Incident Response and Forensic Analyst
Tasks
- Analyze forensic disk images memory dumps network traffic and log data
- Analyze malware samples and attacker techniques
- Conduct digital forensic investigations to determine root cause scope and impact
- Conduct post-incident reviews and lessons learned sessions
- Coordinate with SOC IT operations legal and business stakeholders during incidents
- Develop incident response playbooks and forensic workflows
- Document incident timelines findings and remediation activities
- Identify indicators of compromise and map tactics techniques and procedures
- Lead incident response activities from detection through recovery
- Mentor junior analysts and share forensic expertise
- Preserve digital evidence using chain of custody
- Provide briefings and expert testimony on forensic findings
- Stay current on incident response and forensic methodologies
Perks/Benefits
- 401k plan
- Comprehensive health care and wellness plans
- Education assistance programs
- Flexible spending accounts
- Inclusive work environment built on teamwork flexibility and respect
- Paid holidays sick time and vacation
- Professional growth and development programs
- Relocation assistance
- Telework options
Skills/Tech-stack
Bash | Chain of Custody | Data Analysis | Detection and Response | Digital forensics | EDR | Endpoint Detection and Response | Endpoint detection | Evidence collection | Forensic analysis | Incident Response | Indicators of compromise | Linux forensics | Log Analysis | MITRE ATT&CK | MacOS forensics | Malware Sample Analysis | Malware analysis | Memory Forensics | NIST SP | NIST SP 800 | NIST SP 800-61 | Network Forensics | NetworkMiner | Packet Analysis | Powershell | Python | Reverse Engineering | SANS Incident Response | SIEM | Sample Analysis | TCPDump | Threat Intelligence | Volatile data analysis | Windows forensics | Wireshark
Education
Bachelor of Arts | Bachelor of Engineering | Bachelor of Science
Regions
Countries
States
Related jobs
-
Mid-level Full TimeStonebridge Distribution Center - Roanoke, IN, …21h ago
-
Security Analyst USD 70K-110KAccess Management | Automation Scripting | Cloud logging | Digital Risk | Digital risk managementMid-level Full TimeBoston, MA1d ago
-
API Design | Acceptance criteria | Agile | Data analytics | Market AnalysisBackup childcare | Financial coaching | Health care coverage | Mental health support | Retirement savings planMid-level Full TimePlano, TX, United States1d ago
-
Principal Cyber Defense Ops Specialist USD 112K-148KAIX | Advanced persistent threat | ArcSight | Bash | Check PointComprehensive medical, dental and vision coverage | Education reimbursement | Flexible work arrangements | Maternity & paternity leave | Paid time offSenior-level Full TimeRI, United States1d ago
-
COMINT | ELINT | FISINT | MCSAP | MESAP401k match with immediate vesting | AWS training and accreditation | Annual technology reimbursement | Company funded HSA | Dental insuranceEntry-level Full TimeFort Meade, MD1d ago
-
Sr Threat Intelligence Analyst - Erlanger, KY USD 71K-133KCyber Threat | Cyber threat hunting | Detection and Response | Endpoint Detection and Response | Endpoint detectionSenior-level Full TimeErlanger, KY - Kentucky, United States1d ago
-
Data Analyst (Hybrid) USD 90K-132KBusiness Intelligence | Data Analysis | Data Visualization | Data cleaning | ExcelHybrid workMid-level Full TimeArlington, VA, USA, 222021d ago
-
Cyber Security Analyst III USD 78K-149KDHCP | DNS | Digital forensics | FTP | Incident Response401k employer match | Adoption reimbursement | Career development | Dental insurance | Fitness center membershipSenior-level Full TimePontiac, MI, United States1d ago
-
