Apply

Ready to go for it?

AI Apply speeds things up—apply directly if you prefer.

FREE ACCESS
5,000–10,000 jobs/day
JobTailor Logo

See all jobs on JobTailor

Search thousands of fresh jobs every day.

Discover
  • Fresh listings
  • Fast filters
  • No subscription required
Create a free account and start exploring right away.
Cloudflare

Incident Response Analyst

Cloudflare

Incident Response Analyst for Cloudflare's Cloudforce One REACT organization. Responding to customer security incidents and engaging at various levels in threat mitigation.

Posted 7/16/2026full-timeLisbon • 🇵🇹 PortugalMid-LevelSenior💰 €54,000 - €75,000 per yearWebsite

Core Competencies

Role fit
Core Competencies

Use this summary to align your resume positioning with the role.

Demonstrates expertise in Incident Response and Digital Forensics, with a strong focus on executing defensive maneuvers and optimizing crisis management solutions. Proficient in utilizing cloud environments and network analysis tools to enhance cybersecurity measures and client communication.

Highest-signal resume keywords
Incident ResponseDigital ForensicsCloud SecurityNetwork AnalysisCommunication Skills

ATS Keywords

Tailor your resume
Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills
Incident ResponseDigital ForensicsWindows Operating SystemsNetwork ProtocolsCloud EnvironmentsMITRE ATT&CKNIST Cyber Security FrameworkTraffic FilteringDDoS MitigationEvidence Preservation
Soft Skills
Verbal CommunicationWritten CommunicationRelationship Building
Tools & Technologies
Bro/ZeekSuricataAWSAzureO365Google CloudCloudflare
Industry Keywords
CybersecurityCrisis ManagementIncident Response ProcessThreat DetectionData Exfiltration

Tech Stack

Tools & technologies
AWSAzureCloudCyber SecurityLinuxNFSTCP/IPUnix

About the role

Key responsibilities & impact
  • Execute immediate defensive maneuvers at the Cloudflare edge to protect customer availability, including deploying custom WAF rules, implementing L3/L4 DDoS shunning, and performing real-time traffic filtering.
  • Support and execute the end-to-end incident response process for clients (investigation, containment, remediation, and recovery). Review technical deliverables and coordinate sessions with customer stakeholders.
  • Build a strong understanding of targeted attacks to create and execute customized tactical and strategic remediation plans for compromised organizations.
  • Identify and isolate infected hosts, revoke compromised sessions, and stop data exfiltration within the customer's infrastructure.
  • Track unauthorized lateral movement, identify sophisticated persistent backdoors, and execute containment to preserve evidence while neutralizing the adversary.
  • Conduct initial evidence preservation within customer environments according to forensic standards.
  • Create and enhance client-facing Crisis & Incident Response solutions based on industry standards. Identify opportunities for process optimization in monitoring, detection, and response.
  • Utilize AI-powered security platforms to synthesize telemetry sets, automate log summarization, and accelerate the identification of emerging threat patterns.
  • Prepare high-fidelity incident reports, forensic findings, and client communications. Maintain rigorous standards for clarity and accuracy to ensure understanding of both the threat and the resolution.

Requirements

What you’ll need
  • Bachelor's degree in Computer Science, Information Systems, Cybersecurity, or a related technical field, or equivalent training/practical experience.
  • 3+ years of overall experience in cybersecurity, including 2+ years of dedicated Incident Response / Digital Forensics experience, and 1+ years in a customer-facing role.
  • In-depth understanding of Windows operating systems and general knowledge of Unix, Linux, and Mac environments.
  • Familiarity with cloud environments (AWS, Azure, O365, Google Cloud, Cloudflare) and cloud IR methodologies.
  • Strong technical knowledge of common network protocols and design patterns (TCP/IP, HTTPS, FTP, SFTP, SSH, RDP, CIFS/SMB, NFS).
  • Experience with network analysis tools like Bro/Zeek or Suricata, and analyzing associated network logs.
  • Solid understanding of MITRE ATT&CK and NIST Cyber Security Frameworks.
  • Excellent verbal and written communication skills with a proven ability to establish relationships and clearly explain tasks, guidance, and complex technical findings to executive and technical clients.

Benefits

Comp & perks
  • This role is eligible to participate in Cloudflare’s equity plan.