Wo diese Rolle verfügbar ist
Standardmäßig eingeklappt, damit die Stellenbeschreibung gut lesbar bleibt.
- Center Valley - Pennsylvania - United States, Vereinigte Staaten
- Vereinigte Staaten
Rollenübersicht von JobGrid
Senior Incident Response Analyst (R-19347) at dnb: Center Valley - Pennsylvania - United States, Vereinigte Staaten, Vereinigte Staaten; Vor Ort; Senior; IT; Security Engineer. JobGrid adds normalized role facts, source context, and a path to the employer application page so candidates can compare the listing before applying.
- Location and workplace: Center Valley - Pennsylvania - United States, Vereinigte Staaten, Vereinigte Staaten, Vor Ort
- Role classification: IT, Security Engineer, Senior
- Source freshness: checked by JobGrid on 2026-06-11.
- Application path: candidates continue to the employer application page with non-personal referral tags.
We are seeking a highly skilled Senior Incident Response Analyst to lead advanced threat detection, investigation, and remediation efforts within our Security Operations program. This role is responsible for handling complex security incidents, guiding junior analysts, improving detection capabilities, and strengthening our overall security posture.
The Senior Incident Response Analyst brings deep technical expertise, strong analytical thinking, and a proactive mindset toward defending the enterprise.
Key Responsibilities:
- Lead high‑fidelity alert investigations, performing deep technical analysis to rapidly identify, contain, and remediate threats.
- Own complex incident investigations, driving technically precise conclusions and elevating the organization’s detection and response maturity.
- Champion process development, identifying gaps, designing scalable workflows, and implementing improvements that strengthen the Incident Response program.
- Create and refine technical playbooks, documentation, and response guides, ensuring clarity, consistency, and operational excellence.
- Mentor and uplift junior analysts, providing guidance, coaching, and training to build a high-performing team.
- Serve as the escalation point for critical and ambiguous cases, applying advanced threat analysis and sound judgment under pressure.
- Collaborate with engineering, IT, Legal, HR, and business partners to resolve incidents holistically and drive enterprise-wide security improvements.
- Apply strong analytical and technical expertise to continuously enhance SOC processes, workflows, and response capabilities.
- Contribute to the evolution of our detection landscape, partnering with detection engineering to improve log ingestion, alert logic, and signal quality.
- Assess and mitigate AI‑related security risks, including model misuse, prompt injection, data leakage, and emerging automation attack vectors.
- Participate in an on‑call rotation, serving as a trusted responder for high‑severity incidents.
Skills Needed:
At least 1 SANS/GIAC Certification (GCIH, GREM, GCFA preferred)
Strong Hands-on experience with
SIEM Platforms (Splunk, Microsoft sentinel, etc)
EDR Tools (CrowdStrike, Carbon Black)
Cloud environments (Azure, AWS, GCP, AliCloud)
Network log analysis (Netflows and PCAP files)
Deep understanding of:
Mitre ATT&CK framework
Malware behavior and exploitation techniques
Windows, Linux, and macOS internals
Script analysis (Javascript, VBscript, powershell, python)
Malicious binary analysis (Windows, MacOS, Linux)
Clear communication rooted in technical competence
Confidence discussing findings with peers and senior management
Education:
- Bachelors Degree - Required