Security Analyst Remote Jobs in Washington (US)

This page tracks remote security analyst openings that are location-eligible for Washington.

Open jobs

1,496

Hiring companies this week

Salary sample

$90,000 - $137,800

Jobs added last hour

Strict location onlyShow closed jobs

Post Date

Minimum Salary

Experience

1496 Jobs

969 Companies

Senior Incident Commander

Docusign

Founded in 2003, Docusign is an electronic signature and transaction management firm with over 1 million customers and billions of users across the globe. Docus

Incident Response Analyst10 hours ago

Full Time Remote Senior

Company Site

Title: Senior Incident Commander Location: United States Job Description: Company Overview Docusign brings agreements to life. Over 1.5 million customers and more than a billion people in over 180 countries use Docusign solutions to accelerate the process of doing business and simplify people's lives. With intelligent agreement management, Docusign unleashes business-critical data that is trapped inside of documents. Until now, these were disconnected from business systems of record, costing businesses time, money, and opportunity. Using Docusign's Intelligent Agreement Management platform, companies can create, commit, and manage agreements with solutions created by the #1 company in e-signature and contract lifecycle management (CLM). What you'll do The Senior Incident Commander is part of the SRE Incident Response team at Docusign. The role is around leading and facilitating incidents and incident management processes around our products and security. The role involves strategic project management, effective communication with stakeholders including executive leadership, and handling challenging incidents independently. They play a pivotal role in developing Docusign's overall service excellence practice by creating standard operating procedures, training material, operationalizing action items and provide valuable metrics for improvement. The role also requires daily incident management support across various Docusign infrastructures globally, ensuring the maintenance of service levels. The role will facilitate resolution for all major incidents, and handling communications via bridge calls and emails. The role includes on-call responsibilities outside business hours and weekends, daily reporting, ticket administration, and general production assurance duties. The ideal candidate is self-motivated and responsible, with the ability to prioritize under heavy workloads and operate under time constraints. Adherence to established procedures and detailed documentation of incidents and resolution steps is essential. This position is an individual contributor role reporting to the Sr. Manager, SRE Incident Command. Responsibility - Serve as a subject matter expert for Docusign's incident management - Partner with the SRE team to manage complex and sensitive critical incidents to conclusion, identifying and resolving challenges to ensure timely resolution - Partner with Service Owners and SRE to craft quality RCA and drive improvements across the domain to minimize number of incidents and their severity - Monitor, evaluate and report on incident management programs, processes and statistics to assure continuous improvement, implementing automated procedures to capture such data consistently - Lead post-incident reviews (RCA) by working with Service Owners and SREs to identify root causes, propose actionable improvements, and implement processes that minimize the number and severity of future incidents - Leverage organizational data to analyze incident trends, operational success metrics, and key areas for improvement, enabling data-driven decision-making and proactive prevention strategies - Utilize advanced reporting tools to proactively identify issues, systemic trends, and data anomalies - Utilize advanced monitoring and automation tools to identify opportunities to reduce response times, and ensure swift mitigation of risks, enabling more efficient management of major incidents and preventing incident recurrence - Interact regularly with senior leaders to facilitate effective incident handling or project delivery, producing suitable communications - Generate communications for multiple audience types, both customer-facing and internal - Prioritize incidents based on impact and urgency and classify them based on customer and operational impact, ensuring efficient resource allocation and effective resolution - Engage resources to resolve major incidents and minimize customer/business impact, managing escalation pathos as necessary - Serve as an escalation point within the Incident Management process, contributing to and initiating Crisis Incident response processes and applying the escalation process when required - Analyze incident data for anomalies, correlations, and trends against operational success criteria to improve incident response and prevention strategies - Participate in a rotational shift 24 x 7 x 365 Job Designation Remote: Employee is not required to be in or near an office frequently and works from a designated remote work location for the majority of the time. Positions at Docusign are assigned a job designation of either In Office, Hybrid or Remote and are specific to the role/job. Preferred job designations are not guaranteed when changing positions within Docusign. Docusign reserves the right to change a position's job designation depending on business needs and as permitted by local law. What you bring Basic - 8+ years experience in Incident Management, including leadership of major incidents and high-severity situations - Experience in operating and implementing Incident Management tools - Experience monitoring platforms and applications like Prometheus, Grafana, Azure Data Explorer, Incident.io - Experience with cloud and on-premise system architecture and design - Experience with troubleshooting