Technical Incident Response Analyst
Elk Grove Village, IL, United States
USD 98K-130K (estimate) Mid-level Full Time
Tasks
- Analyze authentication endpoint network and application activity
- Assign or resolve Microsoft Defender alerts
- Collaborate with Infrastructure and Application teams
- Communicate incident status
- Contain threats using incident response playbooks
- Correlate data across security platforms
- Document incident activity
- Escalate unauthorized changes
- Investigate phishing emails
- Investigate security incidents
- Monitor cybersecurity alerts
- Participate in SOC working group sessions
- Perform log reviews using templates
- Prepare incident reporting for audit and regulatory reviews
- Reconcile firewall rule changes
- Remediate security incidents
- Review SIEM and Kibana dashboards
- Review external SOC tickets for closure
- Review firewall logs and intrusion alerts
- Track incidents end to end closure
- Update alerts and incident response playbooks
- Validate change authorization and compliance
- Validate evidence with screenshots and reports
Perks/Benefits
- N/A
Skills/Tech-stack
365 Security | Anti-Malware | Endpoint protection | Firewall | HIDS | IDS | Incident Response | Intrusion Detection | Intrusion Detection System | Intrusion Prevention | Intrusion Prevention System | Kibana | Linux | Log Analysis | Microsoft 365 | Microsoft 365 Security | Microsoft Defender | NIDS | Phishing analysis | SIEM | Security monitoring | TCPIP
Education
N/A
Regions
Countries
States
Related jobs
-
Technology Operations & Cybersecurity Analyst USD 100K-143KAI | Active Directory | Asset Management | Automation | DNSHands-on exposure | Innovation-focused environment | Ownership opportunities | Professional developmentMid-level Full TimeSpringfield, PA15h ago
-
Software Engineer, Security & Privacy USD 170K-230KAPI Security | AWS | AWS CDK | AWS Security | AWS Security ServicesCompany holidays | Dental insurance | Flexible PTO | Hybrid work | Medical insuranceSenior-level Full TimeNew York, NY1d ago
-
Software Engineer, Security & Privacy USD 170K-230KAWS | AWS CDK | Authentication | Authorization | COPPACompany holidays | Dental insurance | Flexible PTO | Health insurance | Vision insuranceSenior-level Full TimeSan Francisco Bay Area, CA1d ago
-
Security Architect USD 140K-165KCloud Security | Detection Systems | Digital signatures | Firewalls | Intrusion DetectionRemote workSenior-level Full TimeWork from home, VA, United States R1d ago
-
AWS | Access Management | Alert Monitoring | Azure | Cloud networkFully onsite work environment | No sponsorshipMid-level Full TimeColumbia, SC, United States1d ago
-
Cyber-Security Analyst (Night Shift) - IS-Security USD 78K-104KAntivirus | C# | C++ | Cybersecurity Framework | DHCPNight shift SOC operations | Remote workMid-level Full TimeUnited States-Texas-Galveston1d ago
-
Insider Threat Detection Engineer USD 190K-260KAI | Computer forensics | Detection and Response | Endpoint Detection and Response | Endpoint detection401k match | Dental insurance | Life insurance | Medical insurance | Paid HolidaysMid-level Full TimeNew York1d ago
-
Associate Security Analyst, Agentic Security Operations USD 102K-145KAI Security | AI Security Assistant | API Integration | Deobfuscation | Detection and ResponseMid-level Full TimeTexas, USA; United States1d ago
-
Director, Security Architecture & Engineering USD 132K-224KAPI Security | Access Control | Application Security | CIS Controls | Cloud Native401k match | Career advancement opportunities | Employee resource groups | Flexible PTO | Flexible work environmentSenior-level Full TimeMorrisville, NC, US, 275602d ago
-
Director, Security Operations USD 180K-250KAlert Tuning | Automation | CIS Controls | Case management | Cause analysis401k match | Conference attendance support | Employee resource groups | Flexible PTO | Flexible work environmentExecutive-level Full TimeMorrisville, NC, US, 275602d ago
-
Security Analyst USD 80K-110KAuthentication logs | CrowdStrike | Detection and Response | EDR Testing | Endpoint Detection and Response401k match | Company events | Gym membership stipend | Medical, dental & vision coverage | Paid HolidaysMid-level Full TimeColumbia, MO (Headquarters)2d ago
-
Antivirus | CIS Controls | Detection Systems | Digital forensics | Email Security401k plan | Dental insurance | Medical insurance | Professional growth | Vision insuranceMid-level Full TimeLancaster, PA, US R2d ago
-
Sr Lead Security Engineer - Workforce USD 177K-215KAWS | Access Management | Ansible | Azure | BitbucketBackup childcare | Financial coaching | Health care coverage | Mental health support | On-site health and wellness centersSenior-level Full TimeWilmington, DE, United States2d ago
-
SOC Analyst USD 61K-100KCrowdStrike | IBM QRadar | Incident Response | Malware analysis | Microsoft SentinelEntry-level Full TimeLas Vegas, NV, United States2d ago
-
AMAG Symmetry | Crisis coordination | Crisis management | Decision Making | EverbridgeDaily earned wage access | Dental coverage | Disability insurance | Discount program | Employee assistance programMid-level Full TimePoughkeepsie, NY, United States2d ago
-
Security Engineer, Bridge USD 229K-343KAccess Control | Audit compliance | CI/CD | Incident Response | Secrets management401k plan | Company bonus | Equity | Medical, dental, vision benefits | Sales commissionsSenior-level Full TimeSF, New York, Seattle, Dublin2d ago
-
Senior Application Security Engineer (Remote) USD 192K-240KAWS | Application Security Testing | Bug Bounty | Code review | Design reviewLearning sessions | Mentorship | Remote workSenior-level Full TimeUnited States R2d ago
-
Cyber Systems Engineer USD 185K-200KACAS | Active Directory | Ansible | Automation Pipelines | CI/CD401k matching | Bereavement leave | Employee assistance program | Employee discount program | Health and dental insuranceSenior-level Full TimeSan Diego, CA, United States2d ago
-
IT Security Analyst II USD 78K-108K365 Security | Access Management | Audit evidence | Awareness Training | Conditional AccessMid-level Full TimeHouston, TX, United States2d ago
-
Distinguished Engineer, End-to-End Security Architect USD 198K-279KAPI Security | Access Control | Access Management | Certificate Lifecycle Management | Certificate lifecycle401k retirement plan | Commuter benefits | Disability insurance | Employee assistance programme | Flexible spending accountsSenior-level Full TimeAustin, Texas, United States; US - …2d ago
-
VP, Security Engineer USD 200K-260KAI Security | API Integration | Access Management | Bash | Cause analysisExecutive-level Full TimeNew York, NY2d ago
-
Cybersecurity Analyst III USD 143K-180K800-53 | ACAS | Active Directory | CI/CD | Cloud SecurityPartial remote | Training and awareness programsSenior-level Full TimeQuantico, VA, United States2d ago
-
Security Operations & SIEM Principal USD 150K-180KCybersecurity modernization | Elastic Security | Matrixed Team Leadership | Operations Center | Program ManagementSenior-level Full TimeFairfax, VA, United States2d ago
-
Senior-level Full TimeAnnapolis, MD2d ago
-
Senior Security Engineer I USD 140K-165KCall Support | Control Design | Governance Risk | Governance risk compliance | HIPAAConference reimbursement | Employee assistance program | Employee stock purchase program | Equity compensation | Flexible time offSenior-level Full TimeBoston R2d ago