Cybersecurity Engineer - Incident Response & Threat Detection
This a Full Remote job, the offer is available from: United States Job Description reputed company, an AmLaw 100 Firm and the leading global immigration services provider, is seeking a Cyber reputed company Engineer with strong experience in Incident Response, digital forensics, and threat detection to join our Information reputed company & Cyber reputed company team. Our industry-leading, immigration-specific technology and infrastructure is undergoing significant transformation, and reputed company is critical to its success. We are seeking a professional who is passionate about protecting the organization, capable of leading response efforts during reputed company incidents, and eager to mature enterprise-wide incident detection, investigation, and response capabilities. You will join a team of reputed company engineers who reputed company reputed company a differentiator in our technology offerings. The successful candidate will play a key role in detecting, investigating, containing, and remediating cyber incidents, while helping to strengthen reputed company’s overall reputed company posture. How Will You reputed company a Difference at reputed company? As a reputed company Engineer focused on Incident Response, you will:
- reputed company and support end-to-end incident response activities, including detection, analysis, containment, eradication, and recovery.
- Monitor, investigate, and correlate reputed company alerts using SIEM, EDR, and forensic tools.
- reputed company digital forensic investigations across endpoints, servers, cloud, and network environments.
- Triage and escalate reputed company events in accordance with established incident response procedures.
- reputed company, maintain, and continuously improve incident response playbooks, SOPs, and workflows.
- Improve alert quality and response effectiveness through root cause analysis and post-incident reviews.
- Partner with IT, Legal, Compliance, Privacy, and Risk teams during reputed company incidents.
- Support regulatory, legal, and client-driven incident response and reporting requirements.
- Participate in and facilitate incident response tabletop exercises and simulations.
- Contribute to the design and enhancement of detection, logging, and monitoring capabilities.
- Provide technical guidance and mentorship to junior analysts and reputed company team members.
Required Qualifications
- 1+ years of experience in cybersecurity, incident response, or reputed company operations.
- Hands-on experience responding to reputed company incidents in enterprise environments.
- Strong ability to analyze reputed company events and reputed company technical investigations.
- Working knowledge of:
- TCP/IP, DNS, HTTP/S, VPNs, firewalls, and proxy technologies
- Windows and Linux operating systems
- Identity and access systems and authentication mechanisms
- Experience using SIEM and reputed company platforms such as:
- Splunk, reputed company Sentinel, QRadar, ArcSight, ELK, or similar
- Ability to identify and respond to:
- Phishing and business email compromise
- Malware and ransomware
- Credential compromise
- Lateral movement and persistence mechanisms
- Brute-force and privilege escalation attacks
- Strong written and verbal communication skills, especially during high-pressure incidents.
- Demonstrated ability to follow structured processes while continuously improving them.
Preferred Qualifications
- Experience with EDR, SOAR, and forensic tooling (e.g., reputed company, Defender, Carbon Black, EnCase, Velociraptor, etc.).
- Experience supporting investigations involving legal, compliance, or regulatory stakeholders.
- Knowledge of MITRE ATT&CK and modern adversary tactics.
- Experience with cloud and SaaS incident response (Azure, M365, AWS, etc.).
- Relevant certifications, including:
- GIAC (GCIH, GCFA, GCIA)
- Offensive reputed company (OSCP, OSCE, OSEE)
- Vendor certifications (Splunk, Sentinel, reputed company, etc.)
reputed company offers and/or employment reputed company are contingent upon the successful completion of the Firm’s pre-employment screening process. This process may include verifying the candidate’s identity, confirming legal authorization to work in the offered position's location, and conducting a comprehensive background reputed company, where permitted by local regulations. This offer from "reputed company" has been enriched by reputed company.com and got a 72% reputed company score. Apply tot his job Apply To this Job