Level 3 Incident Response Analyst
USA - IL (Remote), United States
R
USD 100K-160K Senior-level Full Time
Tasks
- Analyze security telemetry
- Build custom SIEM queries
- Communicate with cross-functional partners
- Conduct incident response retrospectives
- Coordinate evidence collection and documentation
- Create operational and executive reporting
- Develop detection rules and response procedures
- Improve detection rules and integrate security tooling
- Lead incident response from triage to closure
- Maintain SOC workflows
- Manage high severity threat response
- Mentor SOC analysts
- Prioritize incident response backlogs
Perks/Benefits
- N/A
Skills/Tech-stack
Apache | Bash | Chronicle | CrowdStrike | Digital forensics | EDR | Elastic SIEM | Incident Response | Linux | MITRE ATT&CK | Microsoft IIS | Microsoft SQL | Microsoft SQL Server | Microsoft Sentinel | Powershell | Python | SIEM | SQL Server | Windows | Wireshark | XDR | Zeek
Education
N/A
Related jobs
-
Asset Management | Business Continuity | Data Analysis | Disaster Recovery | Incident ResponseRemote work optionMid-level Full TimeGEORGIA - VIRTUAL - GA01, United … R1d ago
-
Information Security Systems Analyst USD 84K-131KAccess Control | Authentication | Authorization | Documentation | HIPAA401k matching | Dental insurance | Employee assistance program | Health insurance | Life insuranceMid-level Full Time100% Remote, United States R2d ago
-
CBO - Tier 3 / Threat Hunter USD 107K-173KAWS | Defender XDR | Defender for Endpoint | Defender for Identity | Digital forensics24x7 SOC environment | Public trust clearance required | Remote workSenior-level Full TimeUnited States - Remote R2d ago
-
Security Operations Analyst USD 70K-131KAntivirus | Case management | Cloud Security | EDR | Event analysisEmployee assistance program | Fitness reimbursement | Flexible work-life balance | Headspace app access | Hybrid work modelEntry-level Full TimeUnited States of America, Eagan, Minnesota R2d ago
-
Engineer III, Cyber Threat Hunter USD 128K-139KAWS | Automation | Bash | CI/CD | Cloud SecurityFully remote option | Hybrid schedule | Knowledge sharing | Tabletop exercisesSenior-level Full TimeRemote - Virginia, United States R2d ago
-
Multi-Asset Risk Management, Associate USD 116K-155KFactor modeling | Portfolio Risk | Portfolio risk analysis | Python | Return attributionDiscretionary bonus | Flexible time off | Healthcare | Leave benefits | Retirement benefitsMid-level Full TimeSF4-San Francisco - 400 Howard Street, … R2d ago
-
Cyber Threat Hunter USD 82K-133KAnomaly Detection | Binary Analysis | Capture analysis | Data Parsing | Event analysisMid-level Full TimeRemote, United States R2d ago
-
GRC Analyst USD 122K-175KAWS | Awareness Training | Azure | CCPA | CPRAFlexible schedule | Remote work | Work-life balanceMid-level Full TimeUnited States R2d ago
-
All-source intelligence | Basic IT | Basic IT troubleshooting | Geopolitical Analysis | IT troubleshootingRemote work | Training and development | Weekend shift coverageSenior-level Full TimeBoca Raton, FL, US R2d ago
-
Bash | Incident Response | JSON | MITRE ATT CK | PowershellFully remoteSenior-level Full TimeColumbia, SC, United States R2d ago
-
Cybersecurity Analyst - Remote USD 80K-133KCorrelation rules | Detection and Response | Endpoint Detection and Response | Endpoint detection | Forensics401k 403b employer match | Certification reimbursement | Emergency backup care | Legal Resources Plan | Life insuranceMid-level Full TimeVirginia Remote, United States R3d ago
-
Staff Threat Hunter USD 173K-173KAmazon Web Services | Cisco Firepower | CloudTrail | CloudWatch | ElasticsearchOccasional travel | Remote work | Team training sessionsSenior-level Full TimeREMOTE - UT - Utah, United … R3d ago
-
