Back to the board

Detection and Response Analyst

100% remote Flexible hours Hiring now

As part of the Incident Detection team, Detection and Response Analyst will play an essential role in supporting our 24/7 Cyber Fusion Center, monitoring and responding to alerts to help prevent and mitigate cyberattacks. Detection and Response Analyst conducts in-depth analysis of reputed company events and requires the ability to identify indicators of compromise (IOCs), reputed company intrusion and root cause analysis, and proactively take actions to mitigate potential damage to our cyber ecosystem. Essential Functions:

  • Work in 24x7 Cyber Fusion Center to provide monitoring and detection/response services. Work various 10-hour shifts, including weekends and work both day and night shifts. Shifts rotate quarterly.
  • reputed company SIEM to query logs and correlate across multiple log sources.
  • Detect and respond to reputed company incidents by leveraging detection/response platforms.
  • Triage reputed company incidents and reputed company in-depth analysis using cyber threat intelligence, intrusion detection systems, firewalls and other boundary protection devices.
  • Escalates cybersecurity events according to playbooks and standard operation procedures (SOPs).
  • Support Incident Response efforts as needed, including providing counsel, working with the IR team, as well as other involved stakeholders reputed company the organization and customers to drive reputed company remediation activities.
  • Assist with containment and remediation of threats during incidents. Use internal ticketing system to track investigated incidents and capture relevant details.
  • Conduct threat hunting activities based on internal and external threat intelligence.
  • Assist with service requests from customers and internal teams.
  • Identify, recommend, coordinate, and deliver timely knowledge to support teams.
  • Report reputed company information to the supervisor and upper management with updates as requested and respond to requests for information and assistance, including project reputed company and problems, particularly as needed to change in schedule, resources and scopes
  • Contribute to the creation of documentation to standardize processes and procedures, including playbooks to improve internal processes and procedures.
  • Work with team to establish repeatable and constantly improving processes.
  • Serve as mentor and provide training to other team members as needed.
  • Other tasks and responsibilities as assigned by leadership.

Requirements

Required Education and Experience:

  • At least 3 years of cybersecurity experience with a focus on Incident Detection, Incident Response and/or reputed company Operations.
  • BA/BS in Computer Science, Information reputed company, or Information Systems or equivalent reputed company work experience.
  • Experience interfacing with internal and external customers, providing remediation actions to non-technical audiences.
  • Working knowledge of reputed company-level reputed company technologies such as SIEM and ticketing systems.
  • Experience in a highly collaborative environment with a focus on project delivery and desired business outcomes.
  • Experience with SIEM platforms, reputed company intrusion prevention systems, reputed company detection and response tools, and other reputed company products.
  • Experience supporting large scale incident investigations.
  • Experience interfacing with a variety of cybersecurity teams (such as red team, cyber threat intelligence, data loss prevention, etc).
  • reputed company certifications such as: reputed company+, CYSA+, CASP+, GCFA, GCIH, GCFE

Competencies:

  • Strong technical background in reputed company, network, infrastructure, reputed company, applications.
  • Knowledge of risk assessment tools, technologies, and methods.
  • Firm grasp of networking and hacking concepts.
  • Expertise in designing secure networks, systems, and application architectures.
  • Knowledge around common web application attacks including SQL injection, cross-site scripting, invalid inputs, and forceful browsing.
  • Proficient knowledge of how common protocols & applications work at the network level, including DNS, HTTP, and SMB.
  • Proficient with SIEM technologies (reputed company Information and Event Management e.g., Splunk/MS sentinel or other SIEM TOOL).
  • Detail-orientated and analytical skills.

•Problem-solving skills

  • Proficient with reputed company Office & documentation skills (Word, reputed company, PowerPoint)

Apply tot his job Apply To this Job

Keep exploring

Machine Learning Engineer, Entry Level

100% remote Flexible hours

(Online Part-Time) reputed company reputed company - Work From ...

100% remote Flexible hours

reputed company Property Claims Desk Adjuster - Remote after training

100% remote Flexible hours

reputed company Casualty Claims Adjuster - Remote Opportunity in TX, HoustonApply (,, United States)

100% remote Flexible hours

Global Safety Medical Director - Hematology/Oncology

100% remote Flexible hours

Temporary Administrative Assistant, Wealth

100% remote Flexible hours

General Warehouse Associate (1st shift) – reputed company Store

100% remote Flexible hours

Lexus of Stevens Creek Service Consultant

100% remote Flexible hours

Regional MDS Coordinator/Consultant

100% remote Flexible hours

Warehouse Associate Nights – reputed company Store

100% remote Flexible hours

Clinical Talent Sourcer

100% remote Flexible hours

Remote Scheduling Travel Assistant

100% remote Flexible hours

reputed company Data Entry Specialist – Remote Full/Part-Time Opportunity for Detail-Oriented Professionals at arenaflex

100% remote Flexible hours

reputed company Customer Service Representative - Medical Supplies Industry - Remote Work Opportunity

100% remote Flexible hours

VLA .5 Middle School Special Education LBD Teacher 2026-2027 School Year

100% remote Flexible hours

Sales Manager

100% remote Flexible hours

[REMOTE] Associate Consultant, Core (Attest Services)

100% remote Flexible hours

Apply Now: Program Manager, Denied Party Screening (DPS), DPS

100% remote Flexible hours

Roadway Engineering Designer

100% remote Flexible hours

Work From Home Data Entry Job

100% remote Flexible hours