Location: Tempe, AZ
Salary: Depends on Experience
Description: Our client is currently seeking an Incident Response Analyst. This position helps secure the computing environment against both insider and outsider threats. The incumbent will utilize our various security tools and processes to complete real-time monitoring & alert triage, log correlation analysis, incident analysis & response, intrusion detection, cloud security.
Fully Remote, but candidates MUST reside in Arizona for occasional in-office meetings
This job will have the following responsibilities:
- Respond to threats in real-time through effective analysis, triage and handling of cybersecurity alerts and events
- Perform cyber security investigations and recommend remediation actions
- Escalate cybersecurity incidents as defined in security procedures
- Identify gaps in incident handling use cases and assist in developing processes and alerting rules within SIEM technologies.
- Must possess two years of related experience working in a managed system service provider(MSSP), cybersecurity operations center(SOC), or in the realm of incident response(IR).
- Must be able to participate in 24/7 incident response.
- Strong understanding of system, network, and/or application security experience.
- Strong understanding of Linux, virtualization, and networking concepts.
- Familiarity with SIEM (Security information and event management) tools, such as Splunk.
- Familiarity with Endpoint Protection and Response tools (CrowdStrike).
- Demonstrable understanding of the principles and practicalities of effectively triaging security events.
- Understanding of cybersecurity incident response processes.
- Must possess strong critical thinking, analytical, troubleshooting and problem-solving skills.
- Ability to prioritize and reprioritize work as required.
- Ability to work calmly under pressure in the face of adversity and threat activity.
- A collaborative attitude and strong desire to succeed as part of the team.
- Self-motivated and a strong passion for learning.
- Knowledge of MITRE ATT&CK Framework and Lockheed Martin Cyber Kill Chain.
- Knowledge of security threat and attack countermeasures.
- Security + EC-Council - Certified SOC Analyst (CSA)
- EC-Council - Incident Handler
- GCIH - GIAC Certified Incident Handler Certification
Contact: rhartmann@judge.com
This job and many more are available through The Judge Group. Find us on the web at www.judge.com
Get Hired Faster
Subscribe to job alerts and upload your resume!
*By registering with our site, you agree to our
Terms and Privacy Policy.
Share diversity job
Incident Response Analyst is posted on all sites within our Diversity Job Network.