techniques and problem-solving in a 24x7x365 environment Preferred - Completion of recognized incident command training (e.g., ICS certifications) and the ability to apply structured command and communication during major incidents - Experience analyzing incidents from customers perspective and drive through all phases to mitigation - Experience leading during incident calls, confidently driving towards resolution while communicating progress effectively to all stakeholders - Strong cross-functional collaboration, coordinating with multiple internal teams to establish containment and remediation strategies are implemented and carried out - Ability to lead incident calls confidently and independently to a successful resolution - Ability to understand and work within complex, large enterprise business environments - Process improvement experience, including conducting process analysis, identifying inefficiencies, and implementing recommended solutions - Experience managing complex security and privacy investigations - Excellent oral and written communication skills, with the ability to tailor messages for technical and non-technical audiences - Ability to work well interpersonally across various levels and disciplines, as well as influence and manage without direct authority - Skilled in understanding infrastructure dependencies and system integrations to perform troubleshooting in public/private cloud environments - Applied mitigation experience with microservices architecture, CI/CD pipelines, network architecture, data storage solutions, and virtualization across hybrid environments, ensuring rapid incident resolution, effective rollback practices, and minimized downtime in highly distributed systems - Strong understanding of TCP/IP networking, DNS, Load Balancing, and SSL/TLS protocols to assist in diagnosing connectivity and performance issues Wage Transparency Pay for this position is based on a number of factors including geographic location and may vary depending on job-related knowledge, skills, and experience. Based on applicable legislation, the below details pay ranges in the following locations: California: $164,700.00 - $266,000.00 base salary Illinois, Colorado, Massachusetts and Minnesota: $158,300.00 - $223,625.00 base salary Washington, Maryland, New Jersey and New York (including NYC metro area): $158,300.00 - $232,575.00 base salary Washington DC: $164,700.00 - $232,575.00 base salary Ohio: $137,800.00 - $194,650.00 base salary This role is also eligible for the following: - Bonus: Sales personnel are eligible for variable incentive pay dependent on their achievement of pre-established sales goals. Non-Sales roles are eligible for a company bonus plan, which is calculated as a percentage of eligible wages and dependent on company performance. - Stock: This role is eligible to receive Restricted Stock Units (RSUs). Global benefits provide options for the following: - Paid Time Off: earned time off, as well as paid company holidays based on region - Paid Parental Leave: take up to six months off with your child after birth, adoption or foster care placement - Full Health Benefits Plans: options for 100% employer paid and minimum employee contribution health plans from day one of employment - Retirement Plans: select retirement and pension programs with potential for employer contributions - Learning and Development: options for coaching, online courses and education reimbursements - Compassionate Care Leave: paid time off following the loss of a loved one and other life-changing events Life at Docusign Working here Docusign is committed to building trust and making the world more agreeable for our employees, customers and the communities in which we live and work. You can count on us to listen, be honest, and try our best to do what's right, every day. At Docusign, everything is equal. We each have a responsibility to ensure every team member has an equal opportunity to succeed, to be heard, to exchange ideas openly, to build lasting relationships, and to do the work of their life. Best of all, you will be able to feel deep pride in the work you do, because your contribution helps us make the world better than we found it. And for that, you'll be loved by us, our customers, and the world in which we live. Accommodation Docusign is committed to providing reasonable accommodations for qualified individuals with disabilities in our job application procedures. If you need such an accommodation, or a religious accommodation, during the application process, please contact us at accommodations@docusign.com. If you experience any issues, concerns, or technical difficulties during the application process please get in touch with our Talent organization at taops@docusign.com for assistance. Applicant and Candidate Privacy Notice States Not Eligible for Employment This position is not eligible for employment in the following states: Alaska, Hawaii, Maine, Mississippi, North Dakota, South Dakota, Vermont, West Virginia and Wyoming. Equal Opportunity Employer It's important to us that we build a talented team that is as diverse as our customers and where all employees feel a deep sense of belonging and thrive. We encourage great talent who bring a range of perspectives to apply for our open positions. Docusign is an Equal Opportunity Employer and makes hiring decisions based on experience, skill, aptitude and a can-do approach. We will not discriminate based on race, ethnicity, color, age, sex, religion, national origin, ancestry, pregnancy, sexual orientation, gender identity, gender expression, genetic information, physical or mental disability, registered domestic partner status, caregiver status, marital status, veteran or military status, or any other legally protected category. EEO Know Your Rights poster #LI-Remote

Observability/Monitoring Prometheus Grafana Azure Microservices CI/CD Distributed Systems TCP/IP DNS SSL TLS

