CrawlJobs Logo
NTT DATA Logo NTT DATA · IT - Administration

Cybersecurity Incident Responder

United States, Fort Bragg Employment contract 90146.00 - 150244.00 USD / Year · Job Posted May 28, 2026
Apply Position
Job Link Share

Job Description

We are currently seeking a Cybersecurity Incident Responder to join our team in Fort Bragg, North Carolina (US-NC), United States (US).

Job Responsibility

  • Detecting, analyzing, containing, eradicating, and recovering from cybersecurity incidents across enterprise, endpoint, network, and cloud environments
  • Conducting investigations and responding to cybersecurity alerts and confirmed incidents across enterprise networks and cloud platforms such as AWS, Microsoft Azure, and Google Cloud
  • Executing containment actions on compromised systems or accounts
  • Supporting eradication and recovery efforts
  • Documenting all response activities through incident closure
  • Analyzing malware infections and responding to indicators of ransomware, trojans, spyware, and unauthorized software
  • Coordinating host containment and remediation actions such as antivirus or EDR scanning, reimaging, and evidence preservation
  • Managing spillage and data-loss events by containing and sanitizing affected systems
  • Coordinating reporting and remediation
  • Supporting insider-threat or data-exfiltration investigations
  • Conducting continuous monitoring by reviewing SIEM alerts, logs, endpoint notifications, and user reports
  • Creating accurate incident tickets, detailed timelines, after-action reports, maintaining evidence and chain-of-custody records
  • Briefing leadership or management as needed

Requirements

  • Minimum 7 years' of professional experience
  • Minimum 4 years' of experience in cybersecurity, help desk, system administration, SOC, or IR
  • Minimum 1 year of experience in Incident Response lifecycle (Preparation, Identification, Containment, Eradication, Recovery, Lessons Learned)
  • Minimum 1 year of experience in Email phishing investigations
  • Minimum 1 year of experience with one or more: Splunk and Elastic for Cloud, Endpoint Detection & Response (EDR) tools, Antivirus platforms, Vulnerability scanners (ACAS), ServiceNow, Remedy or similar ticketing systems
  • DoD 8570/8140 certification: CompTIA Security+ CE
  • Top Secret Security Clearance, SCI eligible

Nice to have

  • Malware basics
  • Networking fundamentals (IP, DNS, ports, protocols)
  • Experience supporting enterprise IT environment
  • Certification in one of: CySA+, CASP+, GIAC (GCIH, GCFA, etc.)

What we offer

  • Medical, dental, and vision insurance with an employer contribution
  • Flexible spending or health savings account
  • Life and AD&D insurance
  • Short and long term disability coverage
  • Paid time off
  • Employee assistance
  • Participation in a 401k program with company match
  • Additional voluntary or legally-required benefits
NTT DATA - All Job Offers

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Suggested Tags: Frontend Developer Secretary Talent Manager Salesforce Administrator Data Analyst
Similar Jobs for

Cybersecurity Incident Responder

8 matching positions

Principal Cybersecurity Incident Response Analyst

Principal Cybersecurity Incident Response Analyst role at HPE's Cyber Defense Ce...
Location
Location
India , Bangalore
Salary
Salary:
Not provided
https://www.hpe.com/ Logo
Hewlett Packard Enterprise
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree (or equivalent work experience) required, preferably in computer science, engineering or related area of study
  • Typically 8+ years of relevant experience
  • SOC team/Incident response/Advanced threat analyst experience is required
  • Proven track record of leading complex cybersecurity initiatives and managing ambiguous incidents
  • Extensive understanding of adversary tactics, techniques, and procedures (TTPs)
  • Extensive Cyber and IT security knowledge
  • Extensive understanding of Cyber and IT security risks, best practices, threats and prevention measures
  • Extensive understanding of SQL and relevant scripting languages
  • Extensive data security system analysis skills
  • Extensive risk assessment and management skills
Job Responsibility
Job Responsibility
  • Lead and coordinate responses to the most severe and complex cybersecurity incidents
  • Guide cross-functional teams through containment, eradication, and recovery
  • Provide executive-level oversight and decision-making during critical incidents
  • Effectively analyze associated logs and respond to high severity incidents
  • Contribute to the company's security response methods
  • Mentor and provide technical guidance to less experienced cybersecurity professionals
  • Stay at the forefront of cybersecurity trends, threats, and technologies
  • Foster a culture of continuous improvement and innovation
  • Provide insight and guidance through after action reviews
What we offer
What we offer
  • Health & Wellbeing benefits
  • Personal & Professional Development programs
  • Unconditional Inclusion environment
  • Comprehensive benefits suite supporting physical, financial and emotional wellbeing
  • Fulltime
Read More
Arrow Right

