Senior Cybersecurity Incident Response Analyst
Blue Yonder
full-time
Posted on:
Location Type: Remote
Location: Remote • 🇲🇽 Mexico
Visit company websiteJob Level
Senior
Tech Stack
Cyber Security
About the role
- Monitor and Analyze Security Alerts – Review alerts generated by security systems, appliances, and logs to determine the appropriate course of action to protect the enterprise and reduce overall risk.
- Incident Triage and Response – Quickly assess, prioritize, and respond to security incidents, ensuring timely containment, eradication, and recovery to minimize business impact.
- Root Cause Analysis (RCA) – Investigate security incidents to determine root causes, attack vectors, and vulnerabilities, providing recommendations to reduce the attack surface and prevent recurrence.
- Threat Hunting and Proactive Defense – Conduct proactive threat-hunting activities based on intelligence, anomalies, and adversary tactics to identify and mitigate threats before they escalate.
- Collaboration with Cross-Functional Teams – Work closely with IT, engineering, legal, compliance, and other teams to coordinate incident response efforts and ensure an effective security posture.
- Incident Documentation and Reporting – Maintain detailed documentation of security incidents, response actions, and lessons learned, ensuring continuous improvement in security processes.
- Develop and Improve Incident Response Playbooks – Enhance and maintain incident response procedures, ensuring alignment with industry best practices and emerging threats.
- Security Awareness and Training – Provide guidance, training, and mentorship to SOC analysts and IT staff on security threats, incident handling, and response best practices.
- Threat Intelligence Integration – Leverage threat intelligence sources to stay informed on evolving cyber threats and proactively adjust security strategies to defend against them.
Requirements
- Bachelor's degree in Computer Science, Information Security, or related equivalent experience
- 5+ years of experience in information security or cybersecurity as an analyst, engineer or consultant
- MUST have experience with incident response methodologies and tools (e.g. SANS IR, EDR, SIEM, Threat Intelligence, etc.)
- Strong technical skills and attention to detail
- Excellent verbal and written communication skills
- Ability to work independently and as part of a team
- Ability to work under pressure and in a fast-paced environment
- Strong problem-solving skills and a proactive approach to work
- Knowledge of security frameworks such as NIST and ISO 27001
- Familiarity with security regulations and standards (e.g. PCI DSS, HIPAA, etc.)
Benefits
- Health insurance
- Flexible working hours
- Professional development opportunities
Applicant Tracking System Keywords
Tip: use these terms in your resume and cover letter to boost ATS matches.
Hard skills
incident response methodologiesroot cause analysisthreat huntingsecurity incident documentationsecurity awareness trainingthreat intelligence integrationEDRSIEMSANS IRcybersecurity
Soft skills
attention to detailverbal communicationwritten communicationteam collaborationindependenceproblem-solvingproactive approachability to work under pressureability to work in fast-paced environment