2038 Cleared Incident Response Analyst (TS/SCI Required)
All Points Logistics, LLC, Fayetteville, NC, United States
All Points is seeking an
Incident Response Analyst (Journeyman)
to support a Department of Defense mission at
Pope Air Force Base (Pope AFB), NC . This is a contingent hire pending contract award and requires an active, current, and fully adjudicated U.S. Department of Defense Top Secret clearance with SCI eligibility and/or the ability to obtain special access. The position is
100% on site at Pope AFB, NC , with no remote or telework authorized.
Eligibility Requirements
U.S. Citizenship required
Top Secret clearance with SCI eligibility and/or special access required (interim clearances do not meet this requirement)
Position is contingent upon contract award
100% on site at Pope AFB, NC; remote work is not supported
Responsibilities
Monitor, detect, and triage cybersecurity incidents across enterprise environments, including network boundaries and endpoint protection platforms.
Conduct incident investigations, including forensic data collection, log analysis, and determination of incident scope and root cause.
Execute containment, eradication, and recovery actions to minimize impact to mission‑critical information systems.
Produce detailed incident reports, post‑incident reviews, and recommendations to enhance cybersecurity posture.
Support maintenance and continuous improvement of incident response playbooks, tools, and procedures.
Collaborate with cybersecurity architects, system administrators, and network engineers to support coordinated incident response efforts.
Assist in maintaining continuous compliance with DoD Information Assurance (IA) policies, RMF requirements, and incident handling standards.
Ensure adherence to established incident response procedures, documentation standards, and chain‑of‑custody requirements.
Maintain accurate documentation for incident investigations, response actions, and recovery activities.
Respond effectively to evolving cybersecurity threats in a dynamic operational environment.
Education
Minimum of a Bachelor’s degree in a relevant technical discipline required.
Years of Experience
Minimum of
6 years of relevant cybersecurity or incident response experience .
Skills & Certifications
Experience supporting cybersecurity incident response operations in complex enterprise environments
REQUIRED
Experience conducting incident investigations, forensic analysis, and response activities
REQUIRED
Familiarity with SIEM platforms, endpoint detection and response tools, intrusion detection and prevention systems, and vulnerability management tools
REQUIRED
Experience operating in DoD controlled environments and supporting RMF‑aligned cybersecurity operations
REQUIRED
DoD 8140 Workforce Role Category (WRC) 722 – ISSM (Intermediate) aligned certification REQUIRED , such as: GMON, SecurityX/CASP+, CCISO, CCSP, CGRC/CAP, CISSO, Cloud+, GCSA, GSEC, Sec+, SSCP
Note: CompTIA Security+ alone does not meet the certification requirement for this role.
Security Clearance
U.S. Citizenship required
Active, current, and fully adjudicated U.S. Department of Defense
Top Secret clearance with SCI eligibility and/or special access required (interim clearances do not meet this requirement).
Positions with All Points are
full time, direct positions , and we offer a comprehensive benefits package.
Equal Opportunity Employer Statement
ALL POINTS IS AN EQUAL OPPORTUNITY EMPLOYER
#J-18808-Ljbffr
Incident Response Analyst (Journeyman)
to support a Department of Defense mission at
Pope Air Force Base (Pope AFB), NC . This is a contingent hire pending contract award and requires an active, current, and fully adjudicated U.S. Department of Defense Top Secret clearance with SCI eligibility and/or the ability to obtain special access. The position is
100% on site at Pope AFB, NC , with no remote or telework authorized.
Eligibility Requirements
U.S. Citizenship required
Top Secret clearance with SCI eligibility and/or special access required (interim clearances do not meet this requirement)
Position is contingent upon contract award
100% on site at Pope AFB, NC; remote work is not supported
Responsibilities
Monitor, detect, and triage cybersecurity incidents across enterprise environments, including network boundaries and endpoint protection platforms.
Conduct incident investigations, including forensic data collection, log analysis, and determination of incident scope and root cause.
Execute containment, eradication, and recovery actions to minimize impact to mission‑critical information systems.
Produce detailed incident reports, post‑incident reviews, and recommendations to enhance cybersecurity posture.
Support maintenance and continuous improvement of incident response playbooks, tools, and procedures.
Collaborate with cybersecurity architects, system administrators, and network engineers to support coordinated incident response efforts.
Assist in maintaining continuous compliance with DoD Information Assurance (IA) policies, RMF requirements, and incident handling standards.
Ensure adherence to established incident response procedures, documentation standards, and chain‑of‑custody requirements.
Maintain accurate documentation for incident investigations, response actions, and recovery activities.
Respond effectively to evolving cybersecurity threats in a dynamic operational environment.
Education
Minimum of a Bachelor’s degree in a relevant technical discipline required.
Years of Experience
Minimum of
6 years of relevant cybersecurity or incident response experience .
Skills & Certifications
Experience supporting cybersecurity incident response operations in complex enterprise environments
REQUIRED
Experience conducting incident investigations, forensic analysis, and response activities
REQUIRED
Familiarity with SIEM platforms, endpoint detection and response tools, intrusion detection and prevention systems, and vulnerability management tools
REQUIRED
Experience operating in DoD controlled environments and supporting RMF‑aligned cybersecurity operations
REQUIRED
DoD 8140 Workforce Role Category (WRC) 722 – ISSM (Intermediate) aligned certification REQUIRED , such as: GMON, SecurityX/CASP+, CCISO, CCSP, CGRC/CAP, CISSO, Cloud+, GCSA, GSEC, Sec+, SSCP
Note: CompTIA Security+ alone does not meet the certification requirement for this role.
Security Clearance
U.S. Citizenship required
Active, current, and fully adjudicated U.S. Department of Defense
Top Secret clearance with SCI eligibility and/or special access required (interim clearances do not meet this requirement).
Positions with All Points are
full time, direct positions , and we offer a comprehensive benefits package.
Equal Opportunity Employer Statement
ALL POINTS IS AN EQUAL OPPORTUNITY EMPLOYER
#J-18808-Ljbffr