Security Incident Responder

Snowbit is looking for an experienced Security Incident Responder to join our Ma...
Location
Location
India , Gurugram
Salary
Salary:
Not provided
coralogix.com Logo
Coralogix
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 3-5 years in incident response, threat hunting with strong experience in cloud security (AWS, Azure, GCP) and Kubernetes environments
  • Proven Incident response experience in complex environments
  • Demonstrates strong expertise in understanding adversary tactics and techniques, translating them into actionable investigation tasks, conducting in-depth analysis, and accurately assessing the impact
  • Familiarity with attack vectors, malware families, and campaigns
  • Deep understanding of network architecture, protocols, and operating system internals (Windows, Linux, Unix)
  • Expertise in Kubernetes security, including container orchestration, workload isolation, and cluster hardening
  • Experience securing Kubernetes infrastructure, runtime security, and security monitoring
  • Ability to work independently and collaboratively in dynamic, fast-paced environments
  • Excellent written and verbal communication skills to interact with technical and non-technical stakeholders
Job Responsibility
Job Responsibility
  • Leverage Snowbit’s advanced MDR platform to lead large-scale incident response investigations and proactive threat-hunting initiatives
  • Conduct log analysis, and cloud artifact reviews using EDR and similar tools depending on availability, to support incident resolution and root-cause investigations
  • Investigate and respond to security incidents in containerized environments, with a specific focus on Kubernetes security and architecture
  • Research evolving cyberattack tactics, techniques, and procedures (TTPs) to strengthen customer defenses and codify insights for our services
  • Provide technical and executive briefings to customers, including recommendations to mitigate risk and enhance cybersecurity posture
  • Collaborate with internal teams, including engineering and research, to enhance Snowbit’s MDR and incident response capabilities
  • Partner with customer teams (IT, DevOps, and Security) to ensure seamless integration and adoption of Snowbit’s MDR services
  • Share expertise through presentations, research publications, and participation in the global cybersecurity community
  • Fulltime
Read More
Arrow Right

Senior Cybersecurity Incident Response Analyst

You will work as a Senior Cybersecurity Incident Response Analyst as part of Hew...
Location
Location
Ireland , Galway
Salary
Salary:
Not provided
https://www.hpe.com/ Logo
Hewlett Packard Enterprise
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree (or equivalent work experience) required, preferably in computer science, engineering or related area of study
  • typically 4+ years of relevant experience
  • SOC team/Incident response analyst experience is required
  • proven track record of leading complex cybersecurity initiatives and managing ambiguous incidents
  • advanced understanding of adversary tactics, techniques, and procedures (TTPs)
  • advanced Cyber and IT security knowledge
  • advanced understanding of Cyber and IT security risks, best practices, threats and prevention measures as well as containment and remediation actions
  • advanced understanding of SQL and relevant scripting languages
  • advanced data security system analysis skills
  • advanced risk assessment and management skills
Job Responsibility
Job Responsibility
  • Lead and coordinate responses to the most complex cybersecurity incidents, guiding cross-functional teams through containment, eradication, and recovery
  • analyze associated logs and respond to high severity incidents
  • suggest automation opportunities to enhance IR
  • mentor and provide technical guidance to less experienced cybersecurity professionals
  • stay at the forefront of cybersecurity trends, threats, and technologies
  • foster a culture of continuous improvement and innovation
  • encourage the adoption of new technologies and methodologies
  • provide insight and guidance through after action reviews working with stakeholders.
What we offer
What we offer
  • Comprehensive suite of benefits supporting physical, financial and emotional wellbeing
  • programs for professional and personal career development
  • unconditional inclusion and flexibility to manage work and personal needs.
  • Fulltime
Read More
Arrow Right