View details: Senior Incident Commander

Worldwide

$137.8K - $266K / year

Apply

Security Analyst

Oddball

Oddball is a software development company that focuses on designing and building tools for enterprises and institutions. The company delivers services, including back-end developme

Security Analyst10 hours ago

Full Time Remote Senior

• Partner with engineers and security SMEs to design, improve, and implement Identity and Access Management (IAM) solutions for VA.gov products • Analyze security metrics and access management trends to inform how the program approaches security architecture • Develop and document requirements for IAM solutions including identity lifecycle, role management, separation of duties, and access workflows • Build and maintain logging and monitoring solutions using Splunk, Loki, and/or AWS CloudWatch • Develop use cases and test cases, and participate in SIT/UAT testing • Operate as a domain expert — teams will lean on you for both functional and technical guidance on security and IAM • Support the Security Collab Cycle, ensuring teams building products and features on VA.gov are doing so in alignment with Platform security standards and best practices

AWS Cyber Security Splunk

View details: Security Analyst

United States

$90K - $125K / year

Apply

Security Analyst – Governance, Risk, and Compliance

LaunchDarkly

Empowering all teams to deliver and control their software.

Security Analyst14 hours ago

Full Time Remote SeniorTeam 201-500Since 2014H1B Sponsor

Company Site LinkedIn

• Collaborate with stakeholders to design and operate security controls that comprise the LaunchDarkly GRC program • Use technology to automate compliance activities like gathering evidence and verifying controls • Operationalize the health and maturity of the program by tracking metrics based on quantitative and qualitative data • Drive progress towards results for GRC-related continuous improvement projects • Contribute to documentation for security standards, policies, and processes • Support audits and assessments with internal and external stakeholders • Work with product and infrastructure delivery teams on engineering projects related to GRC requirements

AWS Cloud Cyber Security

View details: Security Analyst – Governance, Risk, and Compliance

United States

$116K - $187.7K / year

Apply

K-8 Spanish Language Arts (SLA) Specialist

Kiddom

Kiddom has developed an e-learning platform to bring districts and schools “into the future of personalized teaching and learning.” As an employer, the comp

