Home › Companies › 244a96b2 61cf 4805 839d 558c7cbe4e3c 19000101 000001 › Incident Response Expert III
Incident Response Expert III
244a96b2 61cf 4805 839d 558c7cbe4e3c 19000101 000001 · Columbia, MD, US, Columbia, MD · Active · ADP Workforce Now Recruiting
Job facts
| Field | Value |
|---|---|
| Company | 244a96b2 61cf 4805 839d 558c7cbe4e3c 19000101 000001 |
| Title | Incident Response Expert III |
| Normalized title | - |
| Department / team | - |
| Location | Columbia, MD, United States |
| Work model | - |
| Employment type | Full Time |
| Salary | - |
| Status | active |
| ATS provider | ADP Workforce Now Recruiting |
| Posted / first seen | 2026-04-24 / 2026-05-31 |
| Changed / last seen | 2026-06-06 / 2026-06-06 |
Related slices
| Page | What it contains | Open |
|---|---|---|
| Company jobs | Active postings from 244a96b2 61cf 4805 839d 558c7cbe4e3c 19000101 000001. | Open |
| Company breakdowns | Role, location, ATS, and work model facets for this company. | Open |
| ATS provider jobs | Active postings observed through ADP Workforce Now Recruiting. | Open |
| Provider filtered search | The same provider as a filtered job collection. | Open |
| City jobs | Active postings in Columbia. | Open |
| Lifecycle events | Open, update, close, and reopen events for this posting. | Open |
| Original posting | Canonical source or apply URL captured from the ATS. | Open |
Linked records
| Company | 244a96b2 61cf 4805 839d 558c7cbe4e3c 19000101 000001 |
| Source | 8a78e09c-7772-46b9-8738-fb84fa47ba2f |
| ATS provider | ADP Workforce Now Recruiting |
Description
Responsibilities: - Serves as hunt and incident response subject matter expert (SME), applying in-depth knowledge of threat actor (TA) tools, techniques, and procedures (TTPs)
- Distills analytic findings into executive summaries and in-depth technical report
- Provide expert support, analysis, and research with only broad direction into exceptionally complex problems and processes relating to the subject matter as it relates to hunt and incident response activities
- Serves as technical expert on high-level incident response teams providing technical direction, interpretation, and alternatives
- Exercises considerable latitude in determining technical objectives of an assignment or task at hand
- Independently develops technical solutions to complex problems that require the regular use of ingenuity and creativity
- Analyzes incident data and victim environments to recommend targeted mitigations
- Advise technical personnel on countermeasure implementation and customization
- Supports internal stakeholders on containment and eradication missions
- Documents analysis in a standardized knowledgebase for sharing and publication
- Assists in maintaining branch process and procedure documentation
- Guides to the completion of hunt and incident response activities
Required Skills:
- U.S. Citizenship
- Must have an active TS/SCI clearance
- Must be able to obtain DHS Suitability
- 5+ years of directly relevant experience in expertise
- Must be able to travel domestically on short notice
- Strong understanding of network architecture/security
- Experience performing cyber incident response
- Ability to think independently
- Demonstrates superior written and oral communication skills
- Must be able to work collaboratively across physical locations
- Skilled in identifying different classes of attacks and attack stages
- Understanding of system and application security threats and vulnerabilities
- Understanding of proactive analysis of systems and networks, to include creating trust levels of critical resources
- Proficiency with common operating systems (e.g. Linux/Unix, Windows)
Desired Skills:
- Experience leading and mentoring technical teams
- Knowledge of Computer Network Defense policies, procedures and regulations
- Knowledge of different operational threat environments (e.g., first generation [script kiddies], second generation [non-nation-state sponsored], and third generation [nation-state sponsored])
- Knowledge of system and application security threats and vulnerabilities (e.g., buffer overflow, mobile code, cross-site scripting, PL/SQL and injections, race conditions, covert channel, replay, return- oriented attacks, and malicious code)
- Network and System administration experience
- Strong understanding of adversarial tactics/techniques/procedures (TTPs)
- Experience with Identity and Access Management (IAM) tools
- Ability to review and analyze Enterprise Architecture (EA) from a security perspective
- Understanding of cyber defense-in-depth principles
- Hands-on skill in host/network intrusion detection
- Ability to perform event correlation
- Experience with malicious activity analysis
- Ability to collaborate with stakeholders at multiple levels within an organization
Required Education:
BS Computer Science, Cyber Security, Computer Engineering, or related degree; or HS Diploma & 7+ years of technical experience in expertise.
