Incident Responder
Tasks
- Analyze SIEM alerts
- Collect and analyze forensic data
- Conduct after-action reviews
- Conduct counterintelligence activities
- Create SOPs and security playbooks
- Develop operational templates
- Develop threat actor dossiers
- Document work in JIRA
- Hunt for threats
- Implement WAF rules
- Perform malware triage
- Perform root cause analysis
- Provide incident response support
- Recommend security posture improvements
- Respond to technical requests via ITSM
- Review SOC incident reports
- Review open-source intelligence
- Track incidents to resolution
- Troubleshoot endpoint detection issues
Perks/Benefits
- Agile team collaboration
- Low Risk Public Trust Suitability Determination support
- Onsite and remote work schedule
Skills/Tech-stack
Active Directory | Agile | Application Firewall | Auditd | Cause analysis | Counterintelligence | CrowdStrike | EDR | Enterprise Security | Event analysis | Forensics | HEAT | ITSM | Incident Response | Jira | Malware analysis | Microsoft Active Directory | Microsoft Azure | Microsoft Office | Microsoft Office 365 | Microsoft Sentinel | Netscout | Office 365 | Qualys | Root Cause Analysis | Root cause | Rule management | SIEM | SYNACK | Scrum | Security Event Analysis | ServiceNow | Splunk | Splunk Enterprise | Splunk Enterprise Security | Sysmon | Tenable Nessus | Threat Actor | Threat Actor TTPs | Threat Intelligence | Threat hunting | WAF Rule Management | Web Application | Web Application Firewall | Zscaler
Education
N/A
Roles
Regions
Countries
States
Related jobs
-
Senior Cyber Defense Incident Responder USD 60K-180KAfter-action reporting | Behavior analytics | Behavioral analytics | Cyber Threat | Cyber Threat IntelligenceOnsite work | TSSCI clearance requiredSenior-level Full TimeWashington, DC1d ago
-
Sr. Cyber Defense Incident Responder USD 135K-155KAccess Control | Anomaly Detection | Authentication | Authorization | Cyber Threat401k matching | Bereavement leave | Dental insurance | Disability insurance | Employee assistance programSenior-level Full TimeSan Antonio, TX, United States2d ago
-
Mid. Cyber Defense Incident Responder USD 110K-130KAccess Control | Anomaly Detection | Authentication | Authorization | Computer forensics401k plan with matching | Dental insurance | Employee assistance program | Health and wellbeing | HolidaysMid-level Full TimeSan Antonio, TX, United States2d ago
-
Cyber Threat Hunter USD 150K-180KActive Directory | Adversary Emulation | Agile Scrum | Cloud Access Security Broker | Cloud Security401k match | ADandD insurance | Computer reimbursement | Dental insurance | Disability insuranceSenior-level Full TimeBethesda, MD, United States2d ago
-
SOC Analyst T2 – Incident Responder USD 80K-90KAlert triage | Bash | DNS | Defender XDR | EDR24x7 SOC coverage | Occasional alternate shifts | Up to 15 percent travelMid-level Full TimeTampa, FL, US2d ago
-
Cyber Incident Responder USD 72K-116KCloud Security | Cybersecurity Framework | Detection Systems | Digital forensics | Event CorrelationRemote work option | Training and mentoring | Travel up to 25 percentSenior-level Full TimePA, Working at Home - Pennsylvania, …6d ago
-
Senior Cyber Incident Responder USD 86K-138KCloud Security | Cyber Threat | Cyber threat analysis | Data Analysis | Digital forensicsSenior-level Full TimePA, Working at Home - Pennsylvania, …6d ago
-
Cyber Security Operations Specialist Tier 3 USD 110K-115KAutomation | Data Analysis | Digital forensics | Incident Response | Indicator of Compromise401k match | Accrued PTO | Health/Dental/Vision | Life insurance | Long-term disabilitySenior-level Full TimeSpringfield, VA7d ago
-
HUD - Detection Engineer / Threat Hunter USD 117K-182KAWS | Analytics | Automation | Behavioral detection | Cloud SecurityPublic Trust Clearance | Remote workSenior-level Full TimeUnited States - Remote R7d ago
