Sign up to access all features of our service.
  • Job search
  • Favorites
  • Create a CV
    New
  • Salaries
  • Subscriptions

Cyber Incident Response Analyst

RIT Solutions

Cyber Incident Response Analyst

Location: Austin OR San Antonio, TX - Hybrid Candidates must reside within Austin OR San Antonio, TX.

Responsibilities:

• Perform advanced incident response across Windows and Linux environments, including triage, containment, eradication, and recovery.

• Conduct host-based forensics, including log analysis, memory capture, file system review, and malware behavior analysis.

• Serve as Incident Commander during cybersecurity events, coordinating actions, documenting decisions, and communicating with leadership and affected agencies.

• Analyze adversary Tactics, Techniques, and Procedures (TTPs) and map findings to MITRE Telecommunication&CK.

• Review and validate alerts from SIEM, IDS/IPS, EDR, and network monitoring tools.

• Produce incident reports, timelines, and executive summaries for statewide stakeholders.

• Support multi-agency response operations, including SLTT partners and critical infrastructure entities.

• Provide recommendations for detection improvements, hardening, and long-term mitigation.

• Participate in post-incident reviews, lessons learned, and playbook updates.

• Maintain readiness for 24x7 response through on-call rotation or surge support.

Qualifications:

Minimum Requirements: Candidates that do not meet or exceed the minimum stated requirements (skills/experience) will be displayed to customers but may not be chosen for this opportunity.

Years - Required/Preferred - Experience

5 - Required - Advanced host‐based forensics across Windows and Linux, including memory, disk, and malware analysis, using telemetry from NetWitness, Gravwell, Google SecOps, and Corelight to validate findings and reconstruct attacker activity.

5 - Required - Ability to correlate host, network, and intelligence data from CrowdStrike, SentinelOne, Microsoft Sentinel, Corelight, and NetWitness to build complete incident timelines.

5 - Required - Experience producing high‐quality incident reports and executive summaries using evidence collected from Gravwell, NetWitness, Corelight, and case management workflows.

4 - Required - Strong understanding of adversary TTPs, intrusion kill chains, and threat hunting methodologies using packet‐level and log‐level data from but not limited to Corelight, NetWitness, and CRIBL pipelines.

3 - Required - Incident Commander experience

1 - Required - Experience supporting SLTT or critical infrastructure environments, including multi‐tenant IR operations and cross‐agency coordination.

5 - Preferred - Proficiency with threat intelligence platforms, including Recorded Future, ThreatMon, GreyNoise, Google Threat Intelligence, VirusTotal, and Mandiant, to enrich investigations, validate indicators, and map activity to MITRE Telecommunication&CK.

5 - Preferred - Hands‐on experience using Cyware CSAP for incident orchestration, automated enrichment, case creation, and workflow execution across SIEM, IPS, EDR, and ticketing systems.

4 - Preferred - Security Certifications Preferred (CISSP, CIH, Sec+)

Vacancy posted 3 days ago
Similar jobs that could be interesting for youBased on the Cyber Incident Response Analyst in San Antonio, TX vacancy
  • A security solutions provider in Texas is seeking a Cyber Security Analyst to implement security measures protecting client information systems...  ...development, conduct risk assessments, and support incident responses. A Bachelor's degree or equivalent experience in Information... 
    Cyber

    Compunnel

    San Antonio, TX
    2 days ago
  • Texas GovLink, Inc. in San Antonio, Texas is looking for a Cyber Incident Response Analyst to enhance their technical services team. Candidates must have a minimum of 5 years in advanced forensics across Windows and Linux systems and proven incident command experience.... 
    Cyber

    Allied Consultants, Inc.

    San Antonio, TX
    1 day ago
  •  ...installations across the U.S. We are seeking an Incident Response Officer (Intermediate) to support our...  ...activities. (CDRL A002) Conduct cyber investigations in order to determine the...  ...transfer to subsequent /crews of analysts on duty regarding the latest suspicious... 
    Cyber
    Temporary work
    Work at office
    Flexible hours

    Ssd Anc

    San Antonio, TX
    1 day ago
  • Threat Analyst LOCATION San Antonio, TX 78208 CLEARANCE TS/SCI CI Poly (Please note this...  ...our family. *** SIMILAR CAREER TITLES Cyber Threat Analyst, Intelligence Analyst,...  ...Specialist, Vulnerability Analyst, Incident Response Analyst, Counterintelligence Analyst, Geopolitical... 
    Cyber
    Temporary work
    For contractors
    Immediate start
    Flexible hours

    Cymertek Corporation

    San Antonio, TX
    5 days ago
  • $85k - $90k

    Motorola Solutions is looking for a Senior SOC Analyst in San Antonio, Texas. In this role, you will lead security monitoring efforts, investigate alerts, manage incidents, and mentor junior team members. Strong experience with EDR tools and system internals is required... 
    Suggested

