Incident Response Expert
Tasks
- Analyze SIEM data
- Analyze data sources
- Analyze endpoint data
- Analyze logs
- Analyze memory artifacts
- Analyze network traffic
- Communicate findings to stakeholders
- Conduct forensic investigations
- Detect advanced persistent threats
- Develop investigation reports
- Identify indicators of compromise
- Map attacker tactics and techniques
- Perform host forensics
- Perform network forensics
- Perform threat hunting
- Support continuous improvement
- Triage malware
- Use investigation playbooks
Perks/Benefits
Skills/Tech-stack
AWS | Azure | Cloud platform | CrowdStrike | DNS | Digital forensics | EDR | EnCase | Endpoint Forensics | FTK | File systems | Google Cloud | Google Cloud Platform | HTTP | HTTPS | Incident Response | Linux forensics | Log Analysis | MacOS forensics | Malware analysis | Memory Forensics | Microsoft Defender | Mitre Attack | Network Traffic | Network Traffic Analysis | PCAP | Powershell | Python | Registry Forensics | SIEM | SMB | SentinelOne | Splunk | Threat hunting | Traffic analysis | Velociraptor | Windows forensics | Wireshark | XWays
Education
Regions
Countries
States
Cities
Related jobs
-
Bash | Incident Response | JSON | MITRE ATT CK | PowershellFully remoteSenior-level Full TimeColumbia, SC, United States R4h ago
-
Awareness Training | Control Assessment | Excel | Governance | Incident ResponseSenior-level Full TimeColumbia, SC, United States4h ago
-
Authentication | Compliance | Encryption | Firewall | Incident ResponseMid-level ContractPhoenix, United States6h ago
-
Information Systems Security Analyst II USD 127K-193KAccess Control | Backup and Recovery | Capacity Management | Capacity Planning | Change ControlCustomer-facing support | On-call support rotation | Training and onboarding | Vendor collaborationMid-level Full TimeAustin, TX, United States23h ago
-
Cyber Security Analyst Ii/Iii USD 90K-136KFirewall administration | Incident Response | Microsoft Office | Network Architecture | Network SecuritySenior-level Full TimeTampa, FL, US23h ago
-
Cyber Security Analyst I USD 86K-110KCybersecurity | Firewall | Incident Response | Microsoft Office | Network SecurityOn-call support rotation | Travel opportunitiesMid-level Full TimeTampa, FL, US23h ago
-
Security Operations Center Operator USD 56K-60KAccess Control | Access control systems | Alarm Monitoring | CCTV | Control SystemsEntry-level Full TimeNew York City, NY1d ago
-
Compliance tracking | Cyber Security | Event management | Incident Response | Information securityMid-level Full TimeLackland AFB, TX1d ago
-
Cybersecurity Incident Response Triage Analyst USD 57K-109KAWK | Active Directory | Data Loss Prevention | Data loss | Detection SystemsMid-level Full TimeArlington, VA1d ago
-
Information Security Analyst USD 81K-150KAccess Governance | Active Directory | Asset Management | Business Continuity | CIS Controls401k matching | Career advancement opportunities | Company-Paid Holidays | Company-sponsored events | Medical Dental and Vision packageMid-level Full TimeCleveland, OH, United States1d ago
-
Security Analyst USD 70K-80KDatabase Administration | Incident Response | Information security | Malware analysis | Network Security401k | Accident insurance | Critical illness insurance | Daycare FSA | Dental insuranceMid-level Full TimeTallahassee, Orlando, Jacksonville, Miami and Tampa1d ago
-
800-171 | Active Directory | CIS Controls | EDR | Endpoint SecurityMid-level Full TimeMilwaukee, Wisconsin, United States1d ago
-
Summer Internship - Security Engineering USD 50K-50KAWS | Access Control | Authentication | Azure | BashCollaborative team environment | Hands On Security Engineering Experience | Remote-first cultureEntry-level InternshipRemote, United States R1d ago
-
Sr. Blue Team Analyst USD 166K-333KAlerting | Cyber Threat | Cyber Threat Intelligence | Detection engineering | Event managementMentoring | Ongoing training | Remote workSenior-level Full TimeUnited States R1d ago
-
CTI Methodologies | Cyber Threat | Cyber Threat Intelligence | Enterprise antivirus | FirewallsSenior-level Full TimeCalifornia, USA1d ago
-
Associate Compliance Analyst, Public Sector USD 90K-128KAutomation | Cloud platform | Compliance Management | Data analytics | Generative AIMid-level Full TimeReston, VA, USA; Washington D.C., DC, …1d ago
-
Cybersecurity Analyst USD 50KAccess Control | Authentication Protocols | Change Management | DNS | DNS Filtering401k match | Accident Supplemental Plan | Adoption Assistance | Company-provided life insurance | Dental insuranceMid-level Full TimeDearborn, MI, 48126, US1d ago
-
Sr. Supply Chain Risk Management Analyst USD 131K-190KCompliance Auditing | Contract Review | Cybersecurity Policy | Cybersecurity Policy Development | Cybersecurity Supply Chain Risk ManagementSenior-level Full TimeSpringfield, VA, United States1d ago
-
IT Security Analyst USD 100K-130KAlert triage | All source analysis | Cyber Defense | Cyber Defense Monitoring | CybersecurityMid-level Full TimeSeymour Johnson AFB, NC, United States1d ago
-
Mid-level Full TimeArlington, VA1d ago
-
Cyber Investigation Analyst - OTA USD 112K-179KActivity monitoring | Digital Evidence | Digital evidence acquisition | Evidence acquisition | Log AnalysisMid-level Full TimeArlington, VA, United States1d ago
-
SOC Operations Analyst / Public Trust USD 66K-106KCyber Forensics | Cyber Threat | Cyber Threat Intelligence | Incident Response | Linux SecurityClassified environment work | Public Trust Clearance | Travel up to 25 percentMid-level Full TimeWarrenton, VA, United States1d ago
-
SOC Operations Analyst - Senior / Public Trust USD 86K-138KCyber Forensics | Event management | Incident Management | Incident Triage | Linux SecuritySenior-level Full TimeWarrenton, VA, United States1d ago
-
Cause analysis | Cloud Security | Compliance | Incident Response | LoggingMid-level Full TimeRoseville, CA1d ago
-
Cybersecurity Vulnerability Analyst USD 132K-180KApplication Security | Bash | Burp Suite | CVSS | Kali LinuxMid-level Full TimeLinthicum Heights, MD1d ago