• Serve as an Incident Response (IR) Analyst supporting the Analysis on Demand (AoD) team. • Drive client meetings to discuss incident scope, investigative findings, and response updates while producing clear and detailed technical reports. • Conduct incident triage and verification, determine scope of compromise, perform threat hunting, and provide containment and remediation recommendations to customers. • Serve as a primary responder and point of contact during incident response engagements, supporting forensic investigation, analysis, and resolution of security incidents. • Work directly with clients to perform investigations, forensically analyze systems, and identify attacker activity across enterprise environments. • Analyze compromised systems to determine attack vectors, persistence mechanisms, lateral movement, and attacker techniques. • Identify attacker tools, tactics, and procedures (TTPs) and understand evolving threat actor behaviors. • Follow industry incident response best practices for containment, eradication, and recovery. • This position focuses on hands-on investigation and incident response, not alert monitoring or tier-1 SOC duties. • Must be familiar with incident response best practices and procedures. • Must have Windows-based incident response and computer forensics experience. • Must be familiar with network analysis, memory analysis, and digital forensics investigations. • Must possess excellent verbal and written communication skills, including the ability to present findings and recommendations to technical teams and leadership.

About Crisis24 Crisis24 is a global, AI-enhanced provider of travel risk management, mass communications, critical event management, crisis-security consulting, personal protection solutions and global medical concierge capabilities, allowing prominent organizations, disruptive brands and influential people to operate with confidence in an uncertain world. At Crisis24, we go beyond mere employment; we pave the way to a realm where your skills become instrumental in shaping global security, guiding clients through a multifaceted and challenging landscape. Your journey with us will be deeply fulfilling, driven by a powerful sense of purpose and accomplishment. Within our thriving environment, you'll discover abundant chances for both personal and career advancement. Seize this moment to push your limits, broaden your expertise, and elevate your professional journey to unprecedented levels. Join the Crisis24 team today and be a part of something extraordinary where growth and impact converge. More information is available at www.crisis24.garda.com This position is remote. This is not a Cybersecurity position Summary The GSOC Analyst must be detail-oriented, have a strong aptitude in communication and analytical thinking when responding to events, as well as having a team first mentality. Daily responsibilities will focus on the monitoring of global events, camera and alarm monitoring, internal and external communications, and responding to alerts from a variety of security systems and tools. Analysts must be able to effectively comprehend data and compose clear and effective communications that will have a global audience. Essential Functions - Provide emergency and non-emergency security system monitoring, security dispatch, and emergency notification services. - Write security incident investigation reports to provide situational awareness and communicate risks to management. - Collect, evaluate, and disseminate intelligence to support action plans based on credibility and likelihood. - Assist in planning and execution of risk assessment and situational reports. - Contribute to procedures and processes to standardize and enhance risk management. - Work closely with various onsite, offsite, internal, and external security teams. - Process and maintain a wide variety of files, logs, reports, and forms. - Prepare written reports of incidents in the proper format, grammar, and spelling. - Analyze information using multiple external sources to identify and prevent potential threats or risks affecting company assets. - This Job Description is not a comprehensive list of all required activities, duties, or responsibilities. Duties, responsibilities, and activities may change at the discretion of the leadership at any time with or without notice. - Required And Preferred Experience And Qualifications - 3 + years of experience in intelligence analysis, threat assessment, incident response and management, or a GSOC environment required. - Bachelor’s degree in a related field is strongly preferred. Either bachelor's degree or equivalent military or work experience is acceptable. - Must have experience writing intelligence products such as situation reports and risk assessments. - Strong writing and analytical skills; experience monitoring open sources to proactively identify physical security threats that could impact the organization’s employees, assets or reputation. - Have an interest or direct experience in the following: Executive Protection, Intelligence, Operations, Critical Incident Management or Corporate Security. - Must be well-versed in current technologies and open-source search methodologies. - Experience working on a remote based team. - Must be willing to sign an NDA and maintain strict confidentiality. - Must be able to communicate effectively, both verbally and in writing. - Must be a competent user of Microsoft Suite and Google Suite. - Ability to maintain a professional demeanor during stressful situations. - Must be able to quickly adapt and excel in dynamic situations. - Demonstrated organizational and time management skills. - Maintain composure in dealing with authorities, executives, clients, staff, and the public occasionally under conditions of urgency and in pressure situations. - Ability to work 8 to 12-hour shifts both days and nights. Information Security Protect the data and systems of Crisis24 and its stakeholders by adhering to policies, reporting incidents and potential problems, completing regular training, and identifying opportunities for improvement. Crisis24, A GardaWorld Company is dedicated to equal opportunity in employment. We are committed to a work environment that celebrates diversity. We do not discriminate against any individual based on race, color, sex, national origin, age, religion, marital or parental status, sexual orientation, gender identity, gender expression, military or veteran status, disability, or any factors protected by applicable laws.

• Own architecture & delivery for complex integration services (APIs, microservices, event-driven workflows) with production SLIs/SLOs • Build AI-driven workflows (RAG, summarization, classification, agents) that augment investigations, triage, and orchestration • Create reusable connectors bridging SIEM/EDR/IAM/SSPM/ITDR/ITSM and cloud telemetry with robust error handling, retries, and DLQs • Implement security automation (SOAR-like playbooks) that enrich alerts and trigger deterministic + AI-assisted responses • Harden and observe services with CI/CD, automated testing, performance profiling, metrics, and incident runbooks • Mentor engineers and lead technical design reviews, coding standards, and reference implementations • Translate requirements into clear epics/roadmaps; align stakeholders and deliver on time with quality

This description is a summary of our understanding of the job description. Click on 'Apply' button to find out more. Role Description As a SOC Analyst at Bolster, you'll be part of a team protecting some of the world's largest brands from online phishing and scams. You’ll work in a highly dynamic environment reviewing threats and pursuing enforcement against some of the most sophisticated online scammers. This is a career-defining opportunity to join a small, nimble team and help shape key features of Bolster’s future product portfolio. - Review the latest threats targeting Bolster's customers and prospects. - Analyse online content across multiple platforms including web, social media, apps stores, website building platforms, etc. - Train Bolster's AI engine with based on the latest threats. - Investigate online activity and infrastructure to determine the fraud source. - Engage with hosting providers, registrars, registries, etc. to shutdown online threats. - Track ongoing enforcement efforts and content change. - Provide support and written responses to customer queries and requests via tickets. - Support sales and customer success teams with threat intelligence for customers and prospects. - Generate monthly and ad-hoc reports summarizing metrics and trends targeting customers and prospects. - Respond to security alerts to support issue resolution and minimize the impact of security events. - Research security issues and work with internal teams to find and track resolution. - Help manage and improve the issue-tracking process. - Create and enhance operational metrics to ensure the security programs are effective. Qualifications - Related experience, specifically in security operations, incident response and vulnerability management. - Experience with enterprise-wide technical solution implementations. - Knowledge of security, development, and network infrastructure. - Self-motivated and detail-orientated with the ability to work independently as well as function as part of a team. - Has an analytical mind for problem-solving, abstract thought, and offensive security tactics. - Has strong interpersonal skills (written and oral communication). - Security certifications are a plus. Requirements - $80,000 - $130,000 a year Benefits - Excellent medical, dental, and vision insurance. - Flexible time off + paid holidays. - Equity + 401(k) plan.