Cyber Defense Forensics Analyst
$87.7k - $164kErnst & Young Oman
Within Information Security we blend risk strategy, digital identity, cyber defense, application security and technology solutions as we consider the entire security lifecycle. You will join a team of hardworking, security-focused individuals dedicated to supporting, protecting and enabling the business through innovative, secure solutions that provide speed to market and business value. The opportunity Cyber Triage and Forensics (CTF) Incident Analyst will work as a senior member of the technical team responsible for security incident response for EY. The candidate will work as an escalation point for suspect or confirmed security incidents. Responsibilities include performing digital forensic analysis, following security incident response standard methodologies, malware analysis, identifying indicators of compromise, supporting remediation or coordinating remediation efforts of a security incident, and developing documentation to support the security incident response process. Responsibilities Investigate, coordinate, bring to resolution, and report on security incidents as they are brought up or identified Forensically analyze end user systems and servers found to have possible indicators of compromise Analyze artifacts collected during a security incident/forensic analysis Identify security incidents through ‘Hunting’ operations within a SIEM and other relevant tools Interface and connect with server owners, system custodians, and IT contacts to pursue security incident response activities, including obtaining access to systems, digital artifact collection, and containment and/or remediation actions Provide consultation and assessment on perceived security threats Maintain, manage, improve and update security incident process and protocol documentation Regularly provide reporting and metrics on case work Resolve security incidents by identifying root cause and solutions Analyze findings in investigative matters and develop fact‑based reports Be on‑call to deliver global incident response Skills and attributes for success Resolve security incidents by identifying root cause and solutions Analyze findings in investigative matters and develop fact‑based reports Proven integrity and judgement within a professional environment Ability to appropriately balance work/personal priorities Qualifications Bachelor's or Master's Degree in Computer Science, Information Systems, Engineering or a related field 5+ years experience in incident response, computer forensics analysis and/or malware reverse engineering Understanding of security threats, vulnerabilities, and incident response Understanding of electronic investigation, forensic tools, and methodologies, including: log correlation and analysis, forensically handling electronic data, knowledge of the computer security investigative processes, malware identification and analysis Familiarity with legalities surrounding electronic discovery and analysis Experience with SIEM technologies (i.e. Splunk) Deep understanding of both Windows and Unix/Linux based operating systems Preferred qualifications Hold or be willing to pursue related professional certifications such as GCFE, GCFA or GCIH Background in security incident response in Cloud‑based environments, such as Azure Programming skills in PowerShell, Python and/or C/C++; understanding of best security practices for network architecture and server configuration Desired attributes Demonstrated integrity in a professional environment Ability to work independently Have a global mindset for working with different cultures and backgrounds Knowledgeable in business industry standard security incident response process, procedures, and life cycle Excellent teaming skills Excellent social, communication, and writing skills Compensation and benefits The compensation ranges below are provided in order to comply with United States pay transparency laws. Other geographies will follow their local salary guidelines, which may not be a direct conversion of published US salary ranges. At EY, we’ll develop you with future‑focused skills and equip you with world‑class experiences. We’ll empower you in a flexible environment and fuel you and your extraordinary talents in a diverse and inclusive culture of globally connected teams. Learn more. We offer a comprehensive compensation and benefits package where you’ll be rewarded based on your performance and recognized for the value you bring to the business. The base salary range for this job in all geographic locations in the US is $87,700 to $164,000. The salary range for New York City Metro Area, Washington State and California (excluding Sacramento) is $105,200 to $186,400. Individual salaries within those ranges are determined through a wide variety of factors including but not limited to education, experience, knowledge, skills and geography. In addition, our Total Rewards package includes medical and dental coverage, pension and 401(k) plans, and a wide range of paid time off options. Join us in our team‑led and leader‑enabled hybrid model. Our expectation is for most people in external, client serving roles to work together in person 40‑60% of the time over the course of an engagement, project or year. Under our flexible vacation policy, you’ll decide how much vacation time you need based on your own personal