Technical Incident Response Analyst - Hybrid
Elk Grove Village, IL, United States
R
USD 98K-140K (estimate) Mid-level Full Time
Tasks
- Analyze authentication endpoint network and application activity
- Analyze firewall logs IDS alerts and server logs
- Communicate incident status to leadership and teams
- Contain remediate threats
- Correlate incident data across SIEM IDS endpoint and firewall
- Document incident activity evidence and remediation
- Escalate incident findings
- Follow incident response playbooks
- Investigate security incidents
- Monitor cybersecurity alerts
- Participate in SOC working group sessions
- Perform log reviews using templates
- Review phishing emails and fraud attempts
- Track incidents end to end for closure
- Update alerts and incident response playbooks
- Validate firewall rule changes and configurations
- Verify change authorization and compliance
Perks/Benefits
- N/A
Skills/Tech-stack
365 Security | Anti-Malware | CIFS | Detection Systems | Endpoint protection | Firewall Management | IDS Alerts | Incident Response | Intrusion Detection | Intrusion Prevention | Intrusion Prevention Systems | Intrusion detection systems | Linux | Log Analysis | Microsoft 365 | Microsoft 365 Security | Microsoft Defender | NFS | Network Security | Prevention systems | SIEM | TCPIP
Education
N/A
Regions
Countries
States
Related jobs
-
Security Architect USD 140K-165KCloud Security | Detection Systems | Digital signatures | Firewalls | Intrusion DetectionRemote workSenior-level Full TimeWork from home, VA, United States R1d ago
-
Principal Security Engineer, Infrastructure Security USD 190K-263KAWS | CI/CD | Cloud IAM | Cloud Security | Cloud Security PostureSenior-level Full TimeUnited States | Remote R2d ago
-
Antivirus | CIS Controls | Detection Systems | Digital forensics | Email Security401k plan | Dental insurance | Medical insurance | Professional growth | Vision insuranceMid-level Full TimeLancaster, PA, US R2d ago
-
Senior Application Security Engineer (Remote) USD 192K-240KAWS | Application Security Testing | Bug Bounty | Code review | Design reviewLearning sessions | Mentorship | Remote workSenior-level Full TimeUnited States R2d ago
-
Senior Security Engineer I USD 140K-165KCall Support | Control Design | Governance Risk | Governance risk compliance | HIPAAConference reimbursement | Employee assistance program | Employee stock purchase program | Equity compensation | Flexible time offSenior-level Full TimeBoston R2d ago
-
Senior Security Engineer (Cyber Resiliency) USD 130K-150KAutomation | Cloud Security | Compliance | Endpoint Security | ForensicsCoworking stipend | Health insurance coverage | Paid parental leave | Phone and internet stipend | Remote-first cultureSenior-level Full TimeUnited States - Remote R2d ago
-
Security Analyst (Open to Remote) USD 65K-85KCloud Platforms | DHCP | DNS | Encryption | Incident Response401k matching | Commuter benefits | Dental insurance | Educational assistance | Health savings accountMid-level Full TimeNew York, NY, US, NY 10019 R3d ago
-
Manager, Security Operations (Remote) USD 193K-216KCloud Security | Data Analysis | Detection engineering | Endpoint Security | Identity logs401k plan | Dental insurance | Disability insurance | Employee assistance program | FSA/HSAMid-level Full TimeRemote - United States R3d ago
-
Tier 2 Monitoring Analyst - Senior USD 86K-138KAs-a-Service | Cloud Computing | Event analysis | Forensics | Incident ResponseFlexible schedule | Hybrid schedule after 90 days | Onsite first 90 daysSenior-level Full TimeArlington, VA, United States R3d ago
-
Threat Detection & Response Analyst (Tier 1) USD 80K-106KAntivirus | Cyber Kill Chain | Detection Systems | Detection and Response | Endpoint Detection and ResponseMid-level Full TimeWatermark - 410 North Scottsdale Road, … R3d ago
-
Security Systems Sales Engineer USD 100K-135KAI | Access Control | Bill of Materials | Intrusion Detection | Managed ServicesSenior-level Full TimeRemote - USA, United States R3d ago
-
AI Security Engineer USD 100K-150KAccess Control | Access Management | Adversarial ML | Application Security | AuthorizationSenior-level Full TimeUnited States - Remote R3d ago
-
Sr Security Engineer USD 144K-261KABAC | Access Management | Active Directory | Authentication | AuthorizationSenior-level Full TimeLehi, United States R3d ago
-
Cybersecurity Strategist - Clearance Required USD 119K-202KConfluence | Critical Infrastructure | Critical Infrastructure Protection | Cyber Defense | Cyber Defense ExercisesFully remote | Travel for client events several times per yearMid-level Full TimeNationwide Remote Office (US99), United States R3d ago
-
Senior Manager, Threat Detection and Response USD 133K-173KAlert Tuning | Automation | CIS Controls | Cloud Security | CybersecuritySenior-level Full TimeRemote - Anywhere - USA, United … R3d ago
-
SOC Cloud Analyst, Assistant Vice President USD 96K-144KAWS | Cloud Security | Google Cloud | Incident Response | Information security401k | Hybrid working model | Ongoing training and professional development | Paid time off | Relocation supportExecutive-level Full Time6400 LAS COLINAS BLVD IRVING, United … R3d ago
-
IT Security Administrator USD 115K-145KAccess Control | Atlassian Confluence | Atlassian Jira | Atlassian Service Management | DLPNo visa sponsorship | Remote work | Time zone coverage Eastern USMid-level Full TimeRemote, U.S. R3d ago
-
Senior Splunk Engineer USD 147K-234KAcceleration | Access Control | Alerting | Capacity Planning | Common Information ModelSenior-level Full TimeWork from home, VA, United States R3d ago
-
AI Security Architect (REMOTE - United States) USD 140K-195KAI Security | Artificial Intelligence | Azure | Azure Data | Azure Data LakeRemote work environmentSenior-level Full TimeFranklin, TN R3d ago
-
Security Operations Engineer USD 110K-150KAI Security | API Security | AWS | Azure | Azure AD401k match | Dental insurance | Flexible time off | Life insurance | Long-term disabilityMid-level Full TimeDallas, TX - Hybrid (3x in … R3d ago
-
Cryptography Engineer USD 145K-165K800-53 | ACDI Tools | Automated Cryptographic Discovery and Inventory | Automated cryptographic discovery | Continuous Monitoring401k matching | Certification support | Dental coverage | FSA benefits | Health coverageSenior-level Full TimeRemote / Telework, United States R4d ago
-
Senior Security Engineer USD 170K-190KAI Vendor Risk | AWS | Code review | Data Governance | Dependency security401k | Equipment provided | Equity compensation package | Flexible vacation policy | Fully remoteSenior-level Full TimeRemote (United States) R4d ago
-
FISMA | HIPAA | ISO 27001 | Incident Response | Information securityRotating on-call support | Rotating shiftsMid-level Full TimeRemote- South Carolina, United States R4d ago
-
Senior-level Full TimeUS, VA, Remote, United States R4d ago
-
AI Security Engineer USD 100K-150KAccess Management | Adversarial Machine Learning | Application Security | Authorization | Cloud SecurityHealth benefits | Remote work | W2 employmentSenior-level Full TimeUnited States - Remote R4d ago