Incident Response Expert
Tasks
- Analyze SIEM data
- Analyze data sources
- Analyze endpoint data
- Analyze logs
- Analyze memory artifacts
- Analyze network traffic
- Communicate findings to stakeholders
- Conduct forensic investigations
- Detect advanced persistent threats
- Develop investigation reports
- Identify indicators of compromise
- Map attacker tactics and techniques
- Perform host forensics
- Perform network forensics
- Perform threat hunting
- Support continuous improvement
- Triage malware
- Use investigation playbooks
Perks/Benefits
Skills/Tech-stack
AWS | Azure | Cloud platform | CrowdStrike | DNS | Digital forensics | EDR | EnCase | Endpoint Forensics | FTK | File systems | Google Cloud | Google Cloud Platform | HTTP | HTTPS | Incident Response | Linux forensics | Log Analysis | MacOS forensics | Malware analysis | Memory Forensics | Microsoft Defender | Mitre Attack | Network Traffic | Network Traffic Analysis | PCAP | Powershell | Python | Registry Forensics | SIEM | SMB | SentinelOne | Splunk | Threat hunting | Traffic analysis | Velociraptor | Windows forensics | Wireshark | XWays
Education
Regions
Countries
States
Cities
Related jobs
-
Embedded Intelligence Analyst USD 130K-130KBrandwatch | CLEAR | Crisis management | Dark Web | Deep Web401k match | Employee assistance program | Employee discount program | Life insurance | Long-term disabilityMid-level Full TimeSan Jose, CA, United States R11h ago
-
Access Control | Contract Review | Cybersecurity Framework | Data Protection | Incident ResponseSenior-level ContractAustin, United States14h ago
-
Threat Analyst, Mandiant Custom Intelligence USD 113K-161KAdversary Tactics Techniques and Procedures | Adversary tactics | Artificial Intelligence | Cyber Threat | Cyber Threat IntelligenceMid-level Full TimeVirginia, USA; United States17h ago
-
Access Management | Client certificates | Disk encryption | Documentation | Endpoint SecurityDental coverage | Flexible spending accounts | Health coverage | Paid Holidays | Paid parental leaveMid-level Full TimeCincinnati, OH, US, 4522122h ago
-
Associate Cyber Security Analyst (Remote) USD 61K-104KAWS | Access Control | Azure | Cybersecurity | Endpoint protectionOn-call rotation | Remote work | Travel 1-2 times per yearMid-level Full TimeNationwide Remote Office (US99), United States R1d ago
-
Senior Quantitative Risk Manager - BSA/AML USD 148K-247KData Analysis | Data Governance | Enterprise Miner | Machine Learning | Model MonitoringSenior-level Full TimeBuffalo, NY, United States1d ago
-
Vice President Enterprise Risk Management USD 160K-190KCapital modeling | Excel | Model Governance | Own Risk and Solvency Assessment | PythonExecutive-level Full TimeNY-NYC (Ave of Americas), United States1d ago
-
Digital Network Exploitation Analyst (DNEA 2) USD 75K-158KComputer Network Security | Computer forensics | Computer network | Cybersecurity | Data AnalysisContinuing education | Family support | Flexible time off | Healthcare | Learning resourcesMid-level Full Time0IW FORT MEADE MD, United States1d ago
-
Information Security Analyst USD 81K-107K800-171 | AWS | Access Control | Access reviews | Azure401k match | 9/80 schedule | Healthcare | Paid maternity and parental leave | RemoteMid-level Full TimeMojave, CA R1d ago
-
Cyber Assurance Auditor Associate USD 83K-108KACAS | Correlation logic | DISA Security Technical Implementation Guide | DISA security | IBM QRadar401k | Company Paid LifeandAD&D | Paid Holidays | Paid parental leave | Paid time offMid-level Full TimeHuntsville, Alabama, United States1d ago
-
Junior Cybersecurity Analyst - NYC USD 44K-50KCompliance | Cybersecurity | IT Operations | Incident Response | Report Writing401k match | Federal Holidays | Gym membership stipend | Healthcare stipend | In-office snacksEntry-level Full TimeNew York, NY1d ago
-
IAM Analyst (Tier 1) USD 82K-104KAccess Management | Access Modification | Access deprovisioning | Access provisioning | Cybersecurity complianceMid-level Full TimeWashington, DC, United States1d ago
-
Offensive Security Analyst USD 74K-88K.NET | Attack Path | Attack path mapping | Attack surface | Attack surface managementBackground checks | Onsite work requirementEntry-level Full TimeBirmingham, AL, United States1d ago
-
Information Security Analyst II USD 123K-157KAWS | Audit Lifecycle | Automation Scripting | Azure | Control TestingCommunity events and learning talks | Employee resource groups | Employee stock purchase plan | Hybrid work | Mental health benefitsSenior-level Full TimeNew York, New York, USA1d ago
-
Cybersecurity | Documentation | Incident Response | Network Security | Security ComplianceMid-level Full TimeLackland AFB, TX1d ago
-
Cyber Action Officer III USD 102K-143KComputer Network Defense | Computer Network Defense policies | Computer network | Cyber Hygiene | Incident ResponseSenior-level Full TimeArlington, VA1d ago
-
Cyber Threat Analyst II USD 90K-130KAlert triage | Application Security | Buffer overflow | Computer Network Defense | Computer networkMid-level Full TimeArlington, VA1d ago
-
Cybersecurity Analyst USD 95K-105KData Visualization | Endpoint protection | Firewalls | Forensics | IDS401k match | Commuter benefits | Flexible work options | Holidays | Medical, dental, vision benefitsMid-level Full TimeWashington, DC1d ago
-
Information Security Analyst USD 88K-102KCybersecurity | DISA STIG | DOD RMF | Incident Response | NISTMid-level Full TimeSan Diego, CA, US1d ago
-
Security Engineer, Insider Threat Detection & Response USD 230K-385KAdversary tactics | Attack Path | Attack Path Analysis | Bash | Cloud infrastructureMid-level Full TimeSan Francisco1d ago
-
Threat Analysis Test Engineer USD 78K-123KData Analysis | Digital forensics | ELK | Flow data | Flow data analysisMid-level Full TimeHUNTSVILLE, AL, United States2d ago
-
Threat Analysis Test Engineer USD 180KCyber Threat | Cyber threat hunting | Data Analysis | Digital forensics | ELKMid-level Full TimeColorado Springs, CO, United States2d ago
-
Agile Framework | Cyber Threat | Cyber Threat Intelligence | Cybersecurity frameworks | DatabricksOn site days per week | Telework optionSenior-level Full TimeVirginia Client Office (VA88), United States2d ago
-
ACAS | Assessment and Authorization | CISSP | Certification testing | Continuous Monitoring401k matching | 9/80 work schedule | Company-Paid Holidays | Health insurance | Life and disability insuranceSenior-level Full TimeCOAU01, United States2d ago
-
Principal Classified Cybersecurity Analyst - Secret USD 103K-155KACAS | Assessment and Authorization | Continuous Monitoring | Information security | Management Framework401k matching | 9/80 work schedule | Company-Paid Holidays | Disability insurance | Health insuranceSenior-level Full TimeCOCO01, United States2d ago