circumstances. You’ll also be granted time off for designated EY Paid Holidays, Winter/Summer breaks, Personal/Family Care, and other leaves of absence when needed to support your physical, financial, and emotional well‑being. Equal Employment Opportunity Statement EY provides equal employment opportunities to applicants and employees without regard to race, color, religion, age, sex, sexual orientation, gender identity/expression, pregnancy, genetic information, national origin, protected veteran status, disability status, or any other legally protected basis, including arrest and conviction records, in accordance with applicable law. Reasonable Accommodation EY is committed to providing reasonable accommodation to qualified individuals with disabilities including veterans with disabilities. If you have a disability and either need assistance applying online or need to request an accommodation during any part of the application process, please call 1‑800‑EY‑HELP3, select Option2 for candidate‑related inquiries, then select Option1 for candidate queries and finally select Option2 for candidates with an inquiry which will route you to EY’s Talent Shared Services Team (TSS) or email the TSS at View email address on click.appcast.io. #J-18808-Ljbffr
- ActiveSoft, Inc. is seeking a mid-level or senior SOC Analyst to join their Cyber Defense team in Atlanta, GA. This hybrid role allows for remote work for exceptional candidates. Successful candidates will support SOC functions and contribute to strategic transformations...CyberRemote work
- ...Cyber Defense & Risk Analyst page is loaded## Cyber Defense & Risk Analystlocations: USA - GA - Sandy Springstime type: Full timeposted on: Posted Todayjob requisition id: R31141HYBRID ROLE BASED OUT OF OUR ATLANTA OFFICE**Job Purpose:**Our Cyber Defense & Risk Analyst...CyberWork experience placementWork at office
- ...Data Governance Analyst Atlanta, Georgia, United States About the Job Interview Type: Web Cam Interview Only Work Arrangement... ...quality space where their experience overlaps with Privacy and Cyber Security. Position duties: Evaluate/update existing and create...CyberContract workRemote workFlexible hours
- ...Senior GRC Analyst Location: Atlanta, GA Need local with availibilty of onsite interview in required Type: 5-Month Contract... ...with key frameworks: ISO 27001, NIST, GDPR, CMMC, NYDFS, TISAX, Cyber Essentials. ~ Preferred certifications: CISSP, CISM, CRISC...CyberContract workLocal area
- ...Overview Job Purpose The Analyst, Information Security GRC is part of a team responsible for the global Information Security program. The... ..., string‑parsing, light SDLC, and project management. NIST Cyber Security Framework, CIS, and GRC Platforms. Intercontinental Exchange...Cyber
- Ernst & Young Oman is looking for a Cyber Triage and Forensics Incident Analyst in Atlanta, Georgia. You'll be responsible for security incident response, conducting digital forensic analysis, and working with various teams to address and resolve security incidents. Candidates...Cyber
- NCR VOYIX in Atlanta is seeking a Threat Intel & Cyber Defense Analyst to enhance their information security program. This role focuses on detecting and responding to cyber threats in a collaborative environment. The candidate will actively hunt for threats, lead incident...Cyber
- CRH is seeking a cybersecurity governance professional to drive risk assessment and security standards across its global operations. This position based in Atlanta offers a hybrid work schedule and significant engagement across divisions. The successful candidate will have...Cyber
$100k - $115k
As a member of the Information Services Department, the Senior Analyst, Cybersecurity Operations & Response supports the execution and continuous... ...to help protect the Firm’s systems, applications, and data from cyber threats. ESSENTIAL FUNCTIONS Support the day-to-day operation...CyberFull timeContract workWork at office- TechDigital Group is seeking a Senior SOC Analyst in the United States to cover 24/7 scheduling and ensure the triage of existing and... ...and escalating security events while evaluating data from cyber defense tools to mitigate threats effectively. Qualified applicants should...Cyber
- Cooper Lighting Solutions is seeking a Technical Risk Assessment Analyst in Atlanta, GA. This on-site role involves evaluating risks from third-party suppliers and managing vendor connectivity for enhanced security. The candidate should have a Bachelor's degree and over...Cyber
$140.6k - $186.36k
Rivian is seeking a Cybersecurity Analyst - Risk Management in Atlanta, Georgia. This mid-career role focuses on managing cybersecurity risks and facilitating discussions with stakeholders. Candidates should have 5+ years in cybersecurity, experience in maintaining risk...Cyber- Threat Modeling/Threat hunter Analyst to focus on security risks introduced by third‑party vendors, SaaS platforms, and publicly exposed... ...Leads the technical execution of incident response and basic forensic activities for services in scope, following playbooks, coordinating...CyberFull timePart time
- Reserv Claims Analysis, LLC is looking for a Cybersecurity Analyst to protect our digital assets in Atlanta, GA. This hands-on role involves monitoring for threats and responding to security incidents. The ideal candidate has at least 3 years of experience, familiarity...CyberRemote job