Desired Certifications: One or more - DoD 8140.01 IAT Level II, IASAE II, CSSP Analyst - DoD 8140.01 GCIA, GCIH, CSSP Analyst/CSSP Incident Responder - DoD 8140.01 CEH, CSSP Analyst - SANS GIAC GNFA preferred - SANS GRID, GICSP, or GCIP a plus
Full job record
| Job ID | 48e33c65bcdc538ef2a3ad524a31fe3c7341e1a7 |
| Org ID | 88357b26-ae02-4921-9ff3-248c0862a19a |
| Source ID | 8a78e09c-7772-46b9-8738-fb84fa47ba2f |
| Board ID | 8a78e09c-7772-46b9-8738-fb84fa47ba2f |
| Provider | adp_workforcenow |
| Provider Job Key | 570996 |
| Title | Incident Response Expert III |
| Normalized Title | — |
| Status | active |
| Active | yes |
| Location Text | Columbia, MD, US, Columbia, MD |
| Department | — |
| Team | — |
| Employment Type | full_time |
| Workplace Type | — |
| Remote Policy | — |
| Country | United States |
| Region | MD |
| City | Columbia |
| Salary Raw | — |
| Salary Min | — |
| Salary Max | — |
| Salary Currency | — |
| Salary Period | — |
| Source URL | https://workforcenow.adp.com/mascsr/default/mdf/recruitment/recruitment.html?cid=244a96b2-61cf-4805-839d-558c7cbe4e3c&ccId=19000101_000001&lang=en_US&type=JS&jobId=570996&jwId=9201207641246_1 |
| Apply URL | https://workforcenow.adp.com/mascsr/default/mdf/recruitment/recruitment.html?cid=244a96b2-61cf-4805-839d-558c7cbe4e3c&ccId=19000101_000001&lang=en_US&type=JS&jobId=570996&jwId=9201207641246_1 |
| First Seen At | 2026-05-31 18:41:48Z |
| Last Seen At | 2026-06-06 12:11:21Z |
| Last Checked At | 2026-06-06 12:11:21Z |
| Last Changed At | 2026-06-06 12:11:21Z |
| Inactive At | — |
| Source Posted At | 2026-04-24 15:42:00Z |
| Source Updated At | — |
| Raw Payload Uri | s3://job-postings-prod-raw-590183727216/raw/provider=adp_workforcenow/board=244a96b2-61cf-4805-839d-558c7cbe4e3c|19000101_000001/date=2026-06-06/2026-06-06T12-11-20-358Z-568a3732b8846fc0065f0ae078ff2f83b9764dca9e213426ea1de3d80b2dca2f.json |
Event Fields
{
"content_hash": "6b1703484bb3dd565e00483c334977e6299d8a055b222f42572e32cdca9c1889",
"source_hash": "56b7924b24e9c0fcae391c5dc279aabd442517d9f94f1e6926d915f8dc729722",
"last_changed_at": "2026-06-06T12:11:21.939Z",
"active_status": "active"
}Parsed Structured
{
"language": "en",
"location": {
"raw": "Columbia, MD, US, Columbia, MD",
"city": "Columbia",
"region": "MD",
"country": "United States",
"is_remote": false,
"confidence": 0.95
},
"salary_max": null,
"salary_min": null,
"inferred_at": "2026-06-06T12:11:21.905Z",
"launch_scope": {
"reason": "english_us_canada",
"included": true,
"language": "en",
"location": {
"raw": "Columbia, MD, US, Columbia, MD",
"city": "Columbia",
"region": "MD",
"country": "United States",
"is_remote": false,
"confidence": 0.95
},
"countries": [
"United States"
]
},
"remote_policy": null,
"salary_period": null,
"workplace_type": null,
"salary_currency": null
}Extensions
{}Native Structured
{
"detail": {
"links": [],
"itemID": "9201207641246_1",
"postDate": "2026-04-24T11:42:00.000-04:00",
"workLevelCode": {
"shortName": "Full Time"
},
"customFieldGroup": {
"dateFields": [
{
"nameCode": {
"codeValue": "PostingDate"
},
"dateValue": "2026-04-24T11:42Z"
},
{
"nameCode": {
"codeValue": "CurrentServerDateTime"
},
"dateValue": "2026-06-06T08:11Z"
}
],
