Cyber Incident Response Lead (Remote) jobs in United States
cer-icon
Apply on Employer Site
company-logo

Experian · 3 days ago

Cyber Incident Response Lead (Remote)

positionUnited States
timeFull-time
remoteRemote
senioritySenior Level, Lead/Staff
money$133K/yr - $240K/yr
date8+ years exp

Experian is a global data and technology company, and they are seeking a Cyber Incident Response Lead to join their Global Security Office. This role involves responding to, investigating, and coordinating the mitigation of security events while working with various teams to ensure effective incident management.

AnalyticsBig DataCyber SecurityFinTechFraud DetectionInformation Services
check
Growth Opportunities
check
H1B Sponsor Likelynote

Responsibilities

Conduct advanced incident response activities to investigate and contain complex or larger-scale cybersecurity matters
Orchestrate workstreams across teams (Forensics and Cyber Threat Hunting) and explain the CFC's overall understanding of the timeline of attacker activity
Respond to cybersecurity events and alerts associated with threats, intrusions, or compromises per any applicable SLOs
Manage multiple cases related to security incidents throughout the incident response lifecycle, including Analysis, Containment, Eradication, Recovery, and Lessons Learned
Coordinate successful conclusion of security incidents according to Process & Procedures, and escalate severe incidents according to Experian's Incident Response Plan
Maintain case documentation, including notes, analysis findings, containment steps, and cause for each assigned security incident
Maintain assigned caseload and move incidents through each phase of the IR Lifecycle, handing off cases as needed for progress
Maintain an understanding of common Operating Systems (Windows, Linux, Mac OS), Security Technologies (Anti-Virus, Intrusion Prevention), Cloud Security investigations and response tools, and Networking (Firewalls, Proxies)
Interpret device and application logs from a variety of sources (Firewalls, Proxies, Web Servers, System Logs, Splunk, Packet Captures) to identify the root cause and determine the next steps for containment, eradication, and recovery
Support overall direction for the CFC and input to the security strategy
Mentor and provide advanced support to analysts (Logs review, IP Block question)

Qualification

Cyber Incident ResponseNetwork ProtocolsSIEM ToolsSecurity Management CertificationIncident Response ApplicationsCloud SecurityForensicsSoft Skills

Required

8+ years of experience working within cybersecurity or information technology roles, at least 4+ of which includes working as an investigator, analyst, or leader in a Cyber Incident Response Team
Bachelor's Degree in Computer Science, Computer Engineering, Information Systems, Information Security, or a related field. 11+ years of experience working within a Security Operations Center, Incident Response Team, law enforcement, or military experience may be accepted in lieu of this requirement
Knowledge of network protocols (TCP/IP, UDP, ICMP), standard protocols (HTTP/S, DNS, SSH, SMTP, SMB), wireless networking, networking infrastructure, and network topologies (DMZ, VPN, WAN) and network technologies (WAF, IPS, Routers, or Firewalls)
Experience with commercial and open-source SIEMs, full packet capture tools, and network analysis tools (Splunk, Wireshark, SOF-ELK)
Exhibit skills using common Incident Response and Security Monitoring applications such as SIEM (Splunk), EDR (MDE), Tanium, WAF, IPS
Hold one Security Management certification (ISC2 CISSP, CISM) or obtain such certification within the first two years as a Cyber Incident Response Lead

Preferred

Preference for candidates to have at least one certification involving incident response, ethical hacking, cyber security (GCIH, E CEH, E CIH), or network forensics (GIAC Network Forensic Analyst (GNFA), NICCS Certified Network Forensics Examiner (CNFE))
Preference for candidates based in Mountain or Pacific Time Zone. Candidates in other U.S. time zones will also be considered

Benefits

Great compensation package and bonus plan.
Core benefits including medical, dental, vision, and matching 401K.
Flexible work environment, ability to work remote, hybrid or in-office.
Flexible time off including volunteer time off, vacation, sick and 12-paid holidays.

Company

Experian

twittertwittertwitter
Glassdoor4.3
company-logo
Experian is a data analytics and consumer credit reporting company.
dateFounded in 1980
location
Dublin, Dublin, IRL
people-size10001+ employees
web-link
http://www.experianplc.com

H1B Sponsorship

Experian has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (8)
2024 (18)
2023 (9)
2022 (16)
2021 (19)
2020 (23)

Funding

Current Stage
Public Company
Total Funding
$1.31M
Key Investors
Fair4All Finance
2025-11-25Grant· $1.31M
2006-10-11IPO

Leadership Team

leader-logo
Brian Cassin
Chief Executive Officer
leader-logo
Chris Fletcher
CPO / SVP Cloud & Decisioning Software
linkedin

Recent News

PYMNTS.com
Experian Adds Commercial Data to Ascend Lender Platform
2026-01-06
Finovate
Experian Integrates Corporate Commercial Data to its Ascend Platform
2026-01-06
EuropaWire
Experian Expands Ascend Platform with Full Access to UK Commercial Credit Data
2026-01-05
Company data provided by crunchbase