Incident Response Team Lead
KellyMitchell Group · Arlington Heights, IL · 2 wk ago
Management$57–$62/hrContract
Core Responsibilities
- Monitor security alerts and logs to identify and analyze potential security incidents
- Investigate and triage security alerts, assess their severity, and initiate the incident response process as necessary
- Conduct in-depth analysis of security incidents, including malware analysis, network traffic analysis, and endpoint forensics
- Lead or assist in responding to security incidents, coordinating with clients and internal teams to contain, eradicate, and recover from security breaches
- Maintain detailed incident records, including incident timelines, actions taken, and lessons learned
- Utilize cybersecurity tools such as CrowdStrike and Splunk to enhance threat detection and incident response capabilities
- Prepare and deliver incident reports to clients and management, including recommendations for improving security posture
- Collaborate with cross-functional teams to share threat intelligence and develop proactive security measures
- Stay updated on the latest cybersecurity threats, trends, and best practices to improve incident response capabilities
- Provide assistance to IR teams on general triage and threat hunting exercises
- Gather metrics and report ongoing status
- Provide guidance and training to junior team members
- Contribute to the continuous improvement of SOC procedures and documentation
Requirements
- Bachelor's degree in Computer Science, Cybersecurity, or a related field (or equivalent work experience)
- 3+ years of experience as a SOC or Incident Response Analyst
- In-depth knowledge of cybersecurity such as EDR and SIEM, including CrowdStrike and Splunk
- Strong understanding of cybersecurity concepts, including threat detection, incident response, and malware analysis
- Knowledge of security frameworks and standards (e.g., NIST, ISO 27001)
- Excellent analytical and problem-solving skills
- Effective communication skills, both written and verbal
- Must be able to communicate in English to allow collaboration with global teams
- Ability to work effectively under pressure and in a fast-paced environment
- Demonstrated ability to manage multiple projects simultaneously, prioritize tasks, and meet deadlines
- A resourceful person that is a fast learner and asks when in doubt
Qualifications
- Relevant certifications (e.g., CompTIA Security+, GCIA, GCIH) are a plus
Pay and Benefits
The approximate pay range for this position is between $57.00 and $62.00. Please note that the pay range provided is a good faith estimate. Final compensation may vary based on factors including but not limited to background, knowledge, skills, and location. We comply with local wage minimums.
Medical, Dental, & Vision Insurance Plans
Employee Stock Ownership Plan
401K offered