"numberFields": [
{
"numberValue": 0,
"categoryCode": {
"codeValue": "ApplicantCount"
}
},
{
"categoryCode": {
"codeValue": "AwardAmount"
}
}
],
"stringFields": [
{
"nameCode": {
"codeValue": "ExternalJobID"
},
"stringValue": "570996"
},
{
"nameCode": {
"codeValue": "CareerCenterRefId"
}
},
{
"nameCode": {
"codeValue": "GuidelineOid"
}
},
{
"nameCode": {
"codeValue": "CurrencySymbolOrCode"
}
},
{
"nameCode": {
"codeValue": "HomeDepartment"
},
"stringValue": ""
},
{
"nameCode": {
"codeValue": "JobClass"
},
"stringValue": "Professional"
}
],
"indicatorFields": [
{
"nameCode": {
"codeValue": "PriortyStatusFlag"
},
"indicatorValue": false
},
{
"nameCode": {
"codeValue": "InternalPostingFlag"
},
"indicatorValue": false
},
{
"nameCode": {
"codeValue": "MinValue"
},
"indicatorValue": true
},
{
"nameCode": {
"codeValue": "IsVsidApplicable"
},
"indicatorValue": true
},
{
"nameCode": {
"codeValue": "IsSassDlReqForExtPostFlag"
},
"indicatorValue": false
},
{
"nameCode": {
"codeValue": "IsSassDlReqForIntPostFlag"
},
"indicatorValue": false
},
{
"nameCode": {
"codeValue": "IsMonetaryFlag"
},
"indicatorValue": false
},
{
"nameCode": {
"codeValue": "IsNonMonetaryFlag"
},
"indicatorValue": false
}
]
},
"requisitionTitle": "Incident Response Expert III",
"clientRequisitionID": "2797",
"organizationalUnits": [],
"postingInstructions": [],
"additionalProperties": {},
"requisitionLocations": [
{
"address": {
"cityName": "Columbia",
"postalCode": "21045",
"countrySubdivisionLevel1": {
"codeValue": "MD"
}
},
"nameCode": {
"shortName": " Columbia, MD, US"
},
"aliasNames": []
}
],
"screeningRequirements": [],
"requisitionDescription": "<p style=\"margin-left:0in;\" data-pasted=\"true\">Responsibilities: - Serves as hunt and incident response subject matter expert (SME), applying in-depth knowledge of threat actor (TA) tools, techniques, and procedures (TTPs)</p><p style=\"margin-left:0in;\">- Distills analytic findings into executive summaries and in-depth technical report</p><p style=\"margin-left:0in;\">- Provide expert support, analysis, and research with only broad direction into exceptionally complex problems and processes relating to the subject matter as it relates to hunt and incident response activities</p><p style=\"margin-left:0in;\">- Serves as technical expert on high-level incident response teams providing technical direction, interpretation, and alternatives</p><p style=\"margin-left:0in;\">- Exercises considerable latitude in determining technical objectives of an assignment or task at hand</p><p style=\"margin-left:0in;\">- Independently develops technical solutions to complex problems that require the regular use of ingenuity and creativity</p><p style=\"margin-left:0in;\">- Analyzes incident data and victim environments to recommend targeted mitigations</p><p style=\"margin-left:0in;\">- Advise technical personnel on countermeasure implementation and customization</p><p style=\"margin-left:0in;\">- Supports internal stakeholders on containment and eradication missions</p><p style=\"margin-left:0in;\">- Documents analysis in a standardized knowledgebase for sharing and publication</p><p style=\"margin-left:0in;\">- Assists in maintaining branch process