Computer Network Defense Analyst (CNDA), Lead Associate USD 135K-216KCloud Security | Detection Systems | Digital forensics | Encryption technologies | Firewall administrationCritical Skills Bonus | Health Coverage Subsidy | Paid time offSenior-level Full TimeFort Meade, MD, United States1d ago
-
Junior Operations Research Analyst USD 66K-120KBranding | Change Management | Content Creation | Data Analysis | EditingHybrid work | Public Trust Clearance | Some travelEntry-level Full TimeWashington DC, DC1d ago
-
GSOC Analyst USD 60K-70KData Analysis | Emergency Notification | Google Workspace | Incident Response | Incident reportingMid-level Full TimeMenlo Park, CA, US1d ago
-
Action Officer USD 85K-179KAttack Lifecycle | Briefing development | Buffer overflow | Computer Network Defense | Computer networkMid-level Full TimeVA543: 22270 Pacific Blvd, Dulles 22270 …1d ago
-
Senior Information Security Analyst (Remote) USD 97K-130KAlert Tuning | DLP | Email Security | Endpoint Security | IDS/IPSRemote work | Work outside normal hours as neededSenior-level Full Time1 First American Way, Santa Ana, … R1d ago
-
Senior Cyber Program Analyst USD 149K-166KAccess Control | Ansible | Cybersecurity | DNS | Data ProtectionRemote workSenior-level Full TimeUSA VA Home Office (VAHOME), United …1d ago
-
Staff Application Security Engineer USD 140K-217KApplication Security | Cloud Security | Communication skills | DevSecOps | Digital forensicsSenior-level Full TimeSalt Lake City Office, United States1d ago
-
Threat Detection and Response Analyst (Local) USD 36K-56KAccess Control | Access control assessment | Behavior Analysis | Configuration Review | Control AssessmentEntry-level Full Time3401 WEST END AVE (LOC00541), United …1d ago
-
Vulnerability Management SME – VP USD 175K-225KAutomation | CIS Controls | CVE | Firewalls | ISO 27001401k | Life insurance | Medical/Dental/Vision | Paid leaveExecutive-level Full TimeBuilding 400-115 South Jefferson Rd Campus, …1d ago
-
Malware Analyst (Android Platform) USD 120KAPK | Android | Bash | Burp Suite | Burp Suite Community EditionMid-level ContractMountain View, CA1d ago
-
Cyber Operations Analyst USD 107K-160KAdvanced persistent threat | ArcSight | Automation and response | Bash | Behavioral analytics401k matching | Comprehensive health care and wellness plans | On-site work | Paid Holidays | Relocation assistanceSenior-level Full TimeColorado Springs, United States1d ago
-
Junior Cyber Operations Analyst USD 75K-113KAuthentication | Capture analysis | DNS | Detection Systems | EDR401k matching | Education assistance | Flexible spending accounts | Inclusive work environment | On-site workEntry-level Full TimeColorado Springs, United States1d ago
-
Compliance | Control Testing | Coso | Data Analysis | Enterprise RiskHybrid workSenior-level Full TimeMcLean, VA, United States1d ago
-
Computer Network Defense Analyst (CNDA) USD 88K-115KCellular Networks | Cloud Security | Computer forensics | Cybersecurity Incident Response | Data Enrichment401k match | Dental insurance | Disability insurance | Education assistance | Health insuranceMid-level Full TimeAugusta, GA2d ago
-
CPT Operator USD 96K-138KAES | ARP | Advanced routing | Arkime | BashActive TS/SCI clearance required | Onsite workMid-level Full TimeSan Antonio (JBSA), TX, United States2d ago
-
Network Security Analyst USD 75K-100KCyber Security | DNS | FTP | Firewall administration | HTTP401k retirement plan | Dental insurance | Floating holidays | Life insurance | Long-term disability insuranceMid-level Full TimeRichardson, TX, United States2d ago
-
Information System Security Officer (ISSO) USD 94K-150K800-53 | ACAS | ATO | Amazon Web Services | Authorization to OperateCustomer site presence | Domestic and international travelEntry-level Full TimeWashington, DC2d ago