Threat Intelligence Specialist21 hours ago

Other Remote Senior

Company Site

Title: K-8 Spanish Language Arts (SLA) Specialist Location: Anywhere - remote US Type: Contract Workplace: remote Category: Curriculum Job Description: About Kiddom Kiddom is a groundbreaking educational platform that promotes student equity and growth by uniting high-quality instructional materials with dynamic digital learning. Through unparalleled curriculum management functionality, Kiddom empowers schools and districts to take ownership of their curriculum – resulting in learning experiences tailored to meet the unique needs and goals of local communities. Kiddom’s high-quality curriculum is layered with robust teacher and leader data insights to drive the continuous improvement of instructional decisions, school/district programming, and professional learning. We are seeking an experienced K–8 Spanish Language Arts (SLA) Specialist to review and provide feedback on the development of Spanish ELA lesson materials for grades K–8. This role is designed to support the creation of high-quality, standards-aligned Spanish language arts lessons that are linguistically authentic, culturally responsive, and developmentally appropriate across all grade bands. The Specialist will partner with our instructional design team to ensure that lesson content reflects best practices in Spanish literacy development, biliteracy, and heritage language education. What you'll do... Lesson Review and Feedback - Collaborate with the instructional design team during the initial analysis phase to develop a scope and sequence for Spanish ELA lessons across K–8 grade bands. - Conduct thorough reviews of lesson content, learning objectives, and instructional activities to ensure alignment with relevant Spanish language arts standards and frameworks. - Assess the developmental and linguistic appropriateness of lesson design, vocabulary, and text selections for each grade band (K–2, 3–5, 6–8). - Provide detailed, actionable, written feedback on lesson materials that will be implemented by content writers and instructional designers. - Evaluate the authenticity and accuracy of Spanish-language content, including grammar, syntax, and culturally situated language use. Content Expertise and Consultation - Serve as a subject matter expert on Spanish literacy development, including phonological awareness in Spanish, decoding, fluency, comprehension, and written expression across the K–8 continuum. - Advise on best practices for supporting Spanish-dominant, emergent bilingual, and heritage language learners across grade levels. - Ensure cultural and linguistic responsiveness throughout lesson materials, with attention to diverse Latin American and Spanish-speaking communities and dialects. - Recommend evidence-based instructional practices and current research in Spanish literacy education, biliteracy, and dual-language program design. - Advise on the integration of Spanish language arts instruction with English language arts to support biliteracy development where applicable. Quality Assurance - Verify the accuracy of Spanish-language content, including standards alignment, grade-level appropriateness, and adherence to accepted linguistic norms. - Ensure lesson content reflects current guidance on Spanish language arts instruction, biliteracy frameworks, and relevant state or national standards. - Review materials for clarity, coherence, and accessibility for teacher learners who may have varying levels of Spanish language proficiency. - Identify gaps in content coverage, linguistic accuracy, or cultural representation, and flag areas requiring additional development or revision. What we're looking for... Education and Certification - Master's degree in Education, Bilingual Education, Spanish Language Arts, Linguistics, or a related field. - Bilingual or dual-language teaching authorization (e.g., Bilingual Authorization, BCLAD, or equivalent) preferred. - Native or near-native Spanish proficiency required; formal training in Spanish linguistics or language arts instruction preferred. Experience - Minimum 5 years of successful K–8 classroom teaching experience delivering Spanish language arts or dual-language instruction. - Demonstrated expertise in implementing Spanish ELA standards and frameworks in elementary and/or middle school settings. - Experience with curriculum development, lesson review, or instructional coaching in a bilingual or Spanish-medium context. - Proven track record of supporting Spanish-dominant, emergent bilingual, or heritage Spanish speakers in developing literacy skills. Knowledge and Skills - Deep understanding of Spanish language arts standards, biliteracy frameworks, and the research base supporting Spanish literacy development across grades K–8. - Expertise in developmentally appropriate and linguistically appropriate practices for learners across the K–8 continuum. - Strong knowledge of Spanish literacy development, including phonological and phonemic awareness in Spanish, morphology, syntax, text complexity, and written composition. - Understanding of the connections and transfer between Spanish and English literacy skills in bilingual and dual-language programs. - Familiarity with culturally sustaining pedagogy and approaches that affirm the linguistic and cultural identities of Spanish-speaking students. - Familiarity with Universal Design for Learning (UDL) principles as applied to language arts instruction. - Excellent written and verbal communication skills in both Spanish and English. - Ability to provide constructive, specific, and actionable feedback to content developers in a collaborative environment. Hourly compensation range is dependent on geographic location, prior experience, seniority, and demonstrated role related ability during the interview process. What Kiddom offers: * Flexible, part-time schedule that works around your availability. * Opportunities to grow your skills and deepen your expertise in edtech. * The chance to make an immediate impact on educators and classrooms. * A passionate, collaborative team obsessed with building transformative education technology Equal Employment Opportunity Policy Kiddom is committed to providing equal employment opportunities to all employees and applicants without regard to race, religion, color, gender, sexual orientation, transgender status, national origin, citizenship status, uniform service member status, pregnancy, age, genetic information, disability, or any other protected status in accordance with all applicable federal, state, and local laws.

View details: K-8 Spanish Language Arts (SLA) Specialist

Worldwide

Apply

Member Milestones Specialist Supervisor

Gamma Phi Beta

Threat Intelligence Specialist21 hours ago

Full Time Remote Mid Level

Role Description The member milestones specialist supervisor is responsible for overseeing the operation of the member milestones team. - Annually determine the number of specialists needed to hire based on anticipated returning specialists. - Conduct hiring with the director of alumnae engagement to fill open team member positions. - Assign member milestone specialists to 50- and 75-year members to be contacted. - Serve as the main point of contact for member milestone specialists. - Onboard and train member milestone specialists as needed. - Host a call for all member milestone specialists two additional times per year to get the team together at the mid-program and end-of-program timeframe. - Ensure that member milestone specialists are contacting their assigned 50- and 75-year members. - Meet monthly with the director of alumnae engagement to address specialist progress, items of concern or recommend updates to the member milestones program. - Conduct research on lost members to obtain a more accurate membership database. - Follow up with members as you receive communication back from them. - Send the provided card to 50- and 75-year members as assigned by the member milestones team leader and include a personalized celebratory message. - Update the shared member milestones document on a timely basis to provide information, including but not limited to the type of contact made, updated member contact information and deceased member updates. Qualifications - Communication. - Teamwork. - Critical Thinking. - Experience supervising others. Requirements - This role is appointed for a one-year term ending on July 31, 2027. - This role requires four to ten hours per week on average. - No travel is expected for this role. Any changes in travel expectations will be communicated to volunteers. - Meet all expectations as outlined in Gamma Phi Beta’s Appointed Volunteer Expectations Agreement.

View details: Member Milestones Specialist Supervisor

Worldwide

Apply

Population Health Specialist

Sparrow - TrySparrow.com, Inc.

