Enable job alerts via email!

Cybersecurity Incident Response Analyst

Splunk

Town of Texas (WI)

On-site

USD 90,000 - 120,000

Full time

6 days ago

Be an early applicant

Boost your interview chances

Create a job specific, tailored resume for higher success rate.

Job summary

A leading company in cybersecurity is seeking a Cybersecurity Incident Response Analyst to join their 24/7 Security Operations Center. The role involves responding to threats, enhancing detection logic, and mentoring team members. Ideal candidates will have strong communication skills and a solid background in information security.

Qualifications

5+ years of related experience or a Master's degree with 3 years of experience.
Strong understanding of TCP/IP, DNS, network analysis.

Responsibilities

Support 24x7 SOC operations by responding to security alerts.
Conduct reactive and proactive threat hunting.
Mentor and support fellow analysts.

Skills

Communication

Problem Solving

Attention to Detail

Education

Bachelor's degree in computer science

Master's degree

Tools

Firewalls

IDS

Endpoint Security

Cloud Security

Container Security

Join to apply for the Cybersecurity Incident Response Analyst role at Splunk.

Splunk, a Cisco company, is building a safer and more resilient digital world with an end-to-end full stack platform made for a hybrid, multi-cloud world. Leading enterprises use our unified security and observability platform to keep their digital systems secure and reliable. Our employees are what make Splunk stand out—kindness, passion, and joy are valued here.

Role

The Cybersecurity Incident Response Analyst works in Splunk's global, shift-based, 24/7 Security Operations Center (SOC), supporting detection and response to cyber threats. You will need comprehensive knowledge of Information Security and IT principles, excellent communication skills, and a desire to learn and grow. We are a team that enjoys fun and laughter, but always puts security first!

Responsibilities

Support 24x7 SOC operations by responding to security alerts, containing threats, and ensuring the safety of Splunk's environments.
Contribute to developing and improving detection logic with our Detection Engineering team.
Enhance search quality, automate, and create orchestration playbooks.
Conduct reactive and proactive threat hunting to identify sophisticated attacks.
Gather and present evidence for compliance and monitoring.
Maintain and update runbooks for efficient response actions.
Collaborate with the Center of Excellence to improve data sources and ingestion standards.
Work with product teams on testing, feedback, and ideas for Splunk products.
Mentor and support fellow analysts to improve team performance.

Requirements

5+ years of related experience or a Master's degree with 3 years of experience.
Bachelor's degree in computer science or related field, or equivalent experience.
Experience with security technologies like firewalls, IDS, endpoint security; cloud and container security knowledge is a plus.
Strong understanding of TCP/IP, DNS, network analysis, OSI model.
Experience with cloud platforms and technologies.
Ability to multitask, prioritize, and lead response efforts.
Creative problem-solving skills and follow-through.
Excellent interpersonal skills and ability to communicate technical concepts clearly.
Attention to detail and high standards of quality.

Splunk is an Equal Opportunity Employer and values diversity, equity, inclusion, and belonging.

Get your free, confidential resume review.

or drag and drop a PDF, DOC, DOCX, ODT, or PAGES file up to 5MB.

Similar jobs