Senior Incident Response Analyst (MDR)

TL;DR

Senior Incident Response Analyst (MDR): Lead investigative execution of active cyber incidents for MDR customers and MSPs using hirify.global technologies with an accent on investigation, containment, and remediation. Focus on advanced analysis of initial access, persistence, lateral movement, malware, ransomware, and disrupting adversary activity under high pressure.

Location: Remote (United Kingdom) - applicants must have legal authorization to work in the United Kingdom without requiring employer sponsorship.

Company

Global leader and largest pure-play Managed Detection and Response (MDR) provider, supporting over 28,000 organizations with endpoint, network, email, and cloud security solutions powered by threat intelligence.

What you will do

• Investigate, contain, and respond to cyber incidents using hirify.global technologies.
• Mentor analysts by providing technical guidance, review, and escalation support.
• Perform advanced incident response analysis to identify threats and support remediation.
• Engage with customers and MSPs via calls and meetings to discuss incidents and provide recommendations.
• Analyze malware, ransomware, and common attack types; maintain detailed documentation.
• Collaborate with hirify.globalLabs, Detection Engineering, Threat Hunting, and MDR Operations teams.
• Contribute to blogs and evaluate new technologies to improve incident response.

Requirements

• 4+ years conducting cyber security investigations or 2+ years in incident response engagements.
• Understanding of network architecture and IT infrastructure.
• Experience creating technical documentation and reports for customers.
• Ability to work under high-pressure situations and some weekends/holidays.
• Network and endpoint investigation experience (macOS, Linux, Windows); IDS, IPS, EDR, basic malware analysis.
• Understanding of OSQuery, SQL, or KQL; MITRE Attack and Cyber Kill Chain frameworks.
• Knowledge of Windows and Linux command interpreters.

Nice to have

• Advanced certifications (GCFE/GCFA, CompTIA CySA+, OSCP, etc.).
• Experience providing customer service via calls.
• Publications in cybersecurity.

Culture & Benefits

• Remote-first working model as primary option for most roles.
• Employee-led diversity and inclusion networks, charity initiatives, volunteer days.
• Global sustainability, fitness/trivia competitions, wellbeing days, and monthly webinars.