and procedure documentation</p><p style=\"margin-left:0in;\">- Guides to the completion of hunt and incident response activities</p><p style=\"margin-left:0in;\">Required Skills:</p><p style=\"margin-left:0in;\">- U.S. Citizenship</p><p style=\"margin-left:0in;\">- Must have an active TS/SCI clearance</p><p style=\"margin-left:0in;\">- Must be able to obtain DHS Suitability</p><p style=\"margin-left:0in;\">- 5+ years of directly relevant experience in expertise</p><p style=\"margin-left:0in;\">- Must be able to travel domestically on short notice</p><p style=\"margin-left:0in;\">- Strong understanding of network architecture/security</p><p style=\"margin-left:0in;\">- Experience performing cyber incident response</p><p style=\"margin-left:0in;\">- Ability to think independently</p><p style=\"margin-left:0in;\">- Demonstrates superior written and oral communication skills</p><p style=\"margin-left:0in;\">- Must be able to work collaboratively across physical locations</p><p style=\"margin-left:0in;\">- Skilled in identifying different classes of attacks and attack stages</p><p style=\"margin-left:0in;\">- Understanding of system and application security threats and vulnerabilities</p><p style=\"margin-left:0in;\">- Understanding of proactive analysis of systems and networks, to include creating trust levels of critical resources</p><p style=\"margin-left:0in;\">- Proficiency with common operating systems (e.g. Linux/Unix, Windows)</p><p style=\"margin-left:0in;\">Desired Skills:</p><p style=\"margin-left:0in;\">- Experience leading and mentoring technical teams</p><p style=\"margin-left:0in;\">- Knowledge of Computer Network Defense policies, procedures and regulations</p><p style=\"margin-left:0in;\">- Knowledge of different operational threat environments (e.g., first generation [script kiddies], second generation [non-nation-state sponsored], and third generation [nation-state sponsored])</p><p style=\"margin-left:0in;\">- Knowledge of system and application security threats and vulnerabilities (e.g., buffer overflow, mobile code, cross-site scripting, PL/SQL and injections, race conditions, covert channel, replay, return- oriented attacks, and malicious code)</p><p style=\"margin-left:0in;\">- Network and System administration experience</p><p style=\"margin-left:0in;\">- Strong understanding of adversarial tactics/techniques/procedures (TTPs)</p><p style=\"margin-left:0in;\">- Experience with Identity and Access Management (IAM) tools</p><p style=\"margin-left:0in;\">- Ability to review and analyze Enterprise Architecture (EA) from a security perspective</p><p style=\"margin-left:0in;\">- Understanding of cyber defense-in-depth principles</p><p style=\"margin-left:0in;\">- Hands-on skill in host/network intrusion detection</p><p style=\"margin-left:0in;\">- Ability to perform event correlation</p><p style=\"margin-left:0in;\">- Experience with malicious activity analysis</p><p style=\"margin-left:0in;\">- Ability to collaborate with stakeholders at multiple levels within an organization</p><p style=\"margin-left:0in;\">Required Education:</p><p style=\"margin-left:0in;\">BS Computer Science, Cyber Security, Computer Engineering, or related degree; or HS Diploma & 7+ years of technical experience in expertise.</p><p style=\"margin-left:0in;\">Desired Certifications: One or more - DoD 8140.01 IAT Level II, IASAE II, CSSP Analyst - DoD 8140.01 GCIA, GCIH, CSSP Analyst/CSSP Incident Responder - DoD 8140.01 CEH, CSSP Analyst - SANS GIAC GNFA preferred - SANS GRID, GICSP, or GCIP a plus</p>\n",