    Dormont Manufacturing Co

    San Antonio, TX
    1 day ago
  • $80k - $90k

    GovCIO is hiring a Critical Response Systems Analyst in San Antonio. This role involves supporting large-scale system and service monitoring solutions using tools like Dynatrace to enhance system observability. Candidates will document project milestones, communicate with... 
    Remote job

    GovCIO

    San Antonio, TX
    1 day ago
  • $50k - $60k

     ...Presidential appointee, Gavin de Becker, our firm's Protectors, Analysts, and Investigators are committed to our mission of...  ...testing, network security, SOC operations, incident response, digital forensics, or cyber threat intelligence are unlikely to find this position... 
    Cyber
    Work at office
    Remote work

    Gavin de Becker & Associates (GDBA)

    San Antonio, TX
    4 days ago
  • Cyber Incident & Threat Analyst Contract Length: 12+ months Location: Austin or San Antonio, Texas (Hybrid) The Cyber Incident & Threat Analyst...  ...using orchestration tools to automate case handling and response workflows Willingness and ability to participate in a 24... 
    Cyber
    Contract work
    Local area

    Genius Road, LLC

    San Antonio, TX
    1 day ago
  •  ...success. The Sr. Security Analyst position is a critical role...  ...supporting StandardAero’s enterprise cyber-security defenses, providing...  ...Anticipate security alerts, incidents and disasters in order to...  ...; malicious code detection, response and prevention; operating... 
    Cyber
    Full time
    Temporary work
    Flexible hours

    StandardAero

    San Antonio, TX
    2 days ago
  • Genius Road, LLC is seeking a Cyber Incident & Threat Analyst based in Austin or San Antonio, Texas. This role involves hands-on forensic investigations...  ...-technical leadership, and potentially leading incident responses. Successful candidates should have a strong forensic... 
    Cyber

    Genius Road, LLC

    San Antonio, TX
    1 day ago
  •  ...Risk & Controls Analyst Category: Cyber Security Main location: United States Position ID: J0626-1135 Employment Type: Full Time Position...  ...working model is acceptable. Your Future Duties and Responsibilities: CGI is seeking a Risk Analyst to support the... 
    Cyber
    Full time

    CGI

    San Antonio, TX
    1 day ago
  • Sistema Technologies Inc. in San Antonio, TX is seeking an experienced Network Security Analyst to perform advanced incident response and forensics in a hybrid work environment. Responsibilities include serving as Incident Commander during security events, analyzing adversary... 

    Sistema Technologies Inc.

    San Antonio, TX
    6 days ago
  • $7.5k

     ...Brief SIGINT, exploitation, network, cyber operations Job Description RealmOne...  ...mission success through Exploitation Analyst, Digital Network Exploitation Analyst,...  ...the extent and intricacy of the role's responsibilities, the candidate's educational background... 
    Cyber
    Contract work
    Work experience placement
    Immediate start
    Flexible hours

    RealmOne

    San Antonio, TX
    2 days ago
  • $7.5k

     ...Target Analyst Reporter 2 Location: San Antonio, TX Security Clearance Required: Security...  ...via appropriate reporting vehicles, in response to mission requirements. Prioritize,...  ...related to the mission (e.g. collection, cyber and intelligence analysis) and/or a similar... 
    Cyber
    Contract work
    Work experience placement
    Immediate start
    Flexible hours

    RealmOne

    San Antonio, TX
    1 day ago
  • $100k - $260k

     ...TARGET ANALYST REPORTER (TAR) BTS Software Solutions is seeking TARGET ANALYST REPORTER...  ...via appropriate reporting vehicles, in response to Intelligence Community (IC)...  ...the customer's mission (e.g., collection, cyber and intelligence analysis) and/or a similar... 
    Cyber
    Work experience placement
    Local area

    BTS Software Solutions

    San Antonio, TX
    2 days ago
  • $61k - $101k

     ...IT Cyber Security Up to 10% Ability to Obtain Public Trust What You Will...  ...needed. Investigate potential security incidents using SIEM, endpoint, network, and...  ...confirmed or high-risk incidents to senior analysts or incident response teams when appropriate. Support... 
    Cyber
    Full time
    Temporary work
    Flexible hours

    Guidehouse

    San Antonio, TX
    29 days ago
  • $10k

     ...Intelligence Analyst At Wyetech, you'll be at the center of an award-winning corporate...  ...intelligence via appropriate reporting vehicles, in response to Intelligence Community (IC)...  ...to an Agency mission (e.g., collection, cyber and intelligence analysis) and/or a similar... 
    Cyber
    Hourly pay
    Full time
    Contract work
    Temporary work
    Work experience placement
    Summer work
    Immediate start

    Wyetech LLC

    San Antonio, TX
    2 days ago
  •  ...Technologies is currently seeking a Readiness Analyst to support a program in San Antonio, TX...  ...to go longer) Readiness Analyst Responsibilities Perform as a technical analyst to...  ...with Microsoft Office Suite Expertise in cyber mission areas and capabilities Familiarization... 
    Cyber
    Contract work
    Work at office

