Cyber Defense Forensics Analyst
Tasks
- Analyze security incident artifacts
- Collect digital artifacts
- Conduct malware analysis
- Contain security incidents
- Coordinate incident response
- Develop fact based incident reports
- Develop incident response documentation
- Hunt threats using SIEM
- Identify indicators of compromise
- Investigate security incidents
- Obtain system access
- Perform digital forensic analysis
- Perform root cause analysis
- Provide incident metrics reporting
- Provide on-call incident response
- Provide threat consultation
- Remediate security incidents
Perks/Benefits
- 401k plan
- Dental coverage
- Hybrid work model
- Medical coverage
- On-call rotation
- Paid time off
- Pension plan
Skills/Tech-stack
Azure | C++ | Cause analysis | Computer forensics | Digital forensics | Electronic discovery | Incident Response | Incident documentation | Indicators of compromise | Linux | Log Correlation | Malware analysis | Powershell | Python | Root Cause Analysis | Root cause | SIEM | Security incident | Security incident documentation | Splunk | Threat hunting | Unix | Windows
Education
Bachelor of Engineering | Bachelor of Science | Master of Science
Related jobs
-
Sr. Purple Team Operator USD 85K-150KAdversary Emulation | Adversary simulation | Adversary tools | Attack Simulation | Breach and Attack Simulation401k match | Dental insurance | Employee assistance program | Employee stock purchase plan | Health insuranceSenior-level Full TimeAK, AL, AR, AZ, CA, CO, … R20h ago
-
Embedded Intelligence Analyst USD 130K-130KCrisis management | Data Analysis | Geopolitical risk | OSINT | Protective intelligence401k matching | Dental insurance | Disability insurance | Employee assistance program | Employee discount programMid-level Full TimeSan Jose, CA, United States R1d ago
-
SOC Analyst USD 86K-130KAuthentication Logging | CIS Critical Security | CIS Critical Security Controls | Case management | Critical Security ControlsOn-call support | Remote work | US security clearance supportMid-level Full TimeWork from home, VA, United States R1d ago
-
SOC Analyst (SR.) USD 111K-155KAI | Authentication Monitoring | Automation | Case management | Detection engineeringOn-call support | Remote work | Security clearance supportSenior-level Full TimeWork from home, VA, United States R1d ago
-
Acceptance Testing | Access Certifications | Access Control | Access Governance | Access HistorySenior-level Full TimeRemote, United States R1d ago
-
Sr. Open-Source Intelligence Analyst (Hybrid) USD 80K-132KAutomated Alerts | Dashboarding | Data Visualization | Fraud Detection | Fraud typologiesContract-to-hire | Hybrid work | Travel up to 25 percent | US government clearance supportSenior-level Full TimeArlington, VA, United States R2d ago
-
Acceptance Testing | Access Certification | Access Control | Access Governance | Access HistorySenior-level Full TimeRemote, United States R2d ago
-
Security Analyst/Intern USD 67K-144KAlert analysis | Antivirus | EDR | Event triage | FirewallCareer progression | Flexible arrangements | Hands-on training | MentorshipEntry-level Full Time Internship(DEAI DS) US Remote TX - … R2d ago
-
Analyst I, Falcon Complete (Hybrid, St Louis) USD 85K-120K.NET | C# | Computer forensics | Dynamic malware analysis | Incident ResponseHealth and wellness programs | Paid Holidays | Paid parental leave | Paid time off | Professional developmentEntry-level Full TimeSt. Louis, United States R2d ago
-
Staff Threat Intelligence Analyst USD 190K-210KAI | C# | C++ | Cybersecurity | Detection engineering401k match | Coaching platform | Digital reimbursement | Disability insurance | Education allowanceSenior-level Full TimeUnited States of America R2d ago
-
Senior Information Security Analyst USD 70K-80KActive Directory | Antivirus Management | DLP | Data Loss Prevention | Data lossSenior-level Full TimeTexas-Dallas-5323 Harry Hines Blvd R2d ago
-
Threat Intelligence Researcher (Cloud) USD 160K-220KData Sources | Incident Response | Infrastructure hunting | Malware analysis | Open Source401k retirement savings plan | Bereavement leave | Employee assistance program | Flexible paid time off | Flexible spending accountsMid-level Full TimeRemote - USA R2d ago
-
Acceptance Testing | Access Certifications | Access Control | Access Governance | Access HistorySenior-level Full TimeRemote, United States R3d ago
-
SIEM Solutions Engineer USD 66K-106KAlerting | Application logs | Bash | Dashboard Development | IndexingPublic trust clearance support | Remote workMid-level Full TimeUnited States R3d ago
-
Mid-level Full TimeUnited States - Remote R3d ago
-
Cybersecurity Analyst I (CYSECAI) USD 80K-120KAlert Tuning | Configuration Management | Detection engineering | Event management | Incident ResponseMid-level Full TimeRemote Worker, United States R3d ago
-
Incident Responder (Tier 2) USD 105K-135KAlert triage | Android Forensics | Cybersecurity | Digital forensics | IOS401k match | Dental insurance | Disability insurance | Flexible vacation | Health insuranceSenior-level Full TimeUnited States R3d ago
-
Sr. Security Analyst USD 90K-120KAutomation | Cloud Security | Elastic SIEM | Elasticsearch | Endpoint SecurityCustomer training | Remote work | Travel opportunitiesSenior-level Full TimeWork from home, VA, United States R3d ago
-
SOC Analyst USD 80K-110KAlienVault USM A | Cause analysis | CrowdStrike | DNS | EDRTraining and guidanceMid-level Full TimeUnited States - Remote R4d ago
-
API Security | AWS | Azure | Bash | CI/CDAfter-hours support | On-call rotation | On-the-job learning | Professional development | Weekend supportSenior-level Full TimeRemote - US, United States R4d ago
-
API Integration | API Security | Access Management | CASB | Cloud SecurityAfter-hours support | On-call rotation | On-the-job learning | Professional development opportunities | Weekend supportMid-level Full TimeRemote - US, United States R4d ago
-
Security Engineer II - AMZ9675347 USD 159K-202KApplication Security | Data confidentiality | Incident Response | Network Security | Penetration TestingFinancial benefits | Medical benefitsMid-level Full TimeSeattle, Washington, USA R4d ago
-
Cybersecurity Expert - RL USD 130K-200KAWS | Bash | Cloud platform | CrowdStrike | Cyber ThreatHigh autonomy | Hybrid work | In person Bangalore officeSenior-level Full TimeRemote R4d ago
-
Antivirus | Cisco Firewall | HIPAA | Incident Response | Intrusion DetectionMid-level Full TimeUniversity Health Truman Medical Center, United … R5d ago
-
Incident Handler USD 89K-133KAWS | Azure | Cause analysis | Command and control | Data exfiltration24 7 365 monitoring | Remote workMid-level Full TimeRemote - Virginia, United States R5d ago