Job Title: Cyber Security Incident Response Analyst
Job Summary
We are seeking a detail-oriented Cyber Security Incident Response Analyst to join our growing security operations team. In this role, you will assist in the continuous monitoring of network infrastructure and support our Incident Response Framework. You will play a vital role in the lifecycle of security incidents—from initial detection and analysis to containment, eradication, and post-incident recovery. This is an excellent opportunity for an early-to-mid-level professional to grow their skills in a collaborative, mission-critical environment.
Compensation & Comprehensive Benefits
- Hourly Rate: Starting at $29.71/hour (negotiable based on experience; please submit candidate salary expectations with your application).
- Benefits Package: Comprehensive medical, dental, and vision insurance; life and disability insurance; and flexible spending accounts (FSA).
Key Responsibilities
- Incident Lifecycle Management: Participate in the preparation, identification, and validation of security incidents, including investigating indicators of compromise (IOCs).
- Response & Mitigation: Work under supervision to execute containment and eradication strategies to neutralize active threats.
- Monitoring & Forensics: Utilize security tools to review and monitor audit logs, network devices, and applications.
- Reporting & Improvement: Provide data and summary reports for leadership; participate in post-incident reviews to improve response capabilities and prevent recurrence.
- Compliance & Documentation: Assist in the creation of security controls to ensure adherence to industry laws and regulations; document procedures for Information Security Policies and Standards.
- Process Optimization: Identify and recommend improvements to work processes to enhance department goals and customer satisfaction.
Candidate Requirements
Education & Experience
- Degree: Bachelor's degree in Computer Science or a related field (or equivalent professional training/work experience) [Required].
- Experience: Minimum of one (1) year of experience in an information systems security domain [Required].
- Preferred Background: Experience in intrusion detection monitoring, incident response, threat research, or cyber intelligence analysis [Highly Preferred].
Certifications & Skills
- Certification: CompTIA Security+ or equivalent industry certification [Highly Preferred].
- Methodologies: Experience with Agile Methodologies and contributing to audit requirements [Preferred].
- Communication: Exceptional writing and documentation skills; ability to communicate complex technical information clearly to peers and leadership.
Technical Knowledge
Candidates should have a general understanding of the following technologies:
- Infrastructure: Microsoft Active Directory, Linux, and Windows Operating Systems.
- Security Tools: SIEM, EDR, DLP, IDS/IPS, VPN, Multi-factor Authentication (MFA), and Cloud Access Security Brokers (CASB).
- Core Concepts: Vulnerability management, encryption technologies, and standard communication protocols.
Additional Requirements
- Must be willing to participate in an on-call rotation as required.
- Strong listening skills and the ability to collaborate effectively within a team environment.