Senior Cybersecurity Expert

At Bosch, we shape the future by inventing high-quality technologies and service...
Location
Location
Poland , Warszawa
Salary
Salary:
Not provided
https://www.bosch.pl/ Logo
Robert Bosch Sp. z o.o.
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in Computer Science, Cybersecurity, or a related field
  • Several years of experience in a technical cybersecurity role (e.g., CTI, SOC, Threat Hunting, Incident Response, DFIR)
  • Proven expertise in tracking and analyzing adversarial behavior, with strong knowledge of the cyber kill chain and MITRE ATT&CK framework
  • Ability to work methodically and independently while being an effective and reliable team player in a distributed team
  • Excellent communication skills with the ability to translate complex technical findings for diverse stakeholders
  • Strong scripting and tool development experience (Python, APIs, Git, Docker)
  • Fluent in English
  • German is a plus.
Job Responsibility
Job Responsibility
  • Identify, analyze, and track threat actor TTPs and IOCs using threat prioritization frameworks and threat landscape monitoring
  • Investigate complex threat data to provide situational awareness, quantify trends, support ongoing investigations, and strengthen detection and response capabilities
  • Conduct in-depth technical analysis (searching, pivoting, enrichment) to support Threat Hunting and identify potential intrusions in Bosch networks and systems
  • Collaborate closely with cross-functional teams including Incident Response and Detection Engineering to integrate intelligence into detection and response workflows
  • Produce and deliver high-quality intelligence reports, briefings, and presentations tailored to technical, business, and executive audiences
  • Respond to Requests for Information (RFIs) and brief stakeholders on emerging campaigns and significant incidents
  • Develop and improve internal tools for threat analysis and monitoring (using Python, REST APIs, Git, Docker).
What we offer
What we offer
  • Competitive salary + annual bonus
  • Hybrid work with flexible working hours
  • Referral Bonus Program
  • Copyright costs for IT employees
  • Complex environment of working, professional support and possibility to share knowledge and best practices
  • Ongoing development opportunities in a multinational environment
  • Broad access to professional trainings (incl. language courses), conferences and webinars
  • Private medical care and life insurance
  • Cafeteria System with multiple benefits (incl. MultiSport, shopping vouchers, cinema tickets, etc.)
  • Prepaid Lunch Card
  • Fulltime
Read More
Arrow Right

Cybersecurity Engineer

The Cybersecurity Engineer will focus on crafting comprehensive cybersecurity po...
Location
Location
United States of America , Highland
Salary
Salary:
96000.00 - 113000.00 USD / Year
basler.com Logo
Basler Electric
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in Computer Science, Information Security, or a related field
  • Minimum 5 years of experience in a related field
  • Professional security certifications such as CISSP and Security+ are highly desirable
  • Proven experience in developing and implementing cybersecurity policies
  • Familiarity with NIST 800-171 and other relevant security guidelines and frameworks
  • Strong knowledge of malware analysis and incident response procedures
  • Proficiency in managing patching software and understanding of patch management best practices
  • Familiarity with Microsoft Active Directory, Windows Servers, and SCCM
  • Ability to support end users at a Tier 1 level
  • Familiarity with troubleshooting Microsoft Office products
Job Responsibility
Job Responsibility
  • Work with Director of IT and Systems Administrator to develop, implement, and maintain cybersecurity policies and procedures
  • Respond to cybersecurity questionnaires from clients, partners, and regulatory bodies
  • Investigate and respond to malware events, including detection, analysis, and remediation
  • Manage and oversee patching software to ensure systems and applications are up-to-date with the latest security patches
  • Maintains OS patch schedule and third-party software updates, including testing and deployment
  • Monitor and manage MDR (Managed Detection and Response) and investigate antivirus/malware events
  • Manage various security software applications for the entire organization
  • Collaborate with IT teams to address vulnerabilities and enhance overall security posture
  • Ensure conformity of servers with other information systems that follow system hardening best practices
  • Conduct regular security audits and assessments to ensure compliance with established policies and standards
What we offer
What we offer
  • Medical
  • Prescription
  • Dental
  • Vision
  • Life
  • AD&D insurance
  • 401k plan
  • paid leaves for Vacation
  • Holiday
  • Sick
Read More
Arrow Right

Senior Cybersecurity Expert (Threat Intelligence)

