Level 2 Incident Response Analyst
Employment Information
Report this job
Job expired or something wrong with this job?
Job Description
Level 2 Incident Response Analyst investigating and remediating cybersecurity incidents. Collaborating with GSFC teams to enrich data and support analysis at Allstate.
Responsibilities:
- Conduct daily case reviews and escalate incidents lacking timely or adequate response.
- Prioritize, monitor, & escalate security events based on severity and criticality.
- Triage alerts and generate cases for valid, actionable threats.
- Maintain detailed case notes and escalate unresolved or high-risk incidents.
- Follow detailed operational process and procedures to appropriately analyze, escalate, and assist in remediation of critical information security incidents.
- Document all incidents, investigative actions, and outcomes thoroughly.
- Develop and refine standard operating procedures and workflows based on alert reviews and team feedback.
- Coordinate required actions and communications as directed by incident response plans and leadership.
- Work closely with GSFC teams to enrich incident data and support comprehensive analysis.
- Communicate effectively with stakeholders and employees regarding case status and findings.
- Stay informed on emerging cybersecurity threats, trends, and technologies.
Requirements:
- 4+ years of hands-on experience in a SOC environment with depth in incident triage/response.
- Demonstrated ability in analyzing, triaging, & remediating complex security incidents.
- Solid knowledge & hands-on experience in log analysis, network traffic analysis, malware investigation, & digital forensics.
- Background with SIEM platforms (e.g., Splunk, Sentinel, Elastic, Chronicle) for threat detection and analysis.
- Good knowledge of EDR/XDR platforms (e.g., CrowdStrike, SentinelOne, Microsoft Defender for Endpoint).
- Relevant certifications preferred: CompTIA CySA+, GIAC Certified Incident Handler (GCIH), GIAC Certified Intrusion Analyst (GCIA), Certified Information Systems Security Professional (CISSP).
Benefits:
- Health insurance
- Retirement plans
- Paid time off
- Flexible work arrangements
- Professional development opportunities
Similar Jobs
Level 3 Incident Response Analyst
Experienced Cybersecurity professional handling incident response at National General. Leading investigations, improving security capabilities, and mentoring junior analysts.
ITSM Incident Response Analyst
ITSM Incident Response Analyst supporting the Incident Response Management team in incident documentation and service restoration activities. Required strong Service Now skills and relevant experience.
Senior Cyber Incident Response Analyst, Sweden
Senior Cyber Incident Response Analyst at Integrity360 conducting various Incident Response activities for clients. Responding to incidents, conducting analysis, and providing advisory services.
Senior Cyber Incident Response Analyst, Italy
Senior Cyber Incident Response Analyst at Integrity360 performing incident response activities and threat hunting for clients in Italy. Focused on cyber security and providing detailed analysis on incidents to maintain client networks.
Senior Cyber Incident Response Analyst, Spain
Senior Cyber Incident Response Analyst at Integrity360, responding to cyber incidents and conducting intrusion analysis for clients in Spain. Focus on malware reverse engineering and proactive client services.
No more related jobs available.