CYBER 101

  • Alerts
  • Blog
  • Cyber Briefing
  • CyberDecoded
  • CyberReview
  • CyberStory
  • CyberTips
  • Domains
  • FAQ
  • Incidents
  • Tutorials

Subscribe to our newsletter

FOLLOW US

No Result
View All Result
  • Login
  • Register
  • Cyber Citizens
  • Cyber Professionals
  • Institutions
CyberMaterial
  • Jobs
  • Vendors
Get Help
  • Cyber Citizens
  • Cyber Professionals
  • Institutions
CyberMaterial
No Result
View All Result
  • Jobs
  • Vendors
Get Help
CyberMaterial
Home Jobs

TripActions – Incident Response Lead

Reading Time: 2 mins read
in Jobs

 

Job Description (from the job posting): 

As an Incident Response (IR) Lead, you will be a hands-on incident responder actively investigating cases involving end points SaaS, public cloud, and hybrid environments. When not actively leading or participating in an incident, you will be threat hunting. Due to the nature of IR, we are looking for someone who is technically proficient and can effectively communicate with leadership, managers and individual contributors during an IR situation. In addition, you will be responsible for the strategic direction of the IR function, working closely with the Privacy and Legal teams.

Reporting into the Sr Manager, Detection & Response, the ideal candidate will be responsible for responding to security threats against our enterprise and production environments. This is a lead role, which is involved in all aspects of the incident response life cycle and the process of responding to a security incident. You will also help with detection engineering to improve logging coverage, security tools tuning, suggest ideas and contribute to the new signals development process and automation to detect and respond to threats automatically and at scale.

Your responsibilities:

  • Manage investigations including organizing unstructured work and engaging resources across the company.
  • Manage urgency and visibility to ensure timely response by all involved parties.
  • Conduct IR analysis, network log and network PCAP analysis, and other investigation related activities in support of IR.
  • Respond to critical incidents, threats, vulnerabilities and bring these issues to resolution.
  • Communicate/coordinate with internal and 3rd party teams during high severity incidents.
  • Orchestrate & conduct table-top exercises.
  • Develop incident playbooks and repeatable methods for managing and responding to malicious activities across networks, systems, and products.
  • Design, document, and implement IR processes, procedures, guidelines, and solutions.
  • Deliver technical and executive level reports and metrics on IR issues.
  • Work together with the Cyber Defense and Cyber Detect teams.
  • Forensically analyze end user systems and servers found to have possible indicators of compromise.
  • Identify security incidents through threat hunting operations within a SIEM and other relevant tools.
  • Perform basic programming and script development in support of/as needed for IR

 

US Located Required:  Yes

Location: Remote

Schedule: Full time

Salary: USD 112K – 225K

 

Apply Now

Tags: Incident Response LeadJobsRemoteSenior PositionTripActionsUnited States
ADVERTISEMENT

Related Posts

Dark Wolf Solutions – Blue Team Lead, Cybersecurity Advisor

Dark Wolf Solutions – Blue Team Lead, Cybersecurity Advisor

January 12, 2023
XOR Security – Cyber Hunt/Deception Operations SME

XOR Security – Cyber Hunt/Deception Operations SME

January 12, 2023
Palo Alto Networks – Principal Solutions Architect, SASE/ Zero Trust

Palo Alto Networks – Principal Solutions Architect, SASE/ Zero Trust

January 12, 2023
ITW – IT Security Analyst

ITW – IT Security Analyst

January 12, 2023

More Articles

Incidents

Iranian hackers leak Mossad information

March 21, 2022
Cyber101

Threat Intelligence Lifecycle

June 28, 2022
Incidents

Android.Cynos.7.origin trojan infected +9 million Android devices

November 23, 2021
Incidents

Rackspace Hosted Exchange Still Offline Over Security Issue

December 5, 2022
Incidents

Black and White Cabs booking service offline after cyber attack

February 2, 2023

APT31

August 13, 2021
Document

GIAC Defending Advanced Threats (GDAT)

April 13, 2021
Course

HIPAA FOR BUSINESS ASSOCIATES – Software

April 5, 2022
Load More

Security through data

Cybersecurity Domains

  • API Security
  • Business Continuity
  • Career Development
  • Compliance
  • Cryptography
  • HSM
  • KPIs / KRIs
  • Penetration Testing
  • Shift Left
  • Vulnerability Scan

Emerging Technologies

  • 5G
  • Artificial Intelligence
  • Blockchain
  • Cryptocurrency
  • Deepfake
  • E-Commerce
  • Healthcare
  • IoT
  • Quantum Computing

Frameworks

  • CIS Controls
  • CCPA
  • GDPR
  • NIST
  • 23 NYCRR 500
  • HIPAA

Repository

  • Books
  • Certifications
  • Definitions
  • Documents
  • Entertainment
  • Quotes
  • Reports

Threats

  • APTs
  • DDoS
  • Insider Threat
  • Malware
  • Phishing
  • Ransomware
  • Social Engineering

© 2023 | CyberMaterial | All rights reserved.

World’s #1 Cybersecurity Repository

  • About
  • Legal and Privacy Policy
  • Site Map
No Result
View All Result
  • Audience
    • Cyber Citizens
    • Cyber Professionals
    • Institutions
  • Highlights
    • Blog
    • CyberDecoded
    • Cyber Review
    • CyberStory
    • CyberTips
  • Cyber Risks
    • Alerts
    • Attackers
    • Domains
    • Incidents
    • Threats
  • Opportunities
    • Events
    • Jobs
  • Repository
    • Books
    • Certifications
    • Cheat Sheets
    • Courses
    • Definitions
    • Frameworks
    • Games
    • Hardware Tools
    • Memes
    • Movies
    • Papers
    • Podcasts
    • Quotes
    • Reports
  • Report Cyber Incident
  • GET HELP

Subscribe to our newsletter

© 2022 Cybermaterial - Security Through Data .

Welcome Back!

Sign In with Google
Sign In with Linked In
OR

Forgotten Password? Sign Up

Create New Account!

Sign Up with Google
Sign Up with Linked In
OR

All fields are required. Log In

Retrieve your password

Please enter your username or email address to reset your password.

Log In

Add New Playlist

This website uses cookies. By continuing to use this website you are giving consent to cookies being used. Visit our Privacy and Cookie Policy.