Incident Response Analyst

We’re in an unbelievably exciting area of tech and are fundamentally reshaping the data storage industry. Here, you lead with innovative thinking, grow along with us, and join the smartest team in the industry.

This type of work—work that changes the world—is what the tech industry was founded on. So, if you're ready to seize the endless opportunities and leave your mark, come join us.

About the Role

Pure Storage is seeking a dedicated Incident Response Analyst to join our incident response team in Prague. This pivotal role involves conducting initial assessments of security incidents, performing triage, following established incident response playbooks, and handling end-to-end incident response activities. You will serve as the frontline for escalating complex issues to senior staff while actively participating in comprehensive response efforts. 

Job Description

As an Incident Response Analyst, your primary role will be to respond to cyber security incidents, and additional responsibilities include:

• Monitor and analyze security alerts and incidents in real time using Pure’s SIEM and other technology
• Investigate and respond to security events promptly and effectively
• Provide support to other responders during security incidents and assist in post-incident analysis. 
• Apply sound forensic practices during incident investigations
• Collaborate with IT, Product and Security teams to refine security alerts and improve incident response actions and outcomes.
• Maintain and improve the configuration of security tools like SIEM, EDR, and NDR in support of detection strategies.
• Ability to create reports and metrics and present to all stakeholders, both technical and non-technical 
• Develop and implement automation in designing new security detections and content. 
• Engage in continuous security process improvements and stay up to date with the latest security threats and trends.

Qualifications:

• 8 years of combined security and IT experience & 3+ years of experience in a security operations center (SOC)
• Proficiency with security incident and event management (SIEM) systems, and endpoint detection and response (EDR) technologies.
• Knowledge of cloud security principles (AWS, Azure, GCP)
• Understanding of threat hunting methodologies, techniques and tools. 
• Strong understanding of network protocols, cybersecurity threats, incident management, forensic process, and troubleshooting methodologies.
• Excellent problem-solving skills and ability to work in a fast-paced, security-first environment.

Required Professional Experience

• 3+ years of experience with security incident and event management (SIEM) systems
• Proficiency in scripting languages (e.g., python, bash) for automation tasks
• Proven track record in security systems analysis and incident response.
• Experience in tuning and optimizing detection rules to minimize false positives and enhance overall security posture.

Preferred Professional Experience:

• Experience with cloud security architectures and solutions.
• Experience with EDR 
• Familiarity with regulatory compliance requirements like GDPR, HIPAA, or PCI-DSS that impact security operations.

Education

• Bachelor’s degree in Computer Science, Information Security, or related field.

Certifications

• Industry certifications such as CEH or GCIH are preferred.

WHAT YOU CAN EXPECT FROM US:

• Pure Innovation: We celebrate those who think critically, like a challenge and aspire to be trailblazers.
• Pure Growth: We give you the space and support to grow along with us and to contribute to something meaningful. We have been Named Fortune's Best Large Workplaces in the Bay Area™, Fortune's Best Workplaces for Millennials™ and certified as a Great Place to Work®!
• Pure Team: We build each other up and set aside ego for the greater good.

And because we understand the value of bringing your full and best self to work, we offer a variety of perks to manage a healthy balance, including flexible time off, wellness resources and company-sponsored team events. Check out purebenefits.com for more information.

ACCOMMODATIONS AND ACCESSIBILITY:

Candidates with disabilities may request accommodations for all aspects of our hiring process. For more on this, contact us at TA-Ops@purestorage.com if you’re invited to an interview.

WHERE DIFFERENCES FUEL INNOVATION:

We’re forging a future where everyone finds their rightful place and where every voice matters. Where uniqueness isn’t just accepted but embraced. That’s why we are committed to fostering the growth and development of every person, cultivating a sense of community through our Employee Resource Groups and advocating for inclusive leadership. At Pure Storage, diversity, equity, inclusion and sustainability are part of our DNA because we believe our people will shape the next chapter of our success story.​ 

Pure Storage is proud to be an equal opportunity employer. We strongly encourage applications from Indigenous Peoples, racialized people, people with disabilities, people from gender and sexually diverse communities, and people with intersectional identities. We also encourage you to apply even if you feel you don’t match all of the role criteria. If you think you can do the job and feel you’re a good match, please apply.