Incident Response Senior Analyst

ABOUT US 

We are Alter Domus. Meaning “The Other House” in Latin, Alter Domus is proud to be home to 85% of the top 30 asset managers in the alternatives industry, and more than 5,000 professionals across 23 countries. 

With a deep understanding of what it takes to succeed in alternatives, we believe in being different. Invest yourself in the alternative, and join an organization where you progress on merit, where you can speak openly with whoever you are speaking to, and where you will be supported along whichever path you choose to take. 

Find out more about life at Alter Domus at careers.alterdomus.com  

We are seeking a highly skilled and detail-oriented Cybersecurity Incident Response Senior Analyst to join our team. The ideal candidate will be responsible for monitoring, analyzing, and responding to cybersecurity incidents, ensuring the organization's digital assets and data remain secure. This role is critical in identifying vulnerabilities, mitigating risks, and maintaining compliance with security policies and standards. 

RESPONSIBILITIES:

• Respond to security incidents.
• Lead and manage alerts, investigate, contain, and eradicate the cyber threats.

• Conduct forensic investigations to identify the root cause of security breaches and recommend preventive measures. 
• Participate in post-incident reviews to identify lessons learned.
• Coordinate with internal teams and external partners during incident containment, eradication, and recovery efforts. 

• Monitor security information and event management (SIEM) systems, intrusion detection/prevention systems (IDS/IPS), and other tools for suspicious activity. 
• Investigate and assess potential threats, vulnerabilities, and attack vectors. 

• Create detailed incident reports, document findings, remediation steps, and lessons learned. 
• Maintain and update incident response playbooks and processes. 

• Participate in Tabletop exercise and incident response trainings for other stakeholders.
• Creation of use cases for security alerts.
• Develop and implement strategies for prioritizing ingestion of logs into SIEM.
• Create standard operating procedure documentation for incident response.
• Work on threat assessment, and hunting.
• Conduct breach and attack simulations.
• Provide expert guidance and support to IT during incident investigation.
• Stay current with emerging security threats, vulnerabilities, and industry best practices.
• Emphasizing customer experience as a central measure of success, ensuring that Cyber threats are addressed in a manner that minimizes disruption and enhances the client's satisfaction.
• Improve reporting maturity through automation, consolidation, and other techniques as necessary.

PROFILE:

• Bachelor’s degree in computer science, information security, or related professional experience.
• Minimum of 3 to 5 years of experience in incident response, Security operation, threat management.
• Strong knowledge of SIEM, and SOAR environment.
• Hands-on experience with IDS/IPS, and endpoint protection platforms. 
• Working knowledge of Azure Defender and AWS security suite (GuardDuty, Security Hub).
• Knowledge of network device configurations and standards (Firewalls, Switches, NSGs).
• Knowledge of common operating systems MacOS, Linux and Windows OS.
• Familiarity with malware analysis, reverse engineering, and forensic tools. 
• Strong cross functional communication skills and the ability to work closely with internal teams & lead cyber incident remediation efforts.
• Familiarity with common security frameworks and standards, such as NIST.
• Knowledge of the Adversarial Tactics, Techniques, and Common Knowledge or MITRE ATT&CK framework.
• Excellent analytical, problem-solving, and communication skills.
• Ability to work independently and as part of a team.
• Relevant certifications, such as CompTIA Security+, GIAC Certified Incident Handler (GCIH), CISSP, GSEC, CEH, or similar Cybersecurity certifications are a plus.
• Proficiency in scripting languages (e.g., Python, PowerShell) and operating systems (Windows, Linux, macOS) will be preferred.

• Ability to work under pressure and prioritize tasks during high-stress incidents. 

WHAT WE OFFER:

We are committed to supporting your development, advancing your career, and providing benefits that matter to you. 

Our industry-leading Alter Domus Academy offers six learning zones for every stage of your career, with resources tailored to your ambitions and resources from LinkedIn Learning. 

Our global benefits also include: 

• Support for professional accreditations such as ACCA and study leave 
• Flexible arrangements, generous holidays, birthday leave
• Continuous mentoring along your career progression 
• Active sports, events and social committees across our offices 
• Support with mental, physical, emotional and financial support 24/7 from our Employee Assistance Program 
• The opportunity to invest in our growth and success through our Employee Share Plan 
• Plus additional local benefits depending on your location 

Equity in every sense of the word 

We are in the business of equity, in every sense of the word. For us, this means taking action to ensure every colleague has equal opportunity, valuing every voice and experience across our organisation, maintaining an inclusive culture where you can bring your whole self to work, and making Alter Domus a workplace where everyone feels they belong. 

We celebrate our differences, and understand that our success relies on diverse perspectives and experiences, working towards shared goals and a common purpose. Thanks to the work of our Group DE&I Committee and network of DE&I Champions, we empower all of our people to be truly invested in the alternative.  

We are committed to ensuring an inclusive recruiting and onboarding process. Please contact our hiring team if you require any accommodations to make our recruitment process more accessible for you. 

(Alter Domus Privacy notice can be reviewed via Alter Domus webpage: https://alterdomus.com/privacy-notice/)

#LI-HYBRID