×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Network Security

Cyber Incident Response Lead; Remote

Remote / Online - Candidates ideally in
Denver, Denver County, Colorado, 80285, USA
Listing for: Experian
Remote/Work from Home position
Listed on 2025-12-08
Job specializations:
  • IT/Tech
    Cybersecurity, Network Security
Job Description & How to Apply Below
Position: Cyber Incident Response Lead (Remote)

Company Description

Experian is a global data and technology company, powering opportunities for people and businesses around the world. We help to redefine lending practices, uncover and prevent fraud, simplify healthcare, create digital marketing solutions, and gain deeper insights into the automotive market, all using our unique combination of data, analytics and software. We also assist millions of people to realise their financial goals and help them to save time and money.

We operate across a range of markets, from financial services to healthcare, automotive, agrifinance, insurance, and many more industry segments.

We invest in people and new advanced technologies to unlock the power of data and to innovate. A FTSE 100 Index company listed on the London Stock Exchange (EXPN), we have a team of 23,300 people across 32 countries. Our corporate headquarters are in Dublin, Ireland. Learn more at

Job Description

As a member of Experian's Global Security Office (EGSO)/Cyber Fusion Center (CFC), you will respond, contain, and investigate, and coordinate mitigation of security events relative to anomalies detected and escalated by the Cyber Fusion Center according to Experian's Incident Response Plan. As an individual contributor, you will join a growing team of specialized, advanced responders to support escalations of complex and prioritized matters from Experian's existing 24x7 security monitoring and response functions.

You will work with end‑users, technical support teams, and management to ensure remediation and recovery from these threats.

You will report to the Senior Manager, Global Incident Response. You will have a regular Monday – Friday schedule, with the expectation to participate in an on‑call schedule or work outside of normal work hours to respond to cybersecurity incidents.

You'll have the opportunity to:
  • Conduct advanced incident response activities to investigate and contain complex or larger‑scale cybersecurity matters.
  • Orchestrate work streams across teams (Forensics and Cyber Threat Hunting) and explain the CFC's overall understanding of the timeline of attacker activity.
  • Respond to cybersecurity events and alerts associated with threats, intrusions, or compromises per any applicable SLOs.
  • Manage multiple cases related to security incidents throughout the incident response lifecycle, including Analysis, Containment, Eradication, Recovery, and Lessons Learned.
  • Coordinate successful conclusion of security incidents according to Process & Procedures, and elevate severe incidents according to Experian's Incident Response Plan.
  • Maintain case documentation, including notes, analysis findings, containment steps, and cause for each assigned security incident.
  • Maintain assigned caseload and move incidents through each phase of the IR Lifecycle, handing off cases as needed for progress.
  • Maintain an understanding of common Operating Systems (Windows, Linux, Mac OS), Security Technologies (Anti‑Virus, Intrusion Prevention), Cloud Security investigations and response tools, and Networking (Firewalls, Proxies).
  • Interpret device and application logs from a variety of sources (Firewalls, Proxies, Web Servers, System Logs, Splunk, Packet Captures) to identify the root cause and determine the next steps for containment, eradication, and recovery.
  • Support overall direction for the CFC and input to the security strategy.
  • Mentor and provide advanced support to analysts (Logs review, IP Block question).
Qualifications
  • 8+ years of experience working within cybersecurity or information technology roles, at least 4+ of which includes working as an investigator, analyst, or leader in a Cyber Incident Response Team.
  • Bachelor's Degree in Computer Science, Computer Engineering, Information Systems, Information Security, or a related field. 11+ years of experience working within a Security Operations Center, Incident Response Team, law enforcement, or military experience may be accepted in lieu of this requirement.
  • Knowledge of network protocols (TCP/IP, UDP, ICMP), standard protocols (HTTP/S, DNS, SSH, SMTP, SMB), wireless networking, networking infrastructure, and network topologies (DMZ, VPN, WAN) and network…
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)

Job Posting Language
Employment Category
Education (minimum level)
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search