the most trusted partner for U.S. Defense, Intelligence and Federal Civilian customers through the power of One ManTech. When these agencies think of an essential partner for their national and homeland security needs, they think ManTech.
Our Values
Our values are grounded in a bedrock of truth, integrity and caring for each other and the mission. We hold steadfast to:
• TRUST – We earn and protect the trust of our customers, employees and investors through an enduring foundation of respect, fairness, credibility and honoring our commitments, always.
• INCLUSION – We are an inclusive, diverse and talented workforce with a passion for mission success, intellectual capital, creativity and integrity. Our high ethical standards and investment in our people build confidence with our customers.
• QUALITY– We deliver exceptional quality to customers through differentiated technology solutions and an uncompromising focus on excellence, value and innovation.
5,000 to 9,999 employees
https://www.mantech.com/about