2038 Cleared Incident Response Analyst (TS/SCI Required)

All Points is seeking an Incident Response Analyst (Journeyman) to support a Department of Defense mission at Pope Air Force Base (Pope AFB), NC. This is a contingent hire pending contract award and requires an active, current, and fully adjudicated U.S. Department of Defense Top Secret clearance with SCI eligibility and/or the ability to obtain special access. The position is 100% on site at Pope AFB, NC, with no remote or telework authorized.Eligibility RequirementsU.S. Citizenship requiredTop Secret clearance with SCI eligibility and/or special access required (interim clearances do not meet this requirement)Position is contingent upon contract award100% on site at Pope AFB, NC; remote work is not supportedResponsibilitiesMonitor, detect, and triage cybersecurity incidents across enterprise environments, including network boundaries and endpoint protection platforms.Conduct incident investigations, including forensic data collection, log analysis, and determination of incident scope and root cause.Execute containment, eradication, and recovery actions to minimize impact to mission-critical information systems.Produce detailed incident reports, post-incident reviews, and recommendations to enhance cybersecurity posture.Support maintenance and continuous improvement of incident response playbooks, tools, and procedures.Collaborate with cybersecurity architects, system administrators, and network engineers to support coordinated incident response efforts.Assist in maintaining continuous compliance with DoD Information Assurance (IA) policies, RMF requirements, and incident handling standards.Ensure adherence to established incident response procedures, documentation standards, and chain-of-custody requirements.Maintain accurate documentation for incident investigations, response actions, and recovery activities.Respond effectively to evolving cybersecurity threats in a dynamic operational environment.EducationMinimum of a Bachelor's degree in a relevant technical discipline required.Years of ExperienceMinimum of 6 years of relevant cybersecurity or incident response experienceSkills & CertificationsExperience supporting cybersecurity incident response operations in complex enterprise environments REQUIREDExperience conducting incident investigations, forensic analysis, and response activities REQUIREDFamiliarity with SIEM platforms, endpoint detection and response tools, intrusion detection and prevention systems, and vulnerability management tools REQUIREDExperience operating in DoD controlled environments and supporting RMF-aligned cybersecurity operations REQUIREDDoD 8140 Workforce Role Category (WRC) 722 – ISSM (Intermediate) aligned certification REQUIRED, such as: GMON, SecurityX/CASP+, CCISO, CCSP, CGRC/CAP, CISSO, Cloud+, GCSA, GSEC, Sec+, SSCPNote: CompTIA Security+ alone does not meet the certification requirement for this role.Security ClearanceU.S. Citizenship requiredActive, current, and fully adjudicated U.S. Department of Defense Top Secret clearance with SCI eligibility and/or special access required (interim clearances do not meet this requirement).Positions with All Points are full time, direct positions, and we offer a comprehensive benefits package.Equal Opportunity Employer StatementALL POINTS IS AN EQUAL OPPORTUNITY EMPLOYERJ-18808-Ljbffr