Sparrow, legally known as TrySparrow.com, Inc., is a software company that partners with employers to manage all types of employee leave, like family and medica

Threat Intelligence Specialist1 day ago

Full Time Remote Mid Level

Company Site

Role Description As a member of the Population Health Service Organization (PHSO), the Population Health Specialist (PHS) will play a vital role in the redesign of integrated care for Sparrow Care Network (SCN). The PHSs will provide needed support in assisting with pro-active outreach to patients, often serving as the initial point of contact. - Coordinate low-to-moderate risk outreach in the form of Provider-Delivered Care Management (PDCM) or Emergency Department (ED)/Transitional Care Management (TCM) calls post-discharge. - Assist with resource referrals as needed and screen patients for additional needs. - Work remotely within the PHSO office, providing ongoing telephonic support for individuals needing episodic care management. - Possess a strong understanding of scheduling workflows and communicate effectively with all team members. - Adapt to working offsite and support multiple practices. Qualifications - Completion of a nationally or internationally accredited program in self-management support concepts and techniques within 12 months of assuming this position if not completed prior to being hired. - Certified Medical Assistant - preferred. - National case management certification – preferred. - Minimum of 1 year of medical or case management experience. - High school diploma or GED. - Completion of a Medical Assistant (MA) program. Requirements - Demonstrates excellent clinical knowledge, skills, and judgment. - Excellent communication skills including emotional intelligence, relationship building, negotiation, conflict resolution, persuasion, marketing, and patient advocacy. - Ability to proactively and creatively problem solve. - Ability to prioritize, organize, handle many tasks simultaneously, work autonomously, and manage time. - Ability to work in stressful situations and manage conflict. - Ability to work in an EMR environment. - Knowledge and demonstrated ability to collect, analyze, and utilize data for process improvement - preferred. - Experience with an EMR - preferred. - Proficiency in Microsoft Excel - preferred. - Knowledge of case management including health care finance, hospital and community resources, discharge planning, utilization review, utilization management, ethical case management principles, and evidence-based practice concepts - preferred. Company Description University of Michigan Health-Sparrow is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or protected Veteran status.

Excel

View details: Population Health Specialist

United States

Apply

Cyber Threat Hunter

BlueCross BlueShield of Tennessee

Bringing peace of mind through better health to our customers and communities

Threat Intelligence Specialist1 day ago

Full Time Remote Mid LevelTeam 5,001-10,000Since 1952H1B Sponsor

Company Site LinkedIn

Role Description We’re looking for an individual who has a strong interest in cybersecurity and brings curiosity and evolving techniques to help identify and analyze potential threats. Your skills will support our team’s ability to detect and respond to cyber attacks; experience with cloud security is a plus! As a Cyber Threat Hunter, you’ll play an important role in helping us stay ahead of emerging threats. As a valued member of the team, you will contribute to identifying, analyzing, and mitigating cyber threats to help protect our organization’s assets and data. Our team is composed of individuals from various backgrounds and experiences, fostering a rich and inclusive culture where everyone’s voice is heard and valued. Every day brings new and exciting challenges—you’ll have the opportunity to build your skills, solve complex problems, and grow your capabilities in a dynamic cybersecurity environment. To be successful in this role, you’ll bring a solid foundation in cybersecurity principles, an analytical mindset, and a willingness to learn and collaborate. Experience with threat detection tools, incident response processes, or cloud environments will help you stand out. Note: Sponsorship is unavailable for this role. This is a remote, work-from-home position, but the final round of interviews will take place on-site in our Chattanooga, TN office. Qualifications - Bachelor's Degree in a Computer Sciences related field or equivalent work experience - 3 years of experience in Information Security required - 1 year of experience with information technology concepts, terminology, and standards required Requirements - Common knowledge of malicious code (worms, viruses, spyware, etc.) - Understanding of Security Methodologies for Windows / Linux / Unix operating systems - Knowledge of TCPIP/UDP/ICMP - Working knowledge of the OSI Reference Model - Knowledge of networking components (routers, switches, load balancers, wireless access points, etc.) - Knowledge of Information Security components (IPS, IDS, WAF, SEIM, etc.) - Knowledge of vulnerability assessments - Knowledge of security incident handling - Ability to work independently with minimal supervision or function in a team environment sharing responsibility, roles, and accountability - Proficient in Microsoft Office (Outlook, Word, Excel, and PowerPoint) - Must be a team player, be organized, and have the ability to handle multiple projects - Excellent oral and written communication skills - Strong interpersonal and organizational skills Company Description BCBST BlueCross BlueShield of Tennessee, Inc. is committed to recruiting, hiring, training, and promoting individuals in all job classifications without regard to race, religion, color, age, sex, national origin, citizenship, pregnancy, veteran status, sexual orientation, physical or mental disability, gender identity, or any other characteristic protected by applicable law. Further information regarding BCBST's EEO Policies/Notices may be found by reviewing the following page: BCBST's EEO Policies/Notices. BlueCross BlueShield of Tennessee is not accepting unsolicited assistance from search firms for this employment opportunity. All resumes submitted by search firms to any employee at BlueCross BlueShield of Tennessee via email, the Internet, or any other method without a valid, written Direct Placement Agreement in place for this position from BlueCross BlueShield of Tennessee HR/Talent Acquisition will not be considered. No fee will be paid in the event the applicant is hired by BlueCross BlueShield of Tennessee as a result of the referral or through other means.

