Security Analyst, Incident Response

Remote

Apply with AI Apply

Not SpecifiedCompensation

Mid-level (3 to 4 years)Experience Level

Full TimeJob Type

UnknownVisa

Cybersecurity, BiotechnologyIndustries

Requirements

The ideal candidate will have 2-3 years of full-time experience in an incident response or security operations role. Strong experience with log analytics platforms like Splunk is preferred, along with proficiency in EDR, DLP/Insider Risk, and email security platforms. Experience monitoring and responding to threats in AWS, Linux, and MacOS environments is also required.

Responsibilities

This role involves performing in-depth analysis of security alerts and incidents across the enterprise and SpyCloud products. Responsibilities include creating incident response runbooks, contributing to the creation and tuning of detection rules and automated incident handling functions, and continually evaluating and enhancing incident response capabilities through process improvements and automation. The analyst will also perform threat hunting exercises and contribute to onboarding new security data sources. Occasional after-hours work may be required to support incident response efforts.

Skills

Incident Response

Security Operations

Log Analytics

Splunk

EDR

DLP

Insider Risk

Email Security

Threat Hunting

Detection Rules

Automation

SpyCloud

Cybersecurity for threat intelligence protection

About SpyCloud

SpyCloud specializes in cybersecurity, focusing on threat intelligence and identity protection for businesses. Its main product, the Cybercrime Analytics Platform, uses data from the dark web to help detect and prevent cyber threats like malware and ransomware. Unlike competitors, SpyCloud offers a comprehensive solution that combines threat intelligence, identity protection, and incident response in one platform. The company's goal is to enable businesses to proactively defend against cyber threats and reduce the risk of data breaches.

Austin, TexasHeadquarters

2016Year Founded

$197.9MTotal Funding

GROWTH_EQUITY_VCCompany Stage

CybersecurityIndustries

201-500Employees

Benefits

Health Insurance

Dental Insurance

Vision Insurance

401(k) Retirement Plan

Unlimited Paid Time Off

Meal Benefits

Flexible Work Hours

Remote Work Options

Risks

Emerging startups like SevenAI and Nexus challenge SpyCloud's market position.

Infostealer malware rise requires continuous adaptation of SpyCloud's solutions.

Resource diversion to Air Force contract may affect service delivery to existing clients.

Differentiation

SpyCloud uses unique recaptured darknet data for cybercrime analytics.

SpyCloud's Cybercrime Analytics Platform offers actionable insights to prevent ransomware and account takeovers.

SpyCloud collaborates with Pentera to reduce dwell time of compromised credentials.

Upsides

SpyCloud raised $35M to enhance account takeover prevention capabilities.

SpyCloud's Air Force SBIR contract indicates growth potential in government partnerships.

SpyCloud Labs positions the company as a thought leader in cybersecurity research.

Land your dream remote job 3x faster with AI

Try Jobo Free