At Bosch, we shape the future by inventing high-quality technologies and service...
Location
Location
Poland , Warszawa
Salary
Salary:
Not provided
https://www.bosch.pl/ Logo
Robert Bosch Sp. z o.o.
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in Computer Science, Cybersecurity, or a related field
  • Several years of experience in a technical cybersecurity role (e.g., CTI, SOC, Threat Hunting, Incident Response, DFIR)
  • Proven expertise in tracking and analyzing adversarial behavior, with strong knowledge of the cyber kill chain and MITRE ATT&CK framework
  • Ability to work methodically and independently while being an effective and reliable team player in a distributed team
  • Excellent communication skills with the ability to translate complex technical findings for diverse stakeholders
  • Strong scripting and tool development experience (Python, APIs, Git, Docker)
  • Fluent in English
  • German is a plus
Job Responsibility
Job Responsibility
  • Identify, analyze, and track threat actor TTPs and IOCs using threat prioritization frameworks and threat landscape monitoring
  • Investigate complex threat data to provide situational awareness, quantify trends, support ongoing investigations, and strengthen detection and response capabilities
  • Conduct in-depth technical analysis (searching, pivoting, enrichment) to support Threat Hunting and identify potential intrusions in Bosch networks and systems
  • Collaborate closely with cross-functional teams including Incident Response and Detection Engineering to integrate intelligence into detection and response workflows
  • Produce and deliver high-quality intelligence reports, briefings, and presentations tailored to technical, business, and executive audiences
  • Respond to Requests for Information (RFIs) and brief stakeholders on emerging campaigns and significant incidents
  • Develop and improve internal tools for threat analysis and monitoring (using Python, REST APIs, Git, Docker)
What we offer
What we offer
  • Competitive salary + annual bonus
  • Hybrid work with flexible working hours
  • Referral Bonus Program
  • Copyright costs for IT employees
  • Private medical care and life insurance
  • Cafeteria System with multiple benefits (incl. MultiSport, shopping vouchers, cinema tickets, etc.)
  • Prepaid Lunch Card
  • Number of benefits for families (for instance summer camps for kids)
  • Non-working day on the 31st of December
  • Fulltime
Read More
Arrow Right

Security Specialist

The Security Specialist is a technical position within the organization. This po...
Location
Location
United States , Columbia
Salary
Salary:
Not provided
dpsolutions.com Logo
Data Processing Solutions
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in computer science, cybersecurity, or related field
  • Skills to diagnose and effectively troubleshoot technical issues
  • Must be available 24/7/365 to respond to security incidents without prior notice, and remain engaged until full remediation is achieved
  • In-depth knowledge of security concepts, protocols, policies, and best practices.
  • REQUIRED: CompTIA Network+ certification, or equivalent (six-month grace period)
  • REQUIRED: CompTIA Security+ certification, or equivalent (six-month grace period)
  • Understanding of Microsoft 365 platform and experience with security configurations in Microsoft 365
  • Continued commitment to technology growth and development
  • Self-motivated with the ability to multi-task and adapt quickly to change
  • Ability to work in a team and communicate effectively
Job Responsibility
Job Responsibility
  • Provide advance level troubleshooting and escalation support for services requests
  • Participate in pre-sales engagements as subject-matter expert to identify and plan for security-related solutions
  • Initiate Security Incident Response for client and internal security compromises
  • Monitor security solutions and remediate issues for clients. Tools include, but are not limited to Arctic Wolf, SentinelOne, Liongard, Auvik, KnowBe4, etc.
  • Participate in implementation of security offerings to clients
  • Document internal processes and procedures related to duties and responsibilities
  • System documentation and consulting services to include system reviews and recommendations
  • Provide escalation on off business hours, or may be requested to assist with weekend coverage
  • Enhance security in current systems by implementing and maintaining security controls
  • Assist with management and implementation of phishing and security awareness training
What we offer
What we offer
  • Competitive salary based on experience and qualifications.
  • Excellent benefits.
  • Fun working environment and culture.
  • Opportunity for advancement.
Read More
Arrow Right

Splunk Administrator

Sopra Steria seeks a Splunk Administrator to monitor infrastructure, respond to ...
Location
Location
India , Bengaluru
Salary
Salary:
Not provided
https://www.soprasteria.com Logo
Sopra Steria
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Monitor Splunk infrastructure, logs & dashboards for anomalies
  • Respond to alerts & incidents as part of business support
  • Perform initial triage, escalate to L3 when required
  • Work on incident resolution within defined SLA’s
  • Document the RCA for major incidents
  • Ensure high availability & reliability of Splunk environments (indexers, SHs, forwarders, etc.)
  • Perform routine health checks & system audits
  • Handle Splunk configuration changes (inputs.conf, outputs.conf, props.conf, etc.)
  • Manage users' access & roles
  • Identifying & resolving performance bottlenecks in indexing & searching
Job Responsibility
Job Responsibility
  • Monitor Splunk infrastructure
  • Respond to alerts & incidents
  • Perform initial triage
  • Work on incident resolution within SLA’s
  • Document RCA for major incidents
  • Ensure high availability of environments
  • Perform health checks & audits
  • Handle configuration changes
  • Manage user access & roles
  • Resolve performance bottlenecks
What we offer
What we offer
  • Inclusive and respectful work environment
  • Open to people with disabilities
  • Fulltime
Read More
Arrow Right