Incident Response Team Lead III

Mindlance

Arlington Heights, IL

JOB DETAILS
SKILLS
Analysis Skills, Best Practices, Communication Skills, CompTIA Security+, Computer Science, Computer Security, Continuous Improvement, Cross-Functional, Diversity, Documentation, English Language, Establish Priorities, Forensic Science, GCIA - GIAC Certified Intrusion Analyst, GCIH - GIAC Certified Incident Handler, Hunting, IR (Infrared), ISO (International Organization for Standardization), Incident Response, Internet Security, Malware Analysis, Metrics, Multitasking, Network Traffic Analysis, Organizational Skills, People Management, Presentation/Verbal Skills, Problem Solving Skills, Procedure Development, Project/Program Management, Record Keeping, Security Analysis, Security Attacks, Security Information and Event Management (SIEM), Security Monitoring, Splunk, Status Reports, Team Lead/Manager, Time Management, Training/Teaching, U.S. National Institute of Standards and Technology (NIST), Writing Skills
LOCATION
Arlington Heights, IL
POSTED
15 days ago
Incident Response Team Lead
 
Role and Responsibilities:
Seeking a highly skilled and experienced Incident Response Analyst, the candidate will play a critical role in detecting, responding to, and mitigating security incidents. The candidate will work alongside a team of skilled professionals to monitor and protect our clients' infrastructure, providing rapid and effective incident response. The candidate’s expertise in cybersecurity, along with experience in SOC and incident response, will be invaluable in maintaining the security posture of our clients.
This role is in support of a 24x7 operation, and candidates will be expected to work assigned shifts outside what would be considered normal working hours. 
 
Key Responsibilities:
  • Monitor security alerts and logs to identify and analyze potential security incidents.
  • Investigate and triage security alerts, assess their severity, and initiate the incident response process as necessary.
  • Conduct in-depth analysis of security incidents, including malware analysis, network traffic analysis, and endpoint forensics.
  • Lead or assist in responding to security incidents, coordinating with clients and internal teams to contain, eradicate, and recover from security breaches.
  • Maintain detailed incident records, including incident timelines, actions taken, and lessons learned.
  • Utilize cybersecurity tools such as CrowdStrike and Splunk to enhance threat detection and incident response capabilities.
  • Prepare and deliver incident reports to clients and management, including recommendations for improving security posture.
  • Collaborate with cross-functional teams to share threat intelligence and develop proactive security measures.
  • Stay updated on the latest cybersecurity threats, trends, and best practices to improve incident response capabilities.
  • Provide assistance to IR teams on general triage and threat hunting exercises.
  • Gather metrics and report ongoing status (not sure how to word this here, or if you need that )
  • Provide guidance and training to junior team members.
  • Contribute to the continuous improvement of SOC procedures and documentation
 
Qualifications:
  • Bachelor's degree in Computer Science, Cybersecurity, or a related field (or equivalent work experience).
  • 3-4 years of experience as a SOC or Incident Response Analyst.
  • In-depth knowledge of cybersecurity such as EDR and SIEM , including CrowdStrike and Splunk.
  • Strong understanding of cybersecurity concepts, including threat detection, incident response, and malware analysis.
  • Knowledge of security frameworks and standards (e.g., NIST, ISO 27001).
  • Excellent analytical and problem-solving skills.
  • Effective communication skills, both written and verbal.
  • Must be able to communicate in English to allow collaboration with global teams.
  • Ability to work effectively under pressure and in a fast-paced environment.
  • Relevant certifications (e.g., CompTIA Security+, GCIA, GCIH) are a plus.
  • Demonstrated ability to manage multiple projects simultaneously, prioritize tasks, and meet deadlines.
  • A resourceful person that is a fast learner and asks when in doubt.
  • Ability to manage multiple projects simultaneously.
  • Naturally organized with determination to deliver excellence.
  • Experience working in a fast-paced environment with changing priorities.

Mindlance is an Equal Opportunity Employer and does not discriminate in employment on the basis of – Minority/Gender/Disability/Religion/LGBTQI/Age/Veterans.

About the Company

M

Mindlance