Apply

Ready to go for it?

AI Apply speeds things up—apply directly if you prefer.

FREE ACCESS
5,000–10,000 jobs/day
JobTailor Logo

See all jobs on JobTailor

Search thousands of fresh jobs every day.

Discover
  • Fresh listings
  • Fast filters
  • No subscription required
Create a free account and start exploring right away.
SOFTSWISS

Incident Response Analyst – L2

SOFTSWISS

Incident Response Analyst investigating complex security incidents and improving detection capabilities at SOFTSWISS. Collaborating with teams to enhance incident response processes and mentoring junior analysts.

Posted 7/18/2026full-timeRemote • 🇬🇪 GeorgiaMid-LevelSeniorWebsite

Core Competencies

Role fit
Core Competencies

Use this summary to align your resume positioning with the role.

Demonstrates expertise in incident response, digital forensics, and malware analysis, with a strong understanding of modern cyber threats and attack techniques. Proficient in developing SIEM detections and automating SOC activities while mentoring junior analysts.

Highest-signal resume keywords
Incident ResponseDigital ForensicsSIEM PlatformsThreat HuntingAutomation Using Python

ATS Keywords

Tailor your resume
Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills
Digital ForensicsMalware AnalysisIncident ResponseThreat HuntingSecurity Incident InvestigationAttack Techniques AnalysisSIEM Detections DevelopmentDetection TuningScripting AutomationNetwork Traffic Analysis
Soft Skills
Analytical MindsetProblem-Solving SkillsEffective Communication
Tools & Technologies
SplunkWazuhClickHouseRedashKubernetesDockerActive DirectoryWindowsLinuxMacOS
Industry Keywords
SOCDFIRMSSPMITRE ATT&CKCyber Kill ChainCloud SecurityAWS

Tech Stack

Tools & technologies
AWSCloudDockerKubernetesLinuxMacOSPythonSplunk

About the role

Key responsibilities & impact
  • Investigate and respond to complex security incidents throughout the entire incident lifecycle
  • Perform digital forensic investigations, malware analysis, and evidence collection to determine the scope and root cause of security incidents
  • Analyze attack techniques, correlate security events, and reconstruct attack timelines
  • Develop and improve SIEM detections, correlation rules, and incident response playbooks
  • Conduct threat hunting activities and reduce false positives through detection tuning
  • Automate repetitive SOC activities using scripting where appropriate
  • Collaborate with Infrastructure, Development, IT, and Security teams during incident response
  • Mentor L1 analysts by providing technical guidance and feedback

Requirements

What you’ll need
  • 3+ years of experience in SOC, Incident Response, DFIR, or MSSP environments
  • Strong understanding of modern cyber threats, attack techniques, and frameworks such as MITRE ATT&CK and the Cyber Kill Chain
  • Hands-on experience investigating security incidents, performing digital forensics, and malware analysis
  • Hands-on experience with SIEM platforms (e.g. Splunk, Wazuh, ClickHouse, Redash)
  • Good understanding of enterprise infrastructure, including Windows, Linux, macOS, Active Directory, email systems, Kubernetes, Docker, and databases
  • Experience with automation using Python, PowerShell, or Bash
  • Knowledge of Kubernetes and Docker security concepts
  • Strong analytical mindset, problem-solving skills, and effective communication in cross-functional environments
  • Intermediate or higher English level
  • Nice to have: Experience with Threat Hunting, Network Traffic Analysis (NTA), or cloud security (AWS)

Benefits

Comp & perks
  • Private health insurance
  • Sports benefits
  • Comprehensive Mental Health Program
  • Free English lessons (online)
  • Local language courses
  • Paid time off
  • Maternity leave support
  • Referral program rewards
  • Upskilling, internal workshops, and participation in professional conferences and corporate events