Microsoft Windows Linux Unix Microsoft Office Excel

View details: Cyber Threat Hunter

United States

Apply

Senior Cyber Threat Analyst

DFIN - Donnelley Financial Solutions

A leading provider of risk and compliance solutions, DFIN - Donnelley Financial Solutions offers data insights, industry expertise, and insightful technology to help clients make s

Threat Intelligence Specialist1 day ago

Other Remote Senior

Title: Sr Cyber Threat Analyst Location: US Department: Information Technology Job Description: Join a dynamic team at the pulse of global markets, where we deliver innovative software and service solutions for essential financial reporting and capital markets transactions. At DFIN, we are a values-driven organization that empowers you to build a fulfilling career while bringing your authentic self to work every day. Our “Win as One” mentality ensures that our team’s success is directly linked to Client, Shareholder and Employee Satisfaction. Recognized as one of AMERICA'S MOST LOVED WORKPLACES® for five consecutive years and a Built In Best Places to Work for six years, we are committed to our employees’ total well-being. Enjoy competitive compensation, a flexible workplace, comprehensive benefits, and opportunities for professional growth. Bring your passion and talents to DFIN – because being YOU thrives here. Summary: The Senior Cyber Threat Analyst will lead efforts to investigate cybersecurity incidents from end-to-end, engaging and coordinating peer teams, stakeholders, and external entities as necessary. This person will play a role of subject matter expert in the areas of incident response, threat hunting, and forensics. The Senior Cyber Threat Analyst will author incident response runbooks and mentor cyber threat analysts in incident response and digital forensics methodologies. Responsibilities: - Lead incident response activities to identify, assess, contain, mitigate all observed threats and document all investigational efforts for multiple audiences - Develop and operationalize incident response runbooks with an emphasis on automation and ability to measure incident response effectiveness (Develop/track KPIs) - Document and track incident response investigations, including observed IOCs and TTPs, system(s) impacted, criticality and scope of any data exposure, lessons learned, follow-up items - Act as a liaison between a diverse group of teams including engineering, security, and network & system operations to ensure effective adoption of incident response requirements and operational considerations - Act as incident manager for all declared cyber security incidents - Conduct traditional forensic and data acquisition activities utilizing industry standard commercial and open-source toolsets - Identify, analyze, and interpret trends or patterns in complex data sets - Work with the functional business areas as needed during incident response investigations - Develop, customize, and maintain reporting around key metrics related to investigational and threat hunting activities - Serve as a trusted advisor to the team Lead, Manger, and the SVP, and CISO on sensitive matters warranting confidentiality - Communicate and present issues/investigation results to peer and executive-level audiences - Demonstrate subject matter expertise across most technology domains - Perform other duties as assigned Qualifications: - Bachelor’s degree with 8+ years of relevant experience or 10+ years of equivalent experience through work and education - 8+ years of cybersecurity investigation and incident response experience - Strong understanding of operating systems (Windows, macOS, Linux, Unix, mobile) - Experience investigating incidents in cloud environments (SaaS, PaaS, and other cloud platforms) Preferred Qualifications: - Security certifications (e.g., CISSP, GSEC, GCFA, GCFE) - Strong analytical and problem-solving skills - Knowledge across cybersecurity domains, including firewalls, IDS, and network security platforms - Experience leveraging threat intelligence in security operations - Advanced knowledge of cyber attack techniques and mitigation strategies - Ability to assess risk using qualitative and quantitative methods - Strong communication skills for technical and leadership audiences - Proven ability to handle confidential data and follow procedures - Ability to perform effectively in fast-paced, high-pressure environments - Expertise in incident response, digital forensics, network traffic, log, and malware analysis - Familiarity with MITRE ATT&CK and ATLAS frameworks - Experience with SIEM, SOAR, and EDR tools for detection and response It is the policy of Donnelley Financial Solutions to select, place, and manage all its employees without discrimination based on race, color, national origin, gender, age, religion, actual or perceived disability, veteran status, actual or perceived sexual orientation, genetic information or any other protected status. If you are a qualified individual with a disability or a disabled veteran, you have the right to request a reasonable accommodation if you are unable or limited in your ability to use or access jobs.dfinsolutions.com as a result of your disability. You can request a reasonable accommodation by sending an email to talentacquisition@dfinsolutions.com. At DFIN, protecting your identity is a top priority. Please be aware of scammers impersonating DFIN recruiters. DFIN recruiters will never request personal information via email or text. You will only receive a text from us if you've already been in contact. All automated messages will come from talentacquisition@dfinsolutions.com. If you ever have doubts about the legitimacy of any communication from us, please do not hesitate to reach out for verification via talentacquisition@dfinsolutions.com (this email is for general TA questions and is not used for updates on your application status). #BI-Remote