$120k - $130k
Deluxe Corporation, based in Atlanta, seeks a proactive Information Security Staff Risk Analyst to uphold security and compliance standards. You will lead cyber resiliency efforts, conduct risk assessments, and enhance documentation processes. Ideal candidates will possess...Cyber$99.36k - $168.8k
The Georgia System Operations Corporation is seeking a Cybersecurity Analyst to safeguard its data and systems. This role involves managing endpoint security, protecting cloud environments like Microsoft 365, and implementing cybersecurity policies. The ideal candidate...Cyber$1,300 per month
PrimeDefense USA is seeking a skilled Information Security Analyst to join our team in Atlanta. The successful candidate will implement... ...assessments, and work closely with the IT team to defend our network from cyber threats. Applicants must have a Bachelor's degree in Computer...CyberVisa sponsorshipFree visa- Summary: Senior SOC analysts covering 24/7 scheduling to triage existing and new alert use‑cases across a variety of tools. Responsibilities... ...environment. Evaluate data collected from a variety of cyber defense tools (e.g., SIEM, IDS alerts, firewalls, network traffic...Cyber
$83.85k - $107.95k
...Threat Analyst Chicago, IL, USKansas City, MO, USHouston, TX, USAtlanta, GA, USWashington... ...and continuously adapts to the evolving cyber threat landscape. Responsibilities... ...severity incidents. ~ Knowledge of digital forensics, malware analysis, penetration testing...CyberTemporary workLocal area- Tier 2 SOC Analyst job at ActiveSoft, Inc. Atlanta, GA. Job Title: SOC Analyst (Mid-Level / Senior) Location: Atlanta, GA (Hybrid... ...and is seeking two experienced SOC Analysts to augment their Cyber Defense team. These individuals will play a key role in supporting day...CyberContract workSecond jobRemote work2 days per week
- Remote SOC Analyst needs 2+ years of experience in a SOC or cybersecurity operations role.... ...vectors. Familiarity with MITRE ATT&CK, cyber kill chain, and threat modeling. Alert Triage... .... Escalate to Tier 3 when deeper forensic or threat hunting expertise is required....CyberRemote job
- ...technology and business partners in a global organization to ensure the IAM services and technology are delivered in accordance with Cyber Security strategy. In this role, the Lead will be part of the Identity and Access Management within Cyber Security and will...CyberRemote work
- ...to technology. Supports the Crime Prevention Through Environmental Design (CPTED) program and cyber security related initiatives in coordination with the CISO and Cyber Forensic Unit. Supports the operations of the security certification program to ensure that personnel...CyberWork at office
$120k - $130k
Deluxe is seeking an Information Security Staff Risk Analyst in Atlanta, Georgia. The role involves leading cyber resiliency initiatives, overseeing documentation for the cyber risk management program, and collaborating across teams to enhance security protocols. Candidates...Cyber- Job Summary EMCOR Group, Inc. seeks an Information Security Analyst - Intel and Email who would be responsible for supporting the maintenance... ...Security Analyst - Intel and Email will focus on processing cyber security intelligence and will assist the Email Security...CyberWork at office
- ...J Cybersecurity & GRC Analyst We are CirrusLabs. Our vision is to become the world's most sought-after niche digital transformation... ...exciting) At CirrusLabs, we are building the next generation of cyber risk & governance talent for a leading banking client. This is...Cyber
- ...application security projects as a Business, Systems or Requirements Analyst. Demonstrated business process analysis, Work flow, task... ...modelling skills. This position requires a bachelors degree in Cyber Security, Information Technology, Computer Science, Business or...CyberWork experience placement
- ...Department: Information Technology CGS is looking for business analysts to work with a large federal agency! As a Business Analyst in Business... ...and Data Analytics Project Management, Agile, and/or Cyber Certifications (PMP / ACP / CSM / SAFe / CISM) Our Commitment Contact...CyberFull timeFlexible hours
$40k
...supporting mission-critical programs across national security, defense, and public service delivery. Our work focuses on sustaining, operating... .... The role works under senior guidance to execute defined cyber actions, maintain incident documentation, support POA&M and ISVM...CyberContract workRemote work$50k - $55k
...existing databases and creating new ones in compliance with the latest information technologies and cyber security. Test databases and analyze reports, audit logs, and forensics to determine if any data breaches or security issues. Add users to the database as needed and...CyberFull timeTemporary workLocal area
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Cyber Defense Forensics Analyst. Be the first to apply!
- information security consultant Atlanta, GA
- cyber security analyst Atlanta, GA
- remote cyber security analyst Atlanta, GA
- cyber Atlanta, GA
- defense analyst Atlanta, GA
- insurance defense attorney Atlanta, GA
- defense attorney Atlanta, GA
- insurance defense paralegal Atlanta, GA
- defense Atlanta, GA
- defense security service Atlanta, GA

