Jobs · Engineering · Georgia

Cybersecurity Incident Response Specialist

Geotab · Atlanta, GA · 3 wk ago
EngineeringFull-time

Who we are:

We are always looking for amazing talent who can contribute to our growth and deliver results! Geotab is seeking a Cybersecurity Incident Response Specialist who will be responsible for protecting Geotab's software, hardware, and supply chain by leading incident response efforts across government-compliant and commercial environments. If you love investigative security work, thrive in fast-moving environments, and are keen to join an industry leader — we would love to hear from you!

Who you are:

To be successful in this role you will be a self-starter with strong investigative instincts who can execute independently with minimal supervision. In addition, the successful candidate will have excellent communication skills with the ability to coordinate across leadership and internal teams, and a demonstrated ability to push tasks to completion even in ambiguous or high-pressure situations.

What you'll do:

  • Proactively monitor, evaluate, and track systems and networks for breaches to Geotab's security, products, and customers
  • Identify security flaws and vulnerabilities and utilize industry standard metrics for evaluating risks (e.g. CVSS)
  • Ensure that Geotab's compliance requirements are met (e.g. NIST 800-53 & NIST 800-171), with dedicated focus on FedRAMP and CONUS environments
  • Perform security audits, risk analysis, network forensics, and penetration testing to reduce attack surface
  • Perform malware analysis and reverse engineering to develop a procedural set of responses to security problems
  • Establish plans that outlines security gap assessments, policies, procedures, playbooks, training, and tabletop testing
  • Establish protocols for effectively communicating security incidents and breaches with customers, internal stakeholders, and law enforcement
  • Remedy security breaches in a timely manner according to priority and provide expert SME guidance to internal teams

What you'll bring to the role:

  • Post-secondary diploma or degree specializing in Computer Science, Engineering, or a related field
  • 3–5 years of experience in an Incident Response or Security Operations role
  • Hands-on experience with Elastic, CrowdStrike, and SQL; scripting proficiency in Python, PowerShell, and Bash; familiarity with Splunk, QRadar, or other SIEM tools is a strong asset
  • Experience in GCP environments (primary); AWS, Azure, or Oracle cloud familiarity is an asset
  • CCSP certification desired; CISSP and SANS certifications is a plus — strong hands-on experience will be considered over certifications alone
  • Strong communication skills with proven ability to work independently as a self-starter in a remote or hybrid environment (Atlanta or remote; hybrid if Atlanta-based)
  • Willingness to participate in a on-call incidents

Similar jobs

Cybersecurity Incident Responder

NTT DATA North AmericaFort Liberty, North Carolina, United States· 2 wk ago
Information Technologyapply on careers.services.global.ntt