Cyber Incident Handling Analyst / Active TS/SCI
Tasks
- Conduct post-incident analysis
- Contain and eradicate threats
- Coordinate incident response actions
- Document incident timelines and evidence
- Escalate incidents based on severity
- Maintain incident tracking systems
- Monitor security event feeds
- Perform root cause analysis
- Triage security alerts
- Update incident response playbooks and SOPs
Perks/Benefits
- N/A
Skills/Tech-stack
Alert triage | Autopsy | Digital forensics | Elastic Stack | FTK | IDS | Incident Response | MITRE ATT&CK | NIST SP | NIST SP 800 | NIST SP 800-61 | Network Protocols | SIEM | Security alert triage | ServiceNow | Severity Assessment | Splunk | TheHIVE | Threat Severity Assessment | Traffic analysis | Volatility
Education
Related jobs
-
Junior Cyber Defense Consultant (m/w/d) EUR 55K-67KCorelight | CrowdStrike Falcon | Darktrace | Defender for Endpoint | Detection engineeringAdditional vacation days | Company events | Company vehicle allowance | Flexible working hours | LaptopEntry-level Full TimeDE - remote, Frankfurt am Main … R1d ago
-
Cyber Defense Consultant (m/w/d) EUR 70K-75KAutomation and response | Corelight | CrowdStrike Falcon | DFIR | DarktraceCompany car | Company events | Company pension | Flexible working hours | Job bike programMid-level Full TimeDE - remote, Frankfurt am Main … R1d ago
-
Cyber Systems Engineering, Lead Associate USD 104K-166KApache Kafka | ArcSight | Beats | Detection engineering | EQLSenior-level Full TimeWiesbaden Erbenheim Hesse, Germany1d ago
-
Cyber Systems Engineering, Lead Associate USD 104K-166KArcSight | Beats | Elastic Stack | Elasticsearch | GrafanaOn-site work | Shift workSenior-level Full TimeWiesbaden Erbenheim Hesse, Germany1d ago
-
DevOps Security Engineer EUR 103K-103KAPI Testing | AWS | AWS Secrets | AWS Secrets Manager | Access ControlDirect exposure to founders | High ownership role | High-impact role | Remote work | Team offsitesSenior-level Full TimeBerlin, Berlin, Germany - Remote R1d ago
-
Cyber Response Analyst / Active TS/SCI USD 104K-166KArcSight | Bash | DNS | Elastic Stack | ElasticsearchMid-level Full TimeWiesbaden Erbenheim Hesse, Germany2d ago
-
Senior Cyber Threat Analyst / Active TS/SCI USD 104K-166KAPT analysis | Anomali | DNS logs | Data Exfiltration Detection | Data exfiltrationSenior-level Full TimeWiesbaden Erbenheim Hesse, Germany2d ago
-
Senior Cyber Response Analyst / Active TS/SCI USD 104K-166KAnyRun | Cuckoo Sandbox | Detection engineering | Digital forensics | Elastic StackSenior-level Full TimeWiesbaden Erbenheim Hesse, Germany2d ago
-
Cyber Threat Analyst / Active TS/SCI USD 104K-166KAdvanced persistent threat | D3FEND | DNS | Elastic Stack | FirewallMid-level Full TimeWiesbaden Erbenheim Hesse, Germany2d ago
-
Senior Cyber Incident Handling Analyst / Active TS/SCI USD 104K-166KChain of Custody | Digital forensics | Elastic Stack | Event triage | IDSSenior-level Full TimeWiesbaden Erbenheim Hesse, Germany2d ago
-
Senior Cybersecurity Berater (m/w/d) EUR 51K-143KAWS | Azure | Cloud Security | EDR | EncryptionFlexible working hours | Home office option | Paid time off | Professional development support | Team eventsSenior-level Full TimeOffice - DEU - Hessen, Frankfurt, …2d ago
-
CyberArk PAM & Secrets Architect (f/m/d) EUR 40K-84K800-53 | AD/LDAP | Access Management | CI/CD | CyberArk ConjurFlexible working time models | Training and mentoringSenior-level Full TimeDEU DXC Boeblingen B01 Schickardstr. 32 …2d ago
-
IT Security Analyst - IT Security (all genders) EUR 50K-63KApplication Firewall | Automation | Blue Teaming | Cloudflare | DFIRAfter work drinks | Company events | Team lunchEntry-level Full TimeHamburg, HH, Germany2d ago
-
Application Firewall | Blue Teaming | Cloudflare | DFIR | Digital forensicsSenior-level Full TimeHamburg, HH, Germany2d ago
-
Red Team Manager (m/w/d) EUR 91K-110KActive Directory | Adversary Tactics Techniques and Procedures | Adversary simulation | Adversary tactics | Amazon Web Services30 holidays | Business bike leasing | Coaching and mentoring | Company pension scheme | Flexible working hoursMid-level Full TimeMunich, Germany2d ago
-
Alert triage | Application Firewall | Blue Teaming | Cloud Native | Cloud SecuritySenior-level Full TimeHamburg, HH, Germany3d ago
-
IT Security Analyst (all genders) EUR 50K-63KApplication Firewall | Automation | Blue Teaming | Cloudflare | DFIREntry-level Full TimeHamburg, HH, Germany5d ago
-
Senior Security Analyst (all genders) EUR 60K-84KApplication Firewall | Blue Teaming | Cloud Native | Cloud Security | Cloud-native EnvironmentsSenior-level Full TimeHamburg, HH, Germany5d ago
-
Senior Security Engineer, Incident Response GBP 91K-110KAWS | Access Control | Azure | Cloud Security | DFIRSenior-level Full TimeAmsterdam, Netherlands; Berlin, Germany; London, United … R6d ago
-
Security Engineer (m/w/d) EUR 50K-67KAWS | Azure | Cloud Security | Detection Systems | Endpoint SecurityBike leasing | Fitness studio access | Free lunch | Home office | Onboarding buddy programEntry-level Full TimeBochum, Germany7d ago
-
Senior Cybersecurity Incident Responder (f/m/d) EUR 66K-90KCause analysis | Cloud Security | Digital Forensics and Incident Response | Digital forensics | Incident ResponseSenior-level Full TimeOberkochen, Germany8d ago
-
Senior Threat Intelligence Analyst (f/m/d) EUR 67K-100KCloud Security | Dark Web | Dark Web Intelligence | Forensics | Google Threat IntelSenior-level Full TimeOberkochen, Germany8d ago
-
Security Engineer - Pre-Sales EUR 45K-78KBlue Team | CASB | Cloud Security | EDR | Incident ResponseBehavioral wellness services | Employee recognition program | Generous time off | Health insurance | Life insuranceMid-level Full TimeGermany9d ago
-
Senior Security Solutions Engineer EUR 60K-70KAWS | Application Security | Azure | Cloud Security | CybersecuritySenior-level Full TimeRemote - Germany R9d ago
-
IT Engineer EUR 66K-90KActive Directory | Agent monitoring | Alert triage | Audit compliance | BSI IT-GrundschutzSenior-level Full TimeDusseldorf, Germany9d ago