Cybersecurity Incident Responder

Location: Pantex Plant

Job Title: Cybersecurity Incident Responder

Career Level From: Specialist

Career Level To: Senior Specialist

Organization: Cyber Operations (51130640)

Job Specialty: Cyber Security

What You'll Do

The Incident Responder is a senior technical expert within the Cybersecurity Operations team, responsible for leading incident response efforts across the organization. This individual serves as the principal responder for complex security events, guiding other analysts and ensuring consistency and excellence in execution. The IR plays a central role in the development and execution of incident response procedures, coordinates across multiple teams during Cyber events, and helps mature detection and response capabilities aligned with enterprise risk priorities.

This is a high-impact, senior-level role suited for a cybersecurity professional with deep technical expertise, strong situational awareness, and the ability to lead by influence across cross-functional teams in a highly regulated environment.

• Key Responsibilities:
• Serve as the primary incident handler for the organization’s most significant cybersecurity incidents.
• Coordinate with internal stakeholders – including Information Technology (IT), legal, compliance, and leadership – during incident triage, containment, and recovery.
• Lead and contribute to the development and refinement of incident response playbooks, escalation procedures, and investigative workflows.
• Act as a mentor and technical resource for incident responders and Security Operations Center (SOC) personnel, sharing expertise and promoting consistent best practices.
• Analyze and validate security events and alerts; perform root cause analysis and forensic investigations as needed.
• Facilitate post-incident review and lessons-learned sessions to support continuous improvement in detection and response processes.
• Collaborate with threat intelligence, vulnerability management, and engineering teams to proactively identify and mitigate risks.
• Support and help conduct tabletop exercises and incident simulations.
• Track and report incident trends and response metrics such as mean time to detection (MTTD), mean time to respond (MTTR), and more.
• Maintain a high level of situational awareness of emerging threats and evolving attack techniques.
  

What You Can Expect

• Meaningful work and unique opportunities to support missions vital to national and global security
• Top-notch, dedicated colleagues
• Generous pay and benefits with a stable organization
• Career advancement and professional development programs
• Work-life balance fostered through flexible work options and wellness initiatives
  
  

Minimum Job Requirements

• Bachelor's degree in engineering/science discipline: Minimum 4 years of relevant experience. Normally requires a minimum of 4 years of relevant experience, with typical engineering/science experience of 6 to 10 years.
• Master's degree in engineering/science discipline: Minimum 2 years of relevant experience.
• Applicants with a high school diploma or equivalent may be considered on an exceptional basis with 12 or more years of relevant experience
  
  

Preferred Job Requirements

• Bachelor’s degree in Cybersecurity, IT, Computer Science, or a related field (or equivalent work experience).
• 7+ years of hands-on experience in cybersecurity, including at least 3 years focused on Incident Response or security operations.
• Demonstrated ability to lead technical investigations and drive resolution of complex incidents.
• Deep understanding of attack vectors, tactics, techniques, and procedures (TTP), and common frameworks such as MIT Research Establishment Adversarial Tactics, Techniques, and Common Knowledge (MITRE ATT&CK).
• Proficient in using incident response tools such as Security Information and Event Management (SIEMs), End Point Detection & Response (EDR), forensic utilities, and log analysis platforms.
• Strong analytical and problem-solving skills with the ability to respond quickly and decisively under pressure.
• Demonstrated experience with incident response planning, execution, and post-incident analysis aligned with National Institute of Standards and Technology (NIST) SP 800-61 and the NIST Cybersecurity Framework (CSF).
• Knowledge of at least one general cybersecurity regulatory and compliance frameworks (e.g. NIST, Cybersecurity Maturity Model Certification (CMMC), Defense Acquisition Regulations System (DFARS), or International Organization for Standardization (ISO) 27001)
• Excellent verbal and written communication skills, including the ability to brief technical and executive audiences.
• Master’s degree in Cybersecurity, IT, Computer Science, or a related field.
• Industry certifications such as the Global Information Assurance Certification Certified Incident Handler (GCIH), Certified Information Systems Security Professional (CISSP), GIAC Certified Forensic Analyst (GCFA), or Certified Ethical Hacker (CEH).
• Experience with forensic investigations and evidence preservation techniques.
• Familiarity with cloud incident response and hybrid environments (e.g., Azure, Amazon Webb Services (AWS), or Google Cloud Platform (GCP)).
• Experience working in critical infrastructure or national security environments such as energy, defense, or government sectors.
• Direct experience supporting cybersecurity operations in the Department of Energy (DOE) and/or National Nuclear Security Administration (NNSA) environments, including: DOE Orders (e.g., DOE O 201.5C – Cyber Security Program)
• NIST 800-series guidance applied to federal systems
• Site Cybersecurity Plans (CSP), Authorizations to Operate (ATO), and Risk Management Framework (RMF) implementation
• Integration with Safeguards & Security program
  
  

Why Pantex?

You get #morethanajob. We encourage employees to achieve a healthy personal balance among home, work and the community. One of the ways we embrace work-life balance is by offering flexible work arrangements that provide alternatives to the traditional workweek, while still meeting business needs. Top talent and personal commitment mean more to our success than any other factors, so we reward our people with the kinds of benefits that make a positive difference in the quality of their lives. Benefits such as: medical plan, prescription drug plan, vision plan, dental plan, employer matched 401(k) savings plan, disability coverage, education reimbursement and many more. Want to stay healthy and fit but hate the cost of a gym membership? Take advantage of one of our onsite workout facilities and eat healthy in our onsite cafeterias. Much more than a workplace, at Pantex you can build a career that lasts a lifetime.

Notes

The minimum education and experience for the lowest career level in the job posting range are listed under Minimum Job Requirements. Successful candidates hired into a higher career level than the minimum in the range must meet the requirements listed in the job leveling charts for the career level into which they are being hired.

If a range of Career Levels is posted, i.e., Senior Associate to Senior Specialist, internal applicants already in one of the Career Levels would come across at their current Career Level. Internal applicants currently in a lower level Career Level would move to the lowest posted Career Level.

Requires a Q clearance; however all qualified candidates will be considered regardless of their current clearance status. The ability to obtain and maintain a Department of Energy Q clearance is required.

Position may require entry into Materials Access Areas (MAA) and participation in the Human Reliability Program (HRP). If HRP is required, candidate must complete a counterintelligence-scope polygraph, pursuant to 10CFR 709. Medical requirements may apply.

Pantex is a drug-free workplace. Candidates accepting a job offer will be required to pass a pre-placement physical, drug screening and background investigation. As an employee, you may be required to receive and maintain a security clearance from the United States Department of Energy in order to meet eligibility requirements for access to sensitive information or matter. U.S. citizenship is a requirement for security clearance applicants. All employees are subject to being randomly selected for drug testing without advance notification.

Pantex is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, sex, age, religion, national origin, ancestry, genetic information, disability or veteran status.