Cyber Security Incident Response Team Analyst
Auburn Hills, MI, United States
USD 86K-123K (estimate) Mid-level Full Time
Tasks
- Analyze security logs
- Coordinate with global security teams
- Define Microsoft Sentinel use cases
- Detect threats
- Document incident response playbooks
- Gather threat intelligence
- Investigate security incidents
- Maintain SIEM operations
- Monitor security events
- Optimize Microsoft Sentinel dashboards and filters
- Perform threat hunting
- Support incident management
- Tune SIEM detections
Perks/Benefits
- N/A
Skills/Tech-stack
Databases | EDR | Firewall Log Analysis | IPS | Incident Management | Incident Response | Incident investigation | Log Analysis | Log Parsing | Microsoft Sentinel | Mitre Attack | Networking | Operating Systems | SIEM | Threat Intelligence | Threat hunting | Web Services | XDR
Education
Related jobs
-
Cyber Systems Engineer USD 185K-200KACAS | AWS | Active Directory | Ansible | Azure GovCloud401k with company matching | Bereavement | Disability insurance | Employee assistance program | Employee discount programSenior-level Full TimeSan Diego, CA, United States2h ago
-
Alert enrichment | Detection Systems | Detection and Response | Detection engineering | Endpoint Detection and Response24 7 SOC support | Holiday shifts | On-call rotations | Scheduled shift workMid-level Full TimeSan Jose, California, United States7h ago
-
Security Engineer 1, Application Security USD 100K-160KASLR | Application Security | Automation | Buffer overflow | C#401k match | Community events | Company paid insurance | Dental insurance | Disability insuranceEntry-level Full TimeUnited States - Remote R20h ago
-
Security Engineer II, Detection and Response USD 122K-165KAI Security | AI for SOC | AWS | Anomaly Detection | BlockchainMid-level Full TimeU.S. - California, United States R20h ago
-
AI Security Engineer USD 100K-150KAccess Management | Adversarial Machine Learning | Application Security | Cloud Security | CryptographyRemote workSenior-level Full TimeUnited States - Remote R20h ago
-
Senior Cyber Threat Hunter USD 130K-196KAWS | Automation | Bash | Cloud Security | Detection engineering11 paid holidays | Disability coverage | Discounted tuition | Flexible paid time off | Flexible spending accountSenior-level Full TimeWGU North Carolina, United States20h ago
-
Security Incident Response Engineer USD 75K-95K365 Security | Active Directory | Bash | Cause analysis | Cloud Security401k | Calm app subscription | Commuter benefits | Dental insurance | Disability insuranceMid-level Full Time100 Ottawa Ave Sw - GRAND …20h ago
-
Cloud Security | Compliance | Control Frameworks | Crisis management | Cyber Security401 k retirement plan | Dental insurance | Disability insurance | Health insurance | Life insuranceMid-level Full TimeHouston, TX (HO) - Digital & …20h ago
-
Sr Analyst, Information Security USD 117K-196KADCs | AV evasion | Active Directory | Adversary Emulation | Application exploitationSenior-level Full TimeLowe's Charlotte Technology Hub 3505, United …20h ago
-
Vulnerability Analyst USD 99K-225KCVSS | CWE | Compliance Monitoring | Cybersecurity reporting | Exploitability assessmentMid-level Full TimeUSA, DC, Washington (400 7th St …20h ago
-
8021X | Amazon Web Services | Authorization | Azure | C++Healthcare benefits | Onsite collaboration | Professional developmentSenior-level Full TimeSan Jose, CA20h ago
-
Senior Security Engineer, Incident Response USD 144K-214KAI-assisted workflows | API Integration | Automation | Bash | Cause analysisFree password manager account | Generous paid time off | Health & dental benefits | Maternity and Parental Leave Top-Up | Paid volunteer daysSenior-level Full TimeRemote (United States | Canada) R1d ago
-
ACAS | Anomaly Detection | ArcSight | CMRS | Computer SecuritySenior-level Full TimeIndianapolis, IN1d ago
-
Information Security Assurance Lead USD 98K-166KAssessment and Authorization | Audit tracking | Configuration Management | Control Testing | Cybersecurity complianceSenior-level Full TimeIndianapolis, IN1d ago
-
Security Team Lead USD 100K-150KChange Control | Configuration Management | DISA STIG | DNS | DNS SecurityOnsite work | Top secret clearance requiredSenior-level Full TimeBratenahl, OH1d ago
-
Mid-level Full TimeColumbia, SC2d ago
-
Agentic security | Artificial Intelligence | Autonomous security | Cloud Security | Enterprise SoftwareExecutive-level Full TimeSunnyvale, CA, USA; Kirkland, WA, USA2d ago
-
Sr. Cybersecurity Analyst III USD 180K-200KAccess Controls | Data encryption | Firewall | Forensic analysis | Incident Handling401k match | Dental insurance | Dependent care | Employee Assistance and Wellness Programs | Flexible work arrangementsSenior-level Full TimeWashington, DC2d ago
-
Security Operations Manager USD 108K-140K800-171 | AWS GovCloud | Bash | Behavioral analytics | CMMCTS SCI clearance process | TS clearance or higherMid-level Full TimeTorrance, CA2d ago
-
Cybersecurity Architect USD 172K-216KAccess Management | Certificate Lifecycle Management | Certificate lifecycle | Certificate revocation | Conditional AccessSenior-level Full TimeSan Jose, California, United States R2d ago
-
Government Cloud Investigations Analyst - CTJ - TS USD 119K-261K800-53 | Anomaly Detection | Auditability | Azure | Azure GovernmentMid-level Full TimeRedmond, WA, US; US2d ago
-
Security Operations Engineer I USD 125K-155KAccess Management | Alert triage | Automation | Azure AD | Cortex XDR401k retirement plan | Dental coverage | Medical coverage | Stock options | Vision coverageMid-level Full TimeRedondo Beach2d ago
-
Cyber Security Engineer (AI Implementation & Validation) USD 129K-170KAPI Integration | Adversary Emulation | Attack Simulation | Authentication | Cloud PlatformsMid-level Full TimePhoenix, AZ3d ago
-
Cyber Security Engineer (AI Operations & Optimization) USD 129K-166KAPI Integration | Automation | Dashboards | Governance | Incident ResponseMid-level Full TimePhoenix, AZ3d ago
-
Senior-level Full TimeVA, US3d ago