Microsoft Windows macOS Linux Unix Firewalls SIEM

View details: Senior Cyber Threat Analyst

Worldwide

Apply

Senior SOC Analyst

ECS Tech Inc

All candidates must meet the following criteria: Must be a US Citizen, no dual Citizenships. Must be able to secure a Public trust clearance. Must be able to work across multiple programs across the Federal and DOD space. The core values that ECS looks for in an engagement manager include: Teamwork, Respect, Accountability, Integrity, and Leadership.

Security Analyst1 day ago

Full Time Remote SeniorH1B No Sponsor

Company Site LinkedIn

Role Description The Senior SOC Analyst is responsible for advanced security monitoring, investigation, and incident response activities within the Everforth Security Operations Center (SOC). This role serves as a senior technical resource within the analyst team, responsible for leading complex investigations, mentoring junior analysts, and ensuring high-quality incident analysis across enterprise environments. The Senior SOC Analyst plays a critical role in identifying sophisticated threats, escalating security incidents, and improving SOC investigative capabilities. This role reports to the SOC Manager and works closely with the Security Engineering team, enterprise IT operations teams, and the Everforth Commercial MSSP to ensure effective monitoring, investigation, and response across the enterprise. Responsibilities - Advanced Threat Investigation: Conduct in-depth analysis of complex security alerts, anomalies, and potential threat activity across enterprise environments. - Incident Response Support: Lead investigation and response activities for confirmed or suspected cybersecurity incidents affecting enterprise systems. - Alert Triage and Escalation: Perform detailed triage of security alerts and escalate validated incidents according to established procedures. - Investigation Leadership: Serve as the lead analyst during significant investigations, coordinating investigative efforts and guiding response activities. - Threat Analysis: Analyze indicators of compromise, attacker behavior, and malicious artifacts to determine the scope and impact of security incidents. - Detection Engineering: Develop and refine detection logic, analytics, and monitoring use cases based on investigative findings and threat intelligence. - Threat Hunting: Conduct proactive threat hunting activities to identify adversary behavior not detected through automated alerts. - MSSP Escalation Handling: Review and validate alerts and escalations originating from the MSSP after-hours monitoring team. - Investigation Documentation: Ensure thorough documentation of investigations, findings, and response actions within the SOC case management platform. - Operational Quality Assurance: Support the SOC Manager in maintaining investigation quality and adherence to SOC playbooks and procedures. - Operational Effectiveness: Lead the design and implementation of SOC process improvements through automation, AI-driven solutions, workflow optimization, and continuous enhancement of detection and response capabilities. - Operational Collaboration: Work closely with IT operations, infrastructure teams, and security engineering to support investigation and remediation activities. - Knowledge Sharing: Mentor junior SOC analysts and provide guidance on investigative techniques, threat analysis, and incident handling procedures. - Situational Awareness: Maintain awareness of emerging threats, attacker tactics, techniques, and procedures relevant to enterprise environments. - Playbook Execution: Execute established SOC investigation playbooks and contribute to the refinement of operational procedures. - On-Call Support: Participate in on-call support to assist with security incident response, operational issues, and investigation activities to maintain continuous SOC coverage and response capability. Qualifications - Experience: Minimum of 5 years of cybersecurity experience, with at least 3 years in a Security Operations Center or incident response role. - Security Investigation Expertise: Strong experience investigating security alerts, analyzing suspicious activity, and determining the scope and impact of security incidents. - Incident Response Experience: Hands-on experience supporting incident response investigations including containment, eradication, and recovery coordination. - Security Technology Experience: Experience working with enterprise security tools such as SIEM platforms, EDR platforms, and log analysis systems. - Threat Analysis Skills: Ability to analyze indicators of compromise, attacker behaviors, and adversary techniques during investigations. - Log Analysis Expertise: Strong experience reviewing and interpreting system logs, endpoint telemetry, network events, and authentication activity. - Detection Engineering Experience: Experience developing or tuning detection rules, analytics, or monitoring logic used to identify malicious activity. - Security Framework Knowledge: Familiarity with cybersecurity frameworks such as NIST Cybersecurity Framework or CIS Critical Security Controls. - Investigation Documentation: Experience documenting investigations, incidents, and response actions within case management platforms. Requirements - Able and willing to obtain a US Security Clearance. - This role may require occasional on-call support during off-hours to respond to security incidents.