"sponsoredVisaTypeCodes": []
},
"list_job": {
"links": [],
"itemID": "9201207641246_1",
"postDate": "2026-04-24T11:42:00.000-04:00",
"workLevelCode": {
"shortName": "Full Time"
},
"customFieldGroup": {
"dateFields": [
{
"nameCode": {
"codeValue": "PostingDate"
},
"dateValue": "2026-04-24T11:42Z"
},
{
"nameCode": {
"codeValue": "CurrentServerDateTime"
},
"dateValue": "2026-06-06T08:11Z"
}
],
"numberFields": [
{
"numberValue": 0,
"categoryCode": {
"codeValue": "ApplicantCount"
}
},
{
"categoryCode": {
"codeValue": "AwardAmount"
}
}
],
"stringFields": [
{
"nameCode": {
"codeValue": "ExternalJobID"
},
"stringValue": "570996"
},
{
"nameCode": {
"codeValue": "CareerCenterRefId"
}
},
{
"nameCode": {
"codeValue": "GuidelineOid"
}
},
{
"nameCode": {
"codeValue": "CurrencySymbolOrCode"
}
},
{
"nameCode": {
"codeValue": "HomeDepartment"
},
"stringValue": ""
},
{
"nameCode": {
"codeValue": "JobClass"
},
"stringValue": "Professional"
}
],
"indicatorFields": [
{
"nameCode": {
"codeValue": "PriortyStatusFlag"
},
"indicatorValue": false
},
{
"nameCode": {
"codeValue": "InternalPostingFlag"
},
"indicatorValue": false
},
{
"nameCode": {
"codeValue": "MinValue"
},
"indicatorValue": true
},
{
"nameCode": {
"codeValue": "IsVsidApplicable"
},
"indicatorValue": true
},
{
"nameCode": {
"codeValue": "IsSassDlReqForExtPostFlag"
},
"indicatorValue": false
},
{
"nameCode": {
"codeValue": "IsSassDlReqForIntPostFlag"
},
"indicatorValue": false
},
{
"nameCode": {
"codeValue": "IsMonetaryFlag"
},
"indicatorValue": false
},
{
"nameCode": {
"codeValue": "IsNonMonetaryFlag"
},
"indicatorValue": false
}
]
},
"requisitionTitle": "Incident Response Expert III",
"clientRequisitionID": "2797",
"organizationalUnits": [],
"postingInstructions": [],
"additionalProperties": {},
"requisitionLocations": [
{
"address": {
"cityName": "Columbia",
"postalCode": "21045",
"countrySubdivisionLevel1": {
"codeValue": "MD"
}
},
"nameCode": {
"shortName": " Columbia, MD, US"
},
"aliasNames": []
}
],
"screeningRequirements": [],
"sponsoredVisaTypeCodes": []
},
"detail_meta": {
"url": "https://workforcenow.adp.com/mascsr/default/careercenter/public/events/staffing/v1/job-requisitions/570996?cid=244a96b2-61cf-4805-839d-558c7cbe4e3c&ccId=19000101_000001&lang=en_US&locale=en_US",
"http_status": 200,
"content_type": "application/json;charset=UTF-8",
"response_bytes": 8038
},
"detail_errors": []
}Get this page with API
Rendered from the bluedoor Job Postings API. Reproduce it:
GET https://api.bluedoor.sh/job-postings/v1/jobs/48e33c65bcdc538ef2a3ad524a31fe3c7341e1a7?include=descriptionJSONGET https://api.bluedoor.sh/job-postings/v1/orgs/88357b26-ae02-4921-9ff3-248c0862a19aJSONGET https://api.bluedoor.sh/job-postings/v1/sources/8a78e09c-7772-46b9-8738-fb84fa47ba2fJSONGET https://api.bluedoor.sh/job-postings/v1/jobs/48e33c65bcdc538ef2a3ad524a31fe3c7341e1a7/eventsJSON