Lead Incident Responder
Tasks
- Contain eradicate and recover
- Coordinate incident response with SOC analysts and stakeholders
- Detect and triage incidents
- Develop and maintain incident response playbooks
- Direct investigations of advanced threats
- Drive continuous improvement and automation
- Ensure compliance with federal cybersecurity frameworks
- Ensure zero trust alignment
- Integrate threat intelligence into response workflows
- Lead end to end incident response
- Oversee digital forensics and evidence handling
- Perform root cause analysis and corrective actions
- Prepare executive incident reports and post incident reviews
Perks/Benefits
- N/A
Skills/Tech-stack
APT | Automation | Cause analysis | Cortex XSOAR | CrowdStrike | Digital forensics | EDR | Elastic | Evidence handling | FISMA | Forensic analysis | Incident Response | Insider Threats | Malware analysis | Memory Forensics | Microsoft Defender | NIST | Operations Center | RMF | Ransomware | Reverse Engineering | Root Cause Analysis | Root cause | SIEM | SOAR | Security Operations Center | Security operations | Splunk | Threat Intelligence | Threat hunting | Zero Trust
Education
Bachelor of Engineering | Bachelor of Science | Master of Science
Regions
Countries
States
Related jobs
-
API Security | AWS | Azure | Blue Team | CASB401k | Commuter benefits | Dog-friendly office | Equity | FSA benefitsMid-level Full TimeNew York City, NY2h ago
-
Senior Systems Engineer USD 187K-257KBGP | Endpoint Security | IPSec VPN | Linux | Load BalancingOnsite work flexibilitySenior-level Full TimeVan Buren, IN1d ago
-
Enterprise AI Security Engineer USD 114K-190KAI Governance | Access Control | Access Management | Authority to Operate | Authorization and AccreditationHealth insurance | Holiday pay | Learning and development | Life insurance | Long-term disabilitySenior-level Full TimeUSA-DC-Washington1d ago
-
Continuous Learning | Control Assessment | DIACAP | DOD Compliance | Information AssuranceMid-level Full TimeUnited States-Virginia-Virginia Beach1d ago
-
AOUSC - Detection Engineering Lead USD 130K-180KAPT Behavior | Adversary Emulation | Agile | Analytics rules | Data QueryingHybrid work | Onsite in Washington DC | Public trust clearance requiredSenior-level Full TimeWashington, DC2d ago
-
AOUSC - Threat Hunt Lead USD 104K-183KAdversary tactics | Adversary tactics and techniques | Agile | Behavioral analytics | CrowdStrikeHybrid work | Public trust clearance requiredSenior-level Full TimeWashington, DC2d ago
-
AOUSC - Blue Team Lead USD 135K-175KBlue Team | CSF 2.0 | Cyber Threat | Cyber Threat Intelligence | CybersecurityHybrid workSenior-level Full TimeWashington, DC2d ago
-
Application Engineer Expert Level USD 225K-305KAutomation | Cloud Security | CloudTrail | CloudWatch | Defender for Endpoint401k match | Career development | Dental insurance | Health insurance | Life insuranceSenior-level Full TimeFort Meade, MD, US2d ago
-
AI SIEM | Ansible | Bash | Chef | CrowdStrikeCorporate holidays | Dental insurance | HSA | Home internet allowance | Medical insuranceMid-level Full TimeRemote R2d ago
-
Security Analyst Internship USD 40K-40KDNS | EDR | HTTP | IOC enrichment | Incident ResponseCapstone project | Mentorship | On site work experience | Structured learning planEntry-level InternshipKansas City, MO SOC2d ago
-
Senior Security Engineer USD 153K-220K800-53 | AWS | Access Management | CI/CD | Continuous MonitoringSenior-level Full TimeRemote - USA R2d ago
-
Security Engineer (930867) USD 106K-233KAWS | Antivirus | DevSecOps | Firewall | Google CloudLearning opportunities | Networking programsSenior-level Full TimeLouisville, KY, United States2d ago
-
AWS | Application Security | Azure | CSPM | CWPPFlexible time off | Group dental insurance | Group medical insurance | Home internet allowance | Local travelSenior-level Full TimeSan Francisco, CA2d ago
-
Principal Security Operations and Enablement Engineer USD 190K-215KAPI Integration | Alerting platforms | Automation tooling | Dashboard Development | Python401k contribution | Coaching platform access | Digital reimbursement | Disability insurance | Education allowanceSenior-level Full TimeUnited States of America R2d ago
-
Senior Director, Cybersecurity Architecture USD 132K-174KAWS | Access Management | Application Security | Automation | Cloud SecuritySenior-level Full TimeCleveland, OH, United States R2d ago
-
Access Control | Access control logging | Alarm response | Computer literacy | Crisis management401k options | Dental insurance | Disability insurance | Discounts | Employee assistance programMid-level Full TimeSeattle, WA, United States2d ago
-
Access Security Operations Center Supervisor USD 70K-74KAccess Control | Alarm Monitoring | Database Query | Emergency response | Incident ResponseFlexible benefits | Overtime availableEntry-level Full TimeMiami, FL, United States2d ago
-
Access Security Operation Center Operator USD 64K-74KAccess Control | Alarm Monitoring | Database Query | Incident Response | PII handlingEntry-level Full TimeMiami, FL, United States2d ago
-
Cyber Forensics Analyst Lead USD 110K-179KAutopsy | Chain of Custody | CrowdStrike | Digital forensics | EDRSenior-level Full TimePortland, OR, United States2d ago
-
Mid-level Full TimeWashington DC2d ago
-
Security Analyst, Information Security USD 135K-200KApplication Firewall | Artificial Intelligence | Audit management | Change Management | Data reportingOn-call support | Remote workMid-level Full TimeRemote, United States R2d ago
-
Security Engineer, AI Vulnerability Management USD 122K-185KAPI | AWS | Automation | CI/CD | CVSS100 percent paid health insurance | 401k matching | Employer-paid disability insurance | Employer-paid life insurance | Fertility benefitsSenior-level Full TimeMenlo Park, CA2d ago
-
Senior Security Operations Engineer USD 102K-133KAWS | Azure | Cloud Security | Defense in Depth | Detection and Response24/7 on-call rotation | Flexible schedule | Travel for onsite meetings | Virtual first | Work-life balanceSenior-level Full TimeSt. Paul, Minnesota, United States2d ago
-
Product Engineer (Security) - AI Control Plane USD 180K-250KAccess Management | Agent Sessions | Backend Development | Frontend Development | Identity and Access ManagementIn person work in San Francisco office | On-call rotationMid-level Full TimeSan Francisco2d ago
-
Security Engineer III USD 107K-188KAmazon Web Services | Cloud platform | Correlation searches | CrowdStrike | Event analysisProfessional development | Remote workSenior-level Full TimeArlington/Rosslyn, Virginia, United States; Baltimore, Maryland, …2d ago