Observability/Monitoring AI SIEM

View details: Senior SOC Analyst

United States

Apply

SOC Analyst

ECS Tech Inc

Security Analyst1 day ago

Full Time Remote Mid LevelH1B No Sponsor

Company Site LinkedIn

Role Description The SOC Analyst is responsible for enterprise security monitoring, alert investigation, and incident response activities within the Everforth Security Operations Center (SOC). This role supports the continuous monitoring of enterprise systems and security telemetry to identify potential threats and suspicious activity. SOC Analysts perform investigative analysis of security alerts, participate in incident response activities, and contribute to detection engineering efforts that improve the organization's ability to detect malicious activity. This role reports to the SOC Manager and works closely with Senior SOC Analysts, the Security Engineering team, enterprise IT operations teams, and the MSSP to ensure effective monitoring, investigation, and response across the enterprise environment. Responsibilities - Security Monitoring: Monitor enterprise security telemetry and alerts generated by security platforms to identify potential threats or suspicious activity. - Alert Investigation: Conduct investigations of security alerts to determine legitimacy, scope, and potential impact to enterprise systems. - Incident Detection: Identify indicators of compromise, malicious behavior, and suspicious activity within enterprise environments. - Incident Response Support: Support investigation and response activities during confirmed or suspected cybersecurity incidents. - Threat Analysis: Analyze security telemetry, logs, and alerts to determine attacker behavior, indicators of compromise, and potential attack vectors. - Detection Engineering Support: Contribute to the development and refinement of detection rules and monitoring analytics based on investigation findings. - Threat Hunting: Participate in proactive threat hunting activities to identify adversary behavior that may not be detected through automated monitoring. - MSSP Escalation Review: Review and investigate alerts escalated by the MSSP after-hours monitoring team. - Investigation Documentation: Document investigations, findings, and response actions within the SOC case management platform. - Operational Effectiveness: Contributes to SOC process improvements by supporting automation efforts, implementing AI-assisted workflows, identifying efficiency opportunities, and helping enhance detection and response operations. - Playbook Execution: Execute SOC operational playbooks and investigation procedures during alert triage and incident response. - Operational Collaboration: Work closely with IT operations, infrastructure teams, and security engineering to support investigation and remediation activities. - Continuous Improvement: Identify opportunities to improve monitoring coverage, investigation processes, and detection capabilities. - On-Call Support: Participate in on-call support to assist with security incident response, operational issues, and investigation activities to maintain continuous SOC coverage and response capability. Qualifications - Minimum of 3–5 years of cybersecurity experience, with experience in security operations, threat monitoring, or incident response environments. - Experience monitoring security alerts and investigating suspicious activity using enterprise security tools. - Ability to analyze security alerts, logs, and telemetry to determine potential malicious activity. - Experience working with enterprise security tools such as SIEM platforms, endpoint detection and response (EDR), and log analysis tools. - Experience reviewing system logs, authentication activity, endpoint telemetry, and network security events. - Understanding of basic incident response processes and investigation workflows. - Familiarity with common attacker techniques and indicators of compromise. - Familiarity with cybersecurity frameworks such as NIST Cybersecurity Framework or CIS Critical Security Controls. - Experience documenting investigations and response actions in case management platforms. Requirements - Able and willing to obtain a US Security Clearance. - This role may require occasional on-call support during off-hours to respond to security incidents.

Observability/Monitoring AI SIEM

View details: SOC Analyst

United States

Apply

1,486more opportunities are still waiting for you.Log in now and take your next shot before someone else does.