Incident Handler II

Job Summary

As an Incident Handler II, the full-time position will investigate and analyze malicious activities across various customer environments, collaborating with MDR SOC analysts and Incident Responders to address threats ranging from commodity malware to sophisticated attacks.

Key responsibilities

• Conduct end-to-end investigations into malicious activities, including scoping, timeline analysis, root-cause identification, and documentation
• Own complex investigations, serving as the escalation point for advanced incidents and collaborating with cross-functional teams
• Prepare detailed Incident Reports mapped to MITRE ATT&CK and share threat intelligence to enhance collective defenses

Required qualifications

• 3-4 years of experience in a cybersecurity-related role, with SOC and/or SIEM analysis experience preferred
• Proficiency in analyzing forensic artifacts across Windows environments; experience with Linux, AWS, Azure, and/or GCP is a plus
• Understanding of core operating system concepts across Windows, macOS, and Linux
• Familiarity with the MITRE ATT&CK Framework and its application to investigation reporting
• Experience with static and/or dynamic malware analysis