Incident Response Analyst

📋 Description

• • As an Incident Response Analyst at UltraViolet Cyber, you will be at the forefront of defending our clients against sophisticated cyber threats, playing a pivotal role in safeguarding their critical assets, sensitive data, and brand reputation.
• • You will be instrumental in executing the full incident response lifecycle, from initial detection and triage to in-depth analysis, effective containment, thorough eradication, and diligent recovery.
• • Your primary responsibility will involve meticulously investigating security incidents, analyzing logs, network traffic, and system artifacts to identify the root cause, scope, and impact of security breaches.
• • You will leverage your expertise to perform digital forensics, including evidence collection, preservation, and analysis, ensuring that all actions are conducted with integrity and adhere to legal and regulatory standards.
• • A key aspect of your role will be to provide timely and accurate technical guidance and support to clients and internal teams during active security incidents, facilitating swift and decisive action.
• • You will be responsible for documenting all incident response activities, findings, and recommendations in clear, concise reports, contributing to a comprehensive knowledge base and post-incident review process.
• • Proactively monitor security alerts and threat intelligence feeds to identify potential threats and vulnerabilities before they can be exploited.
• • Collaborate closely with other security teams, including threat intelligence, security engineering, and client-facing teams, to share information and coordinate response efforts.
• • Contribute to the development and refinement of incident response playbooks, procedures, and best practices to enhance the efficiency and effectiveness of our security operations.
• • Participate in tabletop exercises and simulations to test and improve incident response capabilities.
• • Stay abreast of the latest cybersecurity threats, attack vectors, vulnerabilities, and mitigation techniques through continuous learning and professional development.
• • Analyze malware and other malicious code to understand its behavior and impact.
• • Assist in the development and implementation of security controls and recommendations to prevent future incidents.
• • You will be a crucial part of a team dedicated to providing cutting-edge, platform-enabled unified security operations, working with a security-as-code approach that combines technological innovation with deep human expertise.
• • This role offers a unique opportunity to work with a diverse range of clients, including Fortune 500 companies, Federal Government agencies, and commercial entities, exposing you to a wide array of security challenges and environments.
• • You will contribute to the mission of making advanced real-time cybersecurity accessible to all organizations by eliminating the risks associated with separate red and blue teams.
• • The position requires a proactive mindset, a keen analytical ability, and a passion for cybersecurity and incident response.
• • You will be expected to work under pressure, make critical decisions, and communicate effectively with stakeholders at various levels.
• • Your work will directly impact the resilience and security posture of our clients, ensuring their continued operations and the protection of their valuable information.
• • This is an opportunity to grow your career within a dynamic and rapidly evolving cybersecurity landscape, with a company founded and operated by seasoned security practitioners.
• • You will be part of a culture that values continuous improvement, knowledge sharing, and a commitment to excellence in cybersecurity operations.
• • The role demands a strong understanding of network protocols, operating systems (Windows, Linux, macOS), and common attack methodologies.
• • Familiarity with security tools such as SIEM, EDR, IDS/IPS, and forensic analysis tools is essential.
• • You will be expected to adapt quickly to new technologies and evolving threat landscapes.
• • The ability to work independently and as part of a collaborative team is paramount.
• • Your contributions will help shape the future of unified security operations and enhance the security-as-code platform that defines UltraViolet Cyber.
• • This role is critical in ensuring that our clients maintain a continuously optimized identification, detection, and resilience against today’s dynamic threat landscape.
• • You will be a key player in delivering managed and custom-tailored unified security operations solutions.
• • The position is based in Benton Harbor, MI, offering a chance to contribute to a leading cybersecurity firm with a strong foundation and a clear vision for the future of security operations.