Threat Detection & Response Analyst (Tier 1) USD 80K-106KAnti-Malware | Antivirus | Cloud Security | Cyber Kill Chain | Database securityEducational assistance and training programs | Health and wellness benefits | Income replacement for qualified employees with disabilities | Paid Holidays | Paid maternity and parental bonding leaveEntry-level Full TimeWatermark - 410 North Scottsdale Road, … R3d ago
-
Cyber Threat Detection and Hunting, AVP USD 112K-153KAutopsy | Bash | Detection engineering | EDR | EnCaseEducational assistance | Flexible work schedule | Health and wellness benefits | Income replacement for qualified employees with disabilities | Paid HolidaysExecutive-level Full TimeNew Jersey Office - 210 Hudson … R3d ago
-
Summer Internship - Security Engineering USD 50K-50KAWS | Access Control | Authentication | Azure | BashCollaborative team environment | Hands On Security Engineering Experience | Remote-first cultureEntry-level InternshipRemote, United States R3d ago
-
Sr. Blue Team Analyst USD 166K-333KAlerting | Cyber Threat | Cyber Threat Intelligence | Detection engineering | Event managementMentoring | Ongoing training | Remote workSenior-level Full TimeUnited States R3d ago
-
Classified Cyber Security Asc/ISSO/Grand Prairie, TX USD 62K-125K800-53 | ACAS | Configuration Management | EMASS | ESTIG401k match | Dental insurance | Education assistance | Employee assistance program | Flexible spending accountsMid-level Full TimeTexas, Grand Prairie-TX R4d ago
-
Sr. Security Trust & Assurance Analyst USD 135K-198K800-53 | Application Security | Audit management | Awareness Training | CRISCHybrid work environment | Remote work option | Work-life balanceSenior-level Full TimeRaleigh, NC R4d ago
-
Sr. Security Trust & Assurance Analyst USD 135K-198K800-53 | Awareness Training | CISA | CISM | CISSPHybrid workplace | Remote work flexibility | Work-life balanceSenior-level Full TimeSalt Lake City, UT R4d ago
-
Global Red Team AI Engineer, Analyst USD 98K-123KAI Foundry | AWS Bedrock | Agentic AI | Amazon SageMaker | Azure AIComprehensive health and wellness benefits | Educational assistance | Income replacement for qualified employees with disabilities | Paid Holidays | Paid maternity and parental bonding leaveMid-level Full TimeNew Jersey Office - 210 Hudson … R5d ago
-
Senior AI Red Team Analyst USD 94K-176KAI tools | AWS | Active Directory | Adversary Emulation | AutomationAccess to employee assistance program | Career development | Flexible work options | Hybrid work model | Mental health days offSenior-level Full TimeUnited States of America, Richmond, Virginia R5d ago
-
Vulnerability Disclosure Analyst USD 95K-125KAccess Control | Authentication Protocols | C# | C++ | CryptographyExpensed lunches | Gym reimbursement | Inclusive employee events | Learning and development opportunities | Virtual eventsMid-level Full TimeRemote in the United States R7d ago
-
AWS EC2 | AWS IAM | AWS S3 | Elasticsearch | Endpoint Detection and Response401k | Dental insurance | Discretionary time off | Health insurance | Life insuranceEntry-level InternshipRemote - United States R7d ago
-
Information Security Analyst USD 47K-67KDetection Systems | Encryption | Event management | Information security | Intrusion Detection10 paid holidays per year | Career Advancement and Employee Development Opportunities | Paid parental leave | Paid vacation and sick time | Remote work within ArizonaMid-level Full TimeREMOTE OPTIONS, PHOENIX R7d ago
-
Incident Response Analyst USD 127K-140KBehavioral Analysis | Case management | CrowdStrike | Detection and Response | Endpoint Detection and Response401k retirement plan | Dental insurance | Disability insurance | Flexible time off | Medical insuranceMid-level Full TimeTampa, FL Hybrid, Remote R7d ago