Incident Response Analyst @ Obsidian Insurance Holdings, Inc | Jobright.ai
JOBSarrow
RecommendedLiked
0
Applied
0
External
0
Incident Response Analyst jobs in United States
114 applicants
company-logo

Obsidian Insurance Holdings, Inc ยท 6 hours ago

Incident Response Analyst

ftfMaximize your interview chances
Insurance
badNo H1BnoteU.S. Citizen Onlynote

Insider Connection @Obsidian Insurance Holdings, Inc

Discover valuable connections within the company who might provide insights and potential referrals.
Get 3x more responses when you reach out via email instead of LinkedIn.

Responsibilities

Coordinate investigation and response efforts throughout the Incident Response lifecycle
Correlate and analyze events and data to determine scope of Cyber Incidents
Acquire and analyze endpoint and network artifacts, volatile memory, malicious files/binaries and scripts
Recognize attacker tactics, techniques, and procedures as potential indicators of compromise (IOCs) that can be used to improve monitoring, analysis, and Incident Response.
Develop, document, and maintain Incident Response process, procedures, workflows, and playbooks
Tune and maintain security tools (EDR, IDS, SIEM, etc) to reduce false positives and improve SOC detection capabilities
Document Investigation and Incident Response actions taken in Case Management Systems and prepare formal Incident Reports
Create metrics and determine Key Performance Indicators to drive maturity of SOC operations
Develop security content such as scripts, signatures, and alerts

Qualification

Find out how your skills align with this job's requirements. If anything seems off, you can easily click on the tags to select or unselect skills to reflect your actual expertise.

Incident ResponseMalware AnalysisComputer ForensicsEnterprise Network ArchitecturesSIEM ToolsWindows Operating SystemsLinux Operating SystemsCommon ProtocolsCyber Kill ChainATT&CK FrameworkPythonPowerShellBashCISSP CertificationOSCP CertificationGCIH CertificationGCIA CertificationGCFA CertificationGPEN CertificationGCFE CertificationGREM CertificationRelationship Building

Required

5-8 years of industry experience
Expertise of Operating Systems (Windows/Linux) operations and artifacts
Expertise of Enterprise Network Architectures to include routing/switching, common protocols (DHCP, DNS, HTTP, etc.), and devices (Firewalls, Proxies, Load Balancers, VPN, etc.)
Ability to recognize suspicious activity/events, common attacker TTPs, and perform logical analysis and research to determine root cause and scope of Incidents
Expertise with Cyber Kill Chain and have utilized the ATT&CK Framework
Have scripting experience with Python, PowerShell, and/or Bash
Ability to independently prioritize and complete multiple tasks with little to no supervision
Flexible and adaptable self-starter with strong relationship-building skills
Strong problem-solving abilities with an analytic and qualitative eye for reasoning
Strong verbal and written communication skills
Ability to communicate with all levels of audiences (subordinates, peers & leadership)
Candidate must have technical hands-on experience in the areas of incident detection and response, malware analysis, or computer forensics.
Must Be Willing to Obtain One of the Following Certifications: CISSP, OSCP, GCIH, GCIA, GCFA, GPEN, GCFE, GREM
Department of Homeland Security ESOC employees are required to obtain an Entry on Duty (EOD) clearance to support this program
US Citizenship (Required)
Incident response: 4 years (Required)
Splunk or other relative SIEM tools: 4 years (Required)

Benefits

401(k)
401(k) matching
Dental insurance
Health insurance
Health savings account
Life insurance
Paid time off
Professional development assistance
Referral program
Vision insurance

Company

Obsidian Insurance Holdings, Inc

twittertwitter
company-logo
Obsidian Insurance Company is a Property & Casualty insurance fronting platform built solely to support the increasing market need of managing general agents, risk aggregators, managing general underwriters, and program administrators.

Funding

Current Stage
Early Stage

Leadership Team

leader-logo
Scott Palladino
Chief Business Development Officer
linkedin
Company data provided by crunchbase
logo

Orion

Your AI Copilot