-
Threat Hunter USD 104K-166KAdversary Emulation | Anomaly Detection | Automation | Behavioral analytics | Detection engineeringSenior-level Full TimeHerndon, VA, United States8d ago
-
Senior Security Engineer, Threat Intelligence USD 165K-242KAPI Integration | Adversary Tradecraft | Canary Systems | Cloud Security | Data AnalysisDisability insurance | Employee Assistance Mental Wellness Benefits | Employee stock purchase program | Employer-sponsored 401k match | Flexible PTOSenior-level Full TimeLivingston, NJ / New York, NY …9d ago
-
Incident Responder, Journeyman USD 66K-106KATO | Case management | Cause analysis | Chain of Custody | Detection engineeringEntry-level Full TimeHerndon, VA, United States10d ago
-
Incident Responder, Senior USD 86K-138KATO | Cause analysis | Chain of Custody | Detection engineering | Digital forensicsSenior-level Full TimeHerndon, VA, United States10d ago
-
AWS | Alert triage | Azure | Cloud Security | DockerBuddy program | Hybrid workplace | Mentor program | On-call rotation | Paid time offSenior-level Full TimeNew York, New York, USA13d ago
-
Cyber Threat Intelligence Hunter USD 107K-195KCloud Security | Content Lifecycle | Content Lifecycle Management | DDoS Mitigation | DLPMentorship and leadership development | Travel as requiredSenior-level Full Time9397 Hickam Air Force Base HI, …14d ago
-
Senior Cyber Incident Responder USD 90K-189KApplication Security | Attack Lifecycle | Cloud Security | Cyber Threat | Cyber threat analysisContinuing education | Flexible time off | Healthcare | Learning resources | Retirement benefitsSenior-level Full Time1B7 ST. LOUIS MO, United States15d ago
-
Automation | Automation and response | Build pipelines | CI/CD | CloudProfessional development opportunities | Travel opportunitiesSenior-level Full TimeColorado Springs, CO, United States16d ago
-
Cyber Threat Specialist USD 96K-130KCellebrite | Computer forensics | Data Recovery | Detection engineering | Digital forensicsOn-call support | Shift work | Travel as neededSenior-level Full TimeSavannah, GA, US16d ago
-
Sr. Threat Hunter (Remote) USD 125K-180KCloud Computing | Cloud Security | Cybersecurity | Digital forensics | EDRPaid adoption leave | Paid parental leave | Professional development | Remote workSenior-level Full TimeUSA TX Remote, United States R16d ago
-
Threat Hunter USD 94K-118KAWS | Active Directory | Azure | Bash | Command Line401k retirement plan | Dental insurance | Disability insurance | Flexible time off | Medical insuranceSenior-level Full TimeTampa, FL Hybrid R17d ago
-
Cyber Threat Hunter USD 131K-237KElasticsearch | Incident Response | Intrusion Detection | Log Analysis | Malware analysisSenior-level Full Time9615 Ashburn VA Non-specific Customer Site, …17d ago
-
Incident Responder USD 110K-170KCybersecurity | EDR | Endpoint protection | Incident Response | Log Analysis401k match | Company-paid medical premium | Daily lunch allowance | Dental insurance | Education reimbursementSenior-level Full TimeGreenwich, CT20d ago
-
Incident Responder USD 110K-140KCause analysis | Cybersecurity | EDR | Endpoint protection | Incident Response401k match | Counseling services | Daily lunch allowance | Dental insurance | Education reimbursementMid-level Full TimeFort Lauderdale, Florida, United States20d ago
-
Incident Responder USD 110K-140KCybersecurity | Detection and Response | EDR | Endpoint Detection and Response | Endpoint detection401k match | Dental insurance | Education reimbursement | Employee assistance program | Health insuranceSenior-level Full TimeChicago, IL20d ago
-
Countermeasures | Cyber Threat | Cyber Threat Detection | Detection and Response | EDRMid-level Full TimeArlington/Rosslyn, Virginia, United States20d ago