Digital Forensic and Incident Response Analyst
Listed on 2026-07-14
-
IT/Tech
Cybersecurity, Information Security
Job Description
Summary: Digital Forensic and Incident Response (DFIR) Analyst will be a member of our Cyber Fusion Center Team and support our Incident Response function. This position will provide support to security operations through incident triage, event analysis, documentation updates, incident response and other SOC duties assigned. This position supports a 24x7x365 support staff and candidates should be open to working a rotating schedule with non-core hours.
This position will be a hybrid working environment with a mix of remote and onsite work.
- Responds to IT security incidents according to the IT security incident response policy.
- Provides guidance to first level responders for handling information security incidents.
- Actively manages, drives, and provides recommendations on third party remediation efforts.
- Provides investigation findings for cyber events (intrusions, malware, DDoS, unauthorized access, insider attacks and loss of proprietary information) to the relevant cyber security assurance functions to help improve information security posture.
- Responds to high-priority requests for information/intelligence from senior stakeholders.
- Validates and maintains incident response plans and processes to address potential threats.
- Builds strong relationships with business and technology stakeholders.
- Effectively represents the team and communicates with all levels of organization including senior management and business stakeholders.
- Identifies and develops workflow automation to lower response time and eliminate lengthy procedures during incident investigation.
- Performs additional analysis of escalations from Incident Response Analysts and conducts case review.
- Develops specific expertise to discern patterns of complex threat actor behavior, and to communicate an understanding of current and developing cyber threats.
- High School Diploma required.
- Equivalent experience and/or education is accepted in place.
- 3-5 years of experience Incident Response or Cybersecurity (Education and Bootcamps included).
- Intimate knowledge of the Cyber Kill Chain, MITRE ATT&CK Framework, or other relevant network defense and intelligence frameworks.
- Advanced knowledge of security technologies, such as SIEM, EDR Tools, Host and Network Security Tools and Vulnerability Management tools.
- Excellent written and oral communication skills.
- Demonstrated ability to work independently and as part of global teams in a fast-paced global environment.
- IT Security Certifications (GCIH, CySA+, SANS).
- Familiarity with Agile methodology.
- Working knowledge of Software Development Lifecycle Practices.
- Experience with Python, networking, IDS/IPS.
Adaptability, Analytical Thinking, Cyber Threat Hunting, Cyber Threat Intelligence, Data Loss Prevention (DLP), Detail-Oriented, Digital Forensics, Incident Response Management, Insider Threat Mitigation, Log Analysis, Malware Analysis, Security Information and Event Management (SIEM), Security Monitoring, Security Operations, SLA Management, Team Collaboration, Vulnerability Assessments, Vulnerability Management, Written Communication.
Salary Range$79,200.00 - $. This range reflects our current valuation of the role and is influenced by education, qualifications, certifications, experience, geographic location, and business needs.
BenefitsWe offer a comprehensive package of benefits, including medical, dental, vision, retirement (401(k)), paid holidays, vacation, and compassionate and sick days. For more information about benefits, visit
Employment InformationRegular employment status. No relocation required. No visa sponsorship. No travel required. Flexible work arrangements are available; primarily remote with a hybrid model. Shift: Not indicated. Valid driving license:
No.
As an Equal Employment Opportunity Employer, we provide equal opportunities to all employees and applicants for employment and prohibit discrimination on the basis of race, color, age, religion, sex, sexual orientation, gender identity, national origin, protected veteran status, disability status, or other applicable legally protected characteristics. As a federal contractor, we comply with all affirmative action requirements for protected veterans and individuals with disabilities.
For more information about personal rights under the U.S. Equal Opportunity Employment laws, visit https://(Use the "Apply for this Job" box below). EEOC GINA Supplement. We are proud to be a company that embraces the value of bringing together talented and committed people with diverse experiences, perspectives, skills and backgrounds. The fastest way to breakthrough innovation is when people with diverse ideas, broad experiences, backgrounds, and skills come together in an inclusive environment.
We encourage our colleagues to respectfully challenge one another’s thinking and approach problems…
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).