Job Specifications
About the Organization:
A global leader in cybersecurity protecting the people, processes, and technologies driving modern organizations. The mission is to stop breaches and provide advanced AI-native security platforms. Customers span all industries and rely on the organization to maintain business continuity and safety. The organization supports a culture of flexibility and autonomy for career ownership.
About the Opportunity:
Seeking a highly motivated, self-driven Incident Responder to support the incident-response lifecycle as a core member of IR Operations within CSIRT, focused on threat detection and response. The role involves ownership of security incidents, conducting technical investigations, collaborating with experienced investigators, and driving process improvements.
Responsibilities:
• Take ownership of security incidents detected by CSIRT and recommend workflow, tool, and response enhancements
• Participate in escalated incidents by gathering and analyzing logs, endpoint telemetry, and threat intelligence
• Perform investigative and containment actions such as host isolation and phishing email removal; confirm remediation
• Conduct in-depth research to support team operations and improve investigative capabilities
• Maintain clear documentation of investigative steps, evidence, decisions, and project progress
• Identify gaps in detection coverage, workflows, or tooling and collaborate on detection logic, playbook refinements, and automation
• Contribute to runbooks, knowledge articles, and other deliverables to strengthen incident response capabilities
Requirements:
• Experience performing incident response from escalation through resolution using multiple data sources and coordinating with cross-functional teams
• Proficiency with EDR platforms (e.g., Falcon), SIEM/SOAR technologies, and network forensics tools (e.g., Zeek, Suricata, Wireshark)
• Advanced investigative skills including log analysis, endpoint telemetry, and threat intelligence to determine incident scope and impact
• Strong knowledge of Windows, macOS, and Linux internals and digital forensics for memory, disk, and network artifacts
• Proven ability to conduct research supporting team operations and translate findings into actionable outcomes
• Solid understanding of network protocols (HTTP/S, DNS, SMTP, SMB, Kerberos) and packet capture analysis
• Strong written and verbal communication skills for presenting findings to technical and non-technical stakeholders
• Experience with cloud-focused incident response in AWS, Azure, or GCP environments
• Ability to design and deliver scenario-based training to improve investigative skills and readiness
Bonus Points:
• Advanced scripting or development experience (Python, PowerShell, Bash, or Perl) for investigative tooling and automation
• Expertise as a SIEM power user capable of advanced searches, dashboard building, and detection refinement
• Proven track record of publishing threat research, presenting at security conferences, or contributing to industry knowledge
Education:
Bachelor’s or master’s degree in Computer Science, Cybersecurity, Digital Forensics, or related field is preferred but not required. Equivalent hands-on experience in incident response, threat research, or digital forensics will also be considered. Applicable security certifications (e.g., GCFA, GREM, GNFA, GCTI) are welcomed.
Benefits & Perks:
• Market leader in compensation and equity awards
• Comprehensive physical and mental wellness programs
• Competitive vacation and holidays
Note:
RemoteHunter is not the Employer of Record (EOR) for this role. Our purpose in this opportunity is to connect exceptional candidates with leading employers. We help job seekers worldwide discover roles that match their goals and guide them to complete their full application directly through the hiring company’s career page or ATS.
About the Company
RemoteHunter is your dedicated AI job search assistant, turning the job hunt from a slow, individual effort into a quicker, smarter, and guided experience by streamlining each step of the process and speeding up your path to the right career opportunities.
Know more