Incident Response Analyst
Tasks
- Conduct post-incident reviews and lessons learned
- Define cybersecurity technical roadmap
- Develop incident response methodologies
- Direct incident response team methods and staffing
- Ensure rapid incident containment and eradication
- Establish incident response tools and platforms
- Guide incident prevention detection analysis
- Integrate threat intelligence
- Lead cybersecurity incident response
- Manage incident lifecycle
- Perform digital forensics
- Support DoD IA policy compliance
Perks/Benefits
- N/A
Skills/Tech-stack
Access Management | Advanced Persistent Threats | Automation and response | Chain of Custody | Cortex XSOAR | DOD RMF | Defender for Endpoint | Detection and Response | Detection and prevention | Digital forensics | Encryption | Endpoint Detection and Response | Endpoint detection | Event management | ISO/IEC | ISO/IEC 27035 | Incident Response | Incident lifecycle | Incident lifecycle management | Intelligence platforms | Intrusion Detection | Intrusion detection and prevention | Jira Service | Jira Service Desk | Lifecycle Management | Log Aggregation | MISP | Microsoft Defender | Microsoft Defender for Endpoint | Microsoft Sentinel | NIST SP | NIST SP 800 | NIST SP 800-61 | Nessus | OpenVAS | PKI | Palo Alto | Palo Alto Cortex | Palo Alto Cortex XSOAR | Persistent threats | Public Key Infrastructure | Public key | Qualys | SOAR | Security Automation | Security Information | Security Information and Event | Security Information and Event Management | Security Orchestration | Security Orchestration Automation | Security Orchestration Automation and Response | SentinelOne | Service Desk | ServiceNow | Snort | Splunk | Suricata | TACLANE | Threat Intelligence | Threat intelligence platforms | ThreatConnect | Trellix | Vulnerability Management | Zeek
Education
N/A
Related jobs
-
Engineering Analyst, Google Ads, Trust and Safety USD 132K-189KAbuse detection | Cyber Security | Data Analysis | Data Quality | Fraud DetectionMid-level Full TimeSunnyvale, CA, USA3h ago
-
Cybersecurity Operations Analysts Principals #IN1269 USD 127K-155KAutomation and response | Business Relationship Management | Business relationship | Cause analysis | Computer forensicsSenior-level Full TimeColumbus, IN, United States4h ago
-
Senior GRC Analyst USD 133K-166KAccess Management | Application Security | CMMC | COBIT | Compliance401k | Disability insurance | Employee stock purchase plan | Health insurance | Life insuranceSenior-level Full Time#, TX, US,8h ago
-
Senior IT Architect / Technical Manager USD 152K-200KAWS | Amazon EKS | Ansible | Application Firewall | AzureSenior-level Full TimeFairfax, United States13h ago
-
Associate Director Network Security USD 140K-160KAWS | Ansible | Automation | Azure | Cause analysis401k match | Dental insurance | Employee stock purchase plan | Health insurance | Life insuranceMid-level Full TimeHQ Evansville IN-601 N.W. 2N, United …14h ago
-
SOC Analyst USD 117K-143KAntispam | Antivirus | Cyber Kill Chain | Cybersecurity frameworks | False Positive Triage401k | Dental insurance | Disability insurance | Health insurance | Leave ProgramMid-level Full TimeSunnyvale, CA, United States15h ago
-
Operational Risk Manager - Cybersecurity USD 100K-135KBanking Operations | Cause analysis | Change Management | Control Self-Assessment | CybersecurityEducation reimbursement | Flexible work arrangements | Maternity leave | Medical, dental, and vision insurance | Paid time offMid-level Full TimeUnited States16h ago
-
Sr. Embedded Detection Analyst USD 140K-207KAI tools | Alert Correlation | Cause analysis | Data Analysis | Detection engineeringSenior-level Full TimeRemote - USA R16h ago
-
Senior-level Full TimeRemote - United States R18h ago
-
Security Solutions Manager – Micro-Segmentation USD 150K-170KAccess Management | Cisco Secure | Cisco Secure Workload | Data Protection | Enterprise segmentation401k plan | Bereavement leave | Disability insurance | Employee assistance program | Employee discount programMid-level Full TimeRemote - Nationwide, United States R21h ago
-
800-53 | Access Management | Cloud Security | Cyber Threat | Cyber Threat IntelligenceAnnual flu vaccinations | Dental coverage | Discounted gym membership | Flexible working | Hybrid workingExecutive-level Full TimeIselin, New Jersey, United States21h ago
-
Manager of Cloud Infrastructure Enablement USD 95K-165KAWS | Access Controls | Access Management | Automation | Availability ManagementHybrid work | Limited travel | On-call supportMid-level Full TimeMiami Lakes, FL, United States21h ago
-
Product Manager, Managed Firewall USD 131K-212KAccess Management | Battlecards | Cloud Security | Competitive Analysis | CybersecurityRemote workMid-level Full TimeUnited States R22h ago
-
Senior-level Full TimeSan Antonio, TX22h ago
-
NIST | Remediation planning | Risk classification | Vulnerability Management | Vulnerability scanning100 percent remote | TeleworkMid-level Full TimeAustin, TX R22h ago
-
Security Analyst II (Weekday Afternoons) USD 77K-97KAlert triage | Cloud Identity | EDR | Email Security | Google SecOps401k retirement plan | Dental insurance | Disability insurance | Flexible time off | Medical insuranceMid-level Full TimeTampa, FL Hybrid R23h ago
-
Information Security Intern USD 110K-135KAWS | Access Control | Amazon Linux | Amazon Web Services | BashEntry-level InternshipBurlington, MA23h ago
-
Audit & Information System Security Officer (ISSO) USD 86K-176K800-53 | Audit Logging | Compliance reporting | Control Assessment | Detection and ResponseSenior-level Full TimeWashington, DC1d ago
-
Part-time/Weekend SOC Analyst (6522) USD 134K-144KAutomation | Capture analysis | Endpoint Security | Firewalls | Forensics401k retirement plan with company match | Dependent care | Employee Assistance and Wellness Programs | Flexible work arrangements | Health, dental, and vision insuranceMid-level Part TimeWashington, DC1d ago
-
IT Security Analyst USD 64K-84KFirewall | Incident Response | Intrusion Detection | Intrusion Detection System | Intrusion PreventionHybrid workSenior-level Full TimeMain Campus - Administration Toledo, OH R1d ago
-
Cybersecurity Principles | Cybersecurity frameworks | Intelligence Analysis | Risk Management | Security recommendationsMentorship | Onsite 5 days per week | Professional developmentSenior-level Full TimeBaltimore, Maryland, United States1d ago
-
Info Systems Security Manager USD 98K-134K800-37 | 800-53 | Active Directory | Apache | Change ManagementMid-level Full TimeMain Campus (Gainesville, FL)1d ago
-
Assoc. Cybersecurity Analyst USD 70K-80K800-53 | CIS Critical Security Controls | Compliance Management | Critical Security Controls | CybersecurityMid-level Full TimeNashville, TN, United States1d ago
-
Engineering Analyst, Trust and Safety Account Security USD 132K-189KAutomation | Cause analysis | Cybersecurity | Data Analysis | Incident ResponseRotating on call coverage | Weekend and holiday coverageMid-level Full TimeKirkland, WA, USA1d ago
-
Manager, Information Security USD 150KAudit management | HIPAA | IDM | ISO | Incident ResponseDental insurance | Flexible spending | Health insurance | Paid time off | Retirement plansMid-level Full TimeNew York, NY, United States1d ago