Engineer II in Cyber Incident Response responsible for detecting and responding to cybersecurity incidents. Collaborating with global teams to minimize business impact and strengthen detection capabilities.
About the role
- Digital Forensics & Incident Response Analyst providing real-time threat analysis and mitigation at Cayuse. Engaging in cybersecurity initiatives while leveraging extensive forensics experience.
Responsibilities
- Provide real-time analysis of escalated security events to support response efforts.
- Analyze data from endpoints, EDR systems, firewalls, and servers to identify, contain, and remediate suspicious activity.
- Analyze malicious scripts and code to mitigate potential threats.
- Engage in Threat Hunting operations to proactively identify and mitigate threats.
- Conduct predictive or reactive analyses on security measures to support cybersecurity initiatives.
- Create system images or capture network settings from IT environments to preserve as evidence.
- Forensically duplicate digital evidence for data recovery and analysis procedures.
- Perform web service network traffic analysis to detect anomalies, such as unusual events or trends.
- Contribute to the analysis of cyber threat intelligence and apply findings to bolster defensive actions.
- Assist in identifying root causes, mining lessons learned, and reinforcing security measures after incidents.
Requirements
- Bachelor's degree (or equivalent experience) in Cybersecurity, Information Technology, or a related field.
- Minimum of 3 years of relevant experience in direct digital forensics or incident response within large enterprise federal government or corporate environments.
- Active Top-Secret Clearance with SCI Eligibility.
- Must be able to pass a background check and CI Polygraph.
- Skilled in the use of Incident Response tools such as Splunk Enterprise Security and Microsoft Defender for Endpoint.
- Well-versed in employing forensic tools and suites such as Magnet Axiom, Exterro FTK, Cellebrite Physical Analyzer, Kape, and Open-Source tools.
- Adept at conducting open-source research to identify and understand active or potential threats.
- Highly regarded certifications include GIAC Continuous Monitoring Certification (GMON) and others.
Benefits
- Medical, Dental and Vision Insurance
- Wellness Program
- Flexible Spending Accounts (Healthcare, Dependent Care, Commuter)
- Short-Term and Long-Term Disability options
- Basic Life and AD&D Insurance (Company Provided)
- Voluntary Life and AD&D options
- 401(k) Retirement Savings Plan with matching after one year
- Paid Time Off
Job title
Job type
Experience level
Salary
Degree requirement
Tech skills
Location requirements
Senior Cyber Incident Response Analyst managing cybersecurity incidents for clients. Focused on proactive threat hunting, incident response, and digital forensics in a hybrid environment.
Incident Response expert managing IT security incidents across teams in a global retail company. Focusing on advanced incident response and continual improvement in a dynamic work environment.
Incident Response Analyst managing complex security incidents and leading response teams at Vanguard. Develop and implement incident action plans for security breaches and vulnerabilities.
Cyber Incident Response Analyst supporting 24/7 cybersecurity incident management and response operations for client. Engaging in case management, triage, and operational coordination activities.
Senior Manager for the Security Operations Center at Cencora, leading incident response operations and team management in Texas. Collaborating with global teams for security incident remediation.
Incident Manager coordinating incident resolution and change management processes at SONDA. Responsible for major incident management and supporting effective change processes.
Cyber Incident Response Director at PwC resolving complex cyber security incidents and improving strategies. Leading Crisis Management engagements and collaborating with national cybersecurity bodies.
Sr Sourcing Air Analyst at Despegar leading the expansion of airline partnerships in Mexico City. Collaborating on growth strategies and negotiating marketing agreements with airlines.
Incident Manager receiving and registering incidents through various channels at SONDA. Collaborating with resolver groups to ensure timely solutions in Bogotá.