Tier II Incident Response Analyst
Tasks
- Analyze enterprise network activity
- Analyze malicious code and artifacts
- Apply cyber kill chain and MITRE ATTACK
- Deliver technical reports
- Determine incident root cause and scope
- Develop incident response automation
- Identify logging gaps
- Implement incident response tools and processes
- Investigate security incidents
- Mentor security analysts
- Perform threat research and logical analysis
- Propose automated threat alerts
- Provide incident status updates
- Review packet capture files
- Support SOC operations
Perks/Benefits
- N/A
Skills/Tech-stack
CIRT | Cloud Security | Cyber Forensics | Cyber Kill Chain | DHCP | DNS | Defender for Endpoint | FireEye | Firewalls | HTTP | Incident Response | Intelligence driven defense | Kill Chain | Linux | Load balancers | Malware analysis | Microsoft Defender | Microsoft Defender for Endpoint | Mitre Attack | Network Security | Packet Analysis | Proxies | Routing | SOC Operations | Splunk | Switching | VPN | Windows
Related jobs
-
Operations/C2C Analyst USD 90K-124KASA | Access Control | Alerting | Architecture Diagrams | Brocade switchesInterim Secret Clearance Process | Secret Clearance or Better | Shift workMid-level Full TimeSierra Vista, AZ, United States3h ago
-
Manager, Cybersecurity Engineering USD 119K-160KAccess Controls | Change Management | Cloud Security | Cybersecurity | EDRMid-level Full TimeUSA-Texas-Houston7h ago
-
Information Security Systems Analyst USD 84K-131KAccess Control | Authentication | Authorization | Documentation | HIPAA401k matching | Dental insurance | Employee assistance program | Health insurance | Life insuranceMid-level Full Time100% Remote, United States R20h ago
-
Security Operations Center (SOC) Analyst II USD 69K-130KDevOps | Endpoint Management | Event Correlation | Firewall | Incident ResponseMid-level Full TimePewaukee, WI, US20h ago
-
Security Operations Center (SOC) Analyst II USD 69K-130KAnalytics rules | Endpoint Management | Event Correlation | Firewall Management | Incident ResponseCustomer facing managed services | Mentoring support | On-call rotationMid-level Full TimeSpringfield, MO, US20h ago
-
Security Operations Center (SOC) Analyst II USD 69K-130KAnalytics rules | Cybersecurity | Detection engineering | DevOps repositories | Endpoint ManagementCustomer facing managed services | On-call rotationMid-level Full TimeLittle Chute, WI, US20h ago
-
Associate Information Security Engineer USD 74K-120KAccess Control | Incident Response | Logical Access | Logical Access Control | Network SecurityContinuing education | Dental insurance | FSA | HSA | Hybrid workMid-level Full TimeRochester, MN, United States23h ago
-
Cyber Threat Hunter USD 82K-133KAnomaly Detection | Binary Analysis | Capture analysis | Data Parsing | Event analysisMid-level Full TimeRemote, United States R23h ago
-
Sr SOC Analyst USD 112K-165KAnalytic Queries | Correlation rules | Dashboards | Detection engineering | EDRSenior-level Full TimeSan Antonio, TX, United States1d ago
-
Senior AI Security & Automation Engineer USD 110K-120KAccess Management | Azure Logic | Azure Logic Apps | Azure OpenAI | Bash401k matching | Dental insurance | Flexible working arrangements | Health insurance | Paid time offSenior-level Full TimeNew York, NY, United States1d ago
-
AWS | Access Management | Adversarial Simulation | Application Security | AzureExecutive-level Full TimeUS-WA-Bellevue1d ago
-
AI Security Engineer USD 153K-239KAPI Security | Access Management | Application Security | CASB | CSPMSenior-level Full TimeBoca Raton, FL, United States1d ago
-
All-source intelligence | Basic IT | Basic IT troubleshooting | Geopolitical Analysis | IT troubleshootingRemote work | Training and development | Weekend shift coverageSenior-level Full TimeBoca Raton, FL, US R1d ago
-
Mid-level Full TimeBoulder, CO1d ago
-
Manager Application Security USD 133K-190KAPI Authentication | API Security | API authorization | Application Architecture | Application SecurityEducation reimbursement | Flexible work arrangements | Hybrid work arrangement | Maternity and paternity leave | Medical, dental, and vision coverageMid-level Full TimeUnited States1d ago
-
Cyber Security Engineer USD 117K-155KAccess Control | Access Management | Cause analysis | CyberArk | DLPHybrid workMid-level Full TimeAtlanta, Georgia, United States1d ago
-
Bash | Cortex XSIAM | Linux | Mitre Attack | Powershell100 percent remoteSenior-level Full TimeColumbia, SC, United States R1d ago
-
Bash | Incident Response | JSON | MITRE ATT CK | PowershellFully remoteSenior-level Full TimeColumbia, SC, United States R1d ago
-
Awareness Training | Control Assessment | Excel | Governance | Incident ResponseSenior-level Full TimeColumbia, SC, United States1d ago
-
Director IT Security, Infrastructure, & Operations USD 150K-195KAccess Management | Asset Management | CIS | CapEx | Cloud ComputingExecutive-level Full TimeColumbus, Ohio, United States1d ago
-
Security Analyst USD 87K-124KContinuous Monitoring | EMASS | EMASSter | Incident Response | Management FrameworkMid-level Full TimeChina Lake, CA1d ago
-
Authentication | Compliance | Encryption | Firewall | Incident ResponseMid-level ContractPhoenix, United States1d ago
-
Consultant, FedRAMP Assessment USD 53K-92K800-171 | 800-37 | 800-53 | 800-53A | Audit ReportingCertification reimbursement | Comprehensive insurance options | Digital mental health support membership | Employee resource groups | Flexible time offMid-level Full TimeUnited States1d ago
-
Staff Security Engineer, Cloud Red Team, Cloud CISO USD 207K-300KCloud Security | Design reviews | Network Security | Penetration Testing | ProgrammingSenior-level Full TimeNew York, NY, USA1d ago
-
Temporary- Cyber Security Analyst USD 40K-40KCIS Controls | Detection Systems | FERPA | Incident Response | Intrusion DetectionBackground check | Flexible work arrangementsEntry-level TemporaryNashville1d ago