Incident Response Analyst

Delviom LLC is hiring a full-time Incident Response Analyst to join its cybersecurity team in Alexandria, Virginia — a critical role for a professional ready to lead the charge when threats materialize and every minute counts.

About the Role

As an Incident Response Analyst at Delviom LLC, you will serve as a senior-level practitioner responsible for detecting, analyzing, containing, and remediating cybersecurity incidents across complex environments. This position sits at the intersection of hands-on technical investigation and cross-functional coordination, requiring both deep forensic skill and clear communication under pressure.

What You'll Do

• Lead end-to-end incident response operations — from initial triage and containment through eradication, recovery, and post-incident review
• Conduct host-based and network forensic investigations, including memory analysis, log correlation, and artifact examination
• Perform malware analysis and reverse-engineer attacker tooling to determine scope, intent, and attribution
• Develop, refine, and maintain incident response playbooks, runbooks, and standard operating procedures
• Hunt proactively for threats using behavioral analytics, threat intelligence feeds, and SIEM-driven hypothesis testing
• Collaborate with SOC analysts, threat intelligence teams, and IT stakeholders to coordinate response actions and communicate findings clearly
• Author detailed technical reports documenting investigation timelines, attack vectors, indicators of compromise, and remediation steps
• Support tabletop exercises and contribute to continuous improvement of the organization's detection and response capabilities

What We're Looking For

• 6–10 years of hands-on experience in incident response, digital forensics, or SOC operations
• Bachelor's degree in Cybersecurity, Information Assurance, Computer Science, or a closely related discipline
• GIAC GCIH certification required or strongly preferred; GIAC GCFA is a significant differentiator
• CompTIA CySA+ considered as an acceptable baseline alternative certification
• Demonstrated proficiency with SIEM platforms (e.g., Splunk, QRadar, Microsoft Sentinel), EDR tools, and network forensics solutions
• Strong understanding of attacker tactics, techniques, and procedures (TTPs) mapped to frameworks such as MITRE ATT&CK
• Experience analyzing Windows and Linux host artifacts, network packet captures, and cloud-based log sources
• Scripting capability in Python, PowerShell, or Bash for automation and investigative support
• Ability to communicate technical findings clearly to both technical peers and non-technical leadership

About Delviom LLC

Delviom LLC is a technology and professional services firm supporting clients who require rigorous, mission-aligned cybersecurity solutions. Based in the Alexandria, Virginia area, Delviom works in environments where precision, discretion, and expertise are non-negotiable. The team is built on a culture of continuous learning and operational excellence.

How to Apply

If you are an experienced incident responder ready to take on a senior role in Alexandria, VA, submit your application directly through this listing. Qualified candidates will be contacted to discuss next steps in the hiring process.