Senior Defense and Response Analyst

Live Nation Entertainment is the world’s largest live entertainment company, composed of global market leaders: Ticketmaster, Live Nation Concerts, and Live Nation Media & Sponsorship. With 550 million fans and operations in over 40 countries, our security mission is to ensure those experiences remain uninterrupted and safe. The Detection and Response Team (DART) plays a key role in maintaining that trust, security, and resilience.

As a Senior DART Analyst, you will support the detection and response mission by leading complex investigations, guiding junior analysts, and ensuring timely response to security incidents. Reporting to the DART Lead, you will assist in operational execution across shifts, ensure adherence to best practices, and contribute to the development of tools, playbooks, and detection logic.

This role combines technical depth, mentorship, and reliability during critical security events.

• Monitor and triage alerts from SIEM, EDR, and NDR platforms, escalating or investigating as appropriate.
• Conduct thorough investigations to determine scope, impact, and root cause of security events.
• Collaborate with cross-functional teams during containment and remediation efforts.
• Document findings clearly and contribute to after‑action reviews and incident post‑mortems.

• Support shift operations by ensuring alert queues are processed accurately and efficiently.
• Contribute to shift handovers and knowledge transfers to ensure continuity of service.
• Help enforce process consistency and adherence to escalation paths.

• Provide technical guidance and mentorship to junior analysts during investigations.
• Assist the DART Lead with onboarding and upskilling new team members.
• Promote knowledge sharing and maintain a culture of learning within the team.

• Help identify gaps in detection, visibility, or workflow inefficiencies.
• Contribute feedback on tooling, processes, and documentation to the DART Lead.
• Assist in maintaining and refining playbooks, queries, and automated response actions.

• Work closely with the DART Lead and other senior team members to ensure coverage and preparedness.
• Coordinate with other security teams (e.g., threat intelligence, engineering) to ensure findings are actioned and learned from.

• 3–5+ years of experience in a cybersecurity analyst role, preferably in a SOC or incident response function.
• Strong understanding of threat actor TTPs and practical experience applying MITRE ATT&CK or similar frameworks.
• Hands‑on experience with SIEM, EDR, and NDR platforms.
• Familiarity with cloud environments such as AWS, Azure, and GCP.
• Solid investigative mindset and ability to operate effectively in high‑pressure scenarios.
• Strong written and verbal communication skills.

• GIAC Security Expert (GSE)
• GIAC Certified Incident Handler (GCIH)
• GIAC Certified Intrusion Analyst (GCIA)
• CompTIA Cybersecurity Analyst (CySA+)
• OSCP – Offensive Security Certified Professional
• CISSP – Certified Information Systems Security Professional
• Microsoft Certified: Cybersecurity Architect Expert or AWS Certified Security
• CompTIA Security Plus (Sec +)

• Willingness to participate in a 24 / 7 on‑call rotation.
• Flexibility to work in a dynamic environment across shifts and time zones.
• Commitment to maintaining a strong security posture and improving team performance.

We are passionate and committed to our people and go beyond the rhetoric of diversity and inclusion. You will be working in an inclusive environment and be encouraged to bring your whole self to work. We will do all that we can to help you successfully balance your work and homelife. As a growing business we will encourage you to develop your professional and personal aspirations, enjoy new experiences, and learn from the talented people you will be working with. It’s talent that matters to us and we encourage applications from people irrespective of their gender identity, race, sexual orientation, religion, age, disability status or caring responsibilities.