    Cyntel Technologies, LLC

    San Antonio, TX
    5 days ago
  •  ...are seeking a Lessons Learned Improvement Analyst to support our ongoing mission at...  ...not limited to Mission Reports (MISREPs), Cyber Protection Team Final Reports, unit operational...  ...regarding operations, exercises, projects, incidents, and problems, for assigned areas.... 
    Cyber
    Temporary work
    For contractors
    Flexible hours

    Ssd Anc

    San Antonio, TX
    5 days ago
  • $95k - $120k

     ...Research Assessments (OSRAs) Technical Analyst to identify and mitigate risks to sensitive...  ..., TX and will be an on-site position. Responsibilities: Responsible for researching,...  ...Planners Course (JIPC) Phase II, Joint Cyber Analysis Course (JCAC), DoD OSINT Foundational... 
    Cyber
    Currently hiring

    Govcio LLC

    San Antonio, TX
    12 hours ago
  •  ...claims and litigation coordination. ESSENTIAL JOB DUTIES AND RESPONSIBILITIES Insurance Program Management In collaboration with a risk...  ...Liability (EPL), Errors & Omissions (E&O), Property & Casualty, Cyber, Workers' Compensation, Crime, and other relevant coverages.... 
    Cyber

    Kairoi Management LLC

    San Antonio, TX
    3 days ago
  •  ...A cybersecurity firm is seeking a Cyber Intern to join their innovative team in San Antonio. The intern will engage in various...  ..., assist in programming, and gain hands-on experience in incident detection and response. Candidates should possess knowledge in cybersecurity... 
    Cyber
    Summer work
    Internship
    Remote work
    Flexible hours

    Phase2 Technology

    San Antonio, TX
    12 hours ago
  • Data Analyst K2 Group is seeking a Data Analyst in support of Headquarters, Installation...  ...in up to 29 assessments annually. Responsibilities Gather and verify assessment data through...  .... Adhere to OPSEC, AT Level I, Cyber Awareness, and other mandatory DoD training... 
    Cyber
    Contract work
    Temporary work

    K2 Group, Inc.

    San Antonio, TX
    1 day ago
  •  ...Position Title: Cyber Analyst Position Overview: Providing support to the Combat Operations...  ...in San Antonio, Texas Position Responsibilities: Acting as Command and Control (C2) liaison...  ...and military personnel Respond to cyber incidents and coordinate the unit and Air Force... 
    Cyber
    Local area
    Day shift

    S2 Technologies

    San Antonio, TX
    2 days ago
  •  ...Key Access Control Analyst LOCATION San Antonio, TX 78208 CLEARANCE TS...  ...you to find the right fit. POSITION RESPONSIBILITIES Manage and maintain access control...  ...Respond to access-related security incidents Implement role-based access control... 
    Temporary work
    For contractors
    Immediate start
    Flexible hours

    Cymertek

    San Antonio, TX
    18 hours ago
  • A government consulting firm based in San Antonio, TX seeks a Sr. Forensic Malware Analyst to support operations at Lackland AFB. The role involves conducting forensic examinations, documenting findings, and collaborating with military and external agencies. Candidates... 
    Cyber

    STS Systems Support, LLC

    San Antonio, TX
    2 days ago
  • $87.1k - $157.45k

    Via Logic LLC is looking for a Cyber Security Analyst in San Antonio, TX. This position is responsible for providing Tier II Cyber Security Analysis and implementing...  ...extensive experience with network defense and incident response, as well as relevant certifications. The... 
    Cyber
    Night shift

    Via Logic LLC

    San Antonio, TX
    1 day ago
  •  ...Description Leidos is seeking a Cyber Security Analyst in San Antonio, TX. This position provides...  ...to rotate to days Primary Responsibilities Identify and offer solutions to gaps...  ...Detect and Respond) within a Computer Incident Response organization. Hands‑on experience... 
    Cyber
    Night shift

    Leidos

    San Antonio, TX
    1 day ago
  • A research organization is seeking an Associate Specialist/Specialist focused on supply chain cybersecurity in San Antonio, Texas. The role involves managing cybersecurity risks and compliance with federal regulations, drafting contracts, and providing training to staff...
    Cyber
    Work at office

    Southwest Research Institute

    San Antonio, TX
    4 days ago
  • STS Systems Defense, LLC is looking for an Operations Research Analyst to support its mission at Lackland AFB in San Antonio, TX. This position demands expert analytical support to improve decision-making and operational effectiveness across various military initiatives... 
    Cyber

    Ssd Anc

    San Antonio, TX
    3 days ago

Do you want to receive more vacancies?

Subscribe and receive similar vacancies to Cyber Incident Response Analyst. Be the first to apply!