Incident Response Analyst - SkillBridge (Cybersecurity)
Мэтч & Сопровод
Для мэтча с этой вакансией нужен Plus
Описание вакансии
TL;DR
Incident Response Analyst - SkillBridge (Cybersecurity): Supporting the incident response lifecycle via triage and investigation of detections with an accent on containment, escalation, and detection criteria development. Focus on identifying coverage gaps in security tooling and driving efficient process documentation for the CSIRT team.
Location: Remote (Must be based in the USA)
Company
A global leader in cybersecurity providing an AI-native platform to stop breaches and protect large-scale distributed systems.
What you will do
- Support the Incident Response lifecycle through triage, investigation, and containment of detections.
- Develop detection criteria across various technologies and log sources.
- Identify coverage and efficiency gaps in available security data and tooling.
- Provide information security reporting and security metrics.
- Manage escalations and provide on-demand after-hours support.
- Drive process development and documentation for the IR lifecycle.
Requirements
- Must meet DoD SkillBridge qualifications (Current Active Duty Service Member).
- Must be a US citizen or Green Card holder.
- Available to participate for 90-180 days.
- Experience responding to security events, including hacktivist, cybercrime, and APT activity.
- Practical knowledge of Mac, Linux, and Windows operating systems and TCP/IP networking.
- Experience with SIEM-based workflows, IDS/IPS alerting, and system log analysis.
Nice to have
- Scripting experience in Python, Perl, Bash, or PowerShell.
- Proficiency with Splunk.
- Experience with host and network forensics.
- Basic static and behavioral malware analysis skills.
- Previous project management experience.
Culture & Benefits
- AI-first mindset focused on innovation and responsible AI adoption.
- Culture of flexibility and autonomy for employees.
- Mission-driven environment dedicated to stopping breaches globally.
- Professional growth through industry training under permissive temporary duty military orders.
Будьте осторожны: если работодатель просит войти в их систему, используя iCloud/Google, прислать код/пароль, запустить код/ПО, не делайте этого - это мошенники. Обязательно жмите "Пожаловаться" или пишите в поддержку. Подробнее в гайде →