Cyber Incident Response Analyst
RIT Solutions
Cyber Incident Response Analyst
Location: Austin OR San Antonio, TX - Hybrid Candidates must reside within Austin OR San Antonio, TX.
Responsibilities:
• Perform advanced incident response across Windows and Linux environments, including triage, containment, eradication, and recovery.
• Conduct host-based forensics, including log analysis, memory capture, file system review, and malware behavior analysis.
• Serve as Incident Commander during cybersecurity events, coordinating actions, documenting decisions, and communicating with leadership and affected agencies.
• Analyze adversary Tactics, Techniques, and Procedures (TTPs) and map findings to MITRE Telecommunication&CK.
• Review and validate alerts from SIEM, IDS/IPS, EDR, and network monitoring tools.
• Produce incident reports, timelines, and executive summaries for statewide stakeholders.
• Support multi-agency response operations, including SLTT partners and critical infrastructure entities.
• Provide recommendations for detection improvements, hardening, and long-term mitigation.
• Participate in post-incident reviews, lessons learned, and playbook updates.
• Maintain readiness for 24x7 response through on-call rotation or surge support.
Qualifications:
Minimum Requirements: Candidates that do not meet or exceed the minimum stated requirements (skills/experience) will be displayed to customers but may not be chosen for this opportunity.
Years - Required/Preferred - Experience
5 - Required - Advanced host‐based forensics across Windows and Linux, including memory, disk, and malware analysis, using telemetry from NetWitness, Gravwell, Google SecOps, and Corelight to validate findings and reconstruct attacker activity.
5 - Required - Ability to correlate host, network, and intelligence data from CrowdStrike, SentinelOne, Microsoft Sentinel, Corelight, and NetWitness to build complete incident timelines.
5 - Required - Experience producing high‐quality incident reports and executive summaries using evidence collected from Gravwell, NetWitness, Corelight, and case management workflows.
4 - Required - Strong understanding of adversary TTPs, intrusion kill chains, and threat hunting methodologies using packet‐level and log‐level data from but not limited to Corelight, NetWitness, and CRIBL pipelines.
3 - Required - Incident Commander experience
1 - Required - Experience supporting SLTT or critical infrastructure environments, including multi‐tenant IR operations and cross‐agency coordination.
5 - Preferred - Proficiency with threat intelligence platforms, including Recorded Future, ThreatMon, GreyNoise, Google Threat Intelligence, VirusTotal, and Mandiant, to enrich investigations, validate indicators, and map activity to MITRE Telecommunication&CK.
5 - Preferred - Hands‐on experience using Cyware CSAP for incident orchestration, automated enrichment, case creation, and workflow execution across SIEM, IPS, EDR, and ticketing systems.
4 - Preferred - Security Certifications Preferred (CISSP, CIH, Sec+)
- A security solutions provider in Texas is seeking a Cyber Security Analyst to implement security measures protecting client information systems... ...development, conduct risk assessments, and support incident responses. A Bachelor's degree or equivalent experience in Information...Cyber
- Texas GovLink, Inc. in San Antonio, Texas is looking for a Cyber Incident Response Analyst to enhance their technical services team. Candidates must have a minimum of 5 years in advanced forensics across Windows and Linux systems and proven incident command experience....Cyber
- ...installations across the U.S. We are seeking an Incident Response Officer (Intermediate) to support our... ...activities. (CDRL A002) Conduct cyber investigations in order to determine the... ...transfer to subsequent /crews of analysts on duty regarding the latest suspicious...CyberTemporary workWork at officeFlexible hours
- Threat Analyst LOCATION San Antonio, TX 78208 CLEARANCE TS/SCI CI Poly (Please note this... ...our family. *** SIMILAR CAREER TITLES Cyber Threat Analyst, Intelligence Analyst,... ...Specialist, Vulnerability Analyst, Incident Response Analyst, Counterintelligence Analyst, Geopolitical...CyberTemporary workFor contractorsImmediate startFlexible hours
$85k - $90k
Motorola Solutions is looking for a Senior SOC Analyst in San Antonio, Texas. In this role, you will lead security monitoring efforts, investigate alerts, manage incidents, and mentor junior team members. Strong experience with EDR tools and system internals is required...Suggested$80k - $90k
GovCIO is hiring a Critical Response Systems Analyst in San Antonio. This role involves supporting large-scale system and service monitoring solutions using tools like Dynatrace to enhance system observability. Candidates will document project milestones, communicate with...Remote job$50k - $60k
...Presidential appointee, Gavin de Becker, our firm's Protectors, Analysts, and Investigators are committed to our mission of... ...testing, network security, SOC operations, incident response, digital forensics, or cyber threat intelligence are unlikely to find this position...CyberWork at officeRemote work- Cyber Incident & Threat Analyst Contract Length: 12+ months Location: Austin or San Antonio, Texas (Hybrid) The Cyber Incident & Threat Analyst... ...using orchestration tools to automate case handling and response workflows Willingness and ability to participate in a 24...CyberContract workLocal area
- ...success. The Sr. Security Analyst position is a critical role... ...supporting StandardAero’s enterprise cyber-security defenses, providing... ...Anticipate security alerts, incidents and disasters in order to... ...; malicious code detection, response and prevention; operating...CyberFull timeTemporary workFlexible hours
- Genius Road, LLC is seeking a Cyber Incident & Threat Analyst based in Austin or San Antonio, Texas. This role involves hands-on forensic investigations... ...-technical leadership, and potentially leading incident responses. Successful candidates should have a strong forensic...Cyber
- ...Risk & Controls Analyst Category: Cyber Security Main location: United States Position ID: J0626-1135 Employment Type: Full Time Position... ...working model is acceptable. Your Future Duties and Responsibilities: CGI is seeking a Risk Analyst to support the...CyberFull time
- Sistema Technologies Inc. in San Antonio, TX is seeking an experienced Network Security Analyst to perform advanced incident response and forensics in a hybrid work environment. Responsibilities include serving as Incident Commander during security events, analyzing adversary...
$7.5k
...Brief SIGINT, exploitation, network, cyber operations Job Description RealmOne... ...mission success through Exploitation Analyst, Digital Network Exploitation Analyst,... ...the extent and intricacy of the role's responsibilities, the candidate's educational background...CyberContract workWork experience placementImmediate startFlexible hours$7.5k
...Target Analyst Reporter 2 Location: San Antonio, TX Security Clearance Required: Security... ...via appropriate reporting vehicles, in response to mission requirements. Prioritize,... ...related to the mission (e.g. collection, cyber and intelligence analysis) and/or a similar...CyberContract workWork experience placementImmediate startFlexible hours$100k - $260k
...TARGET ANALYST REPORTER (TAR) BTS Software Solutions is seeking TARGET ANALYST REPORTER... ...via appropriate reporting vehicles, in response to Intelligence Community (IC)... ...the customer's mission (e.g., collection, cyber and intelligence analysis) and/or a similar...CyberWork experience placementLocal area$61k - $101k
...IT Cyber Security Up to 10% Ability to Obtain Public Trust What You Will... ...needed. Investigate potential security incidents using SIEM, endpoint, network, and... ...confirmed or high-risk incidents to senior analysts or incident response teams when appropriate. Support...CyberFull timeTemporary workFlexible hours$10k
...Intelligence Analyst At Wyetech, you'll be at the center of an award-winning corporate... ...intelligence via appropriate reporting vehicles, in response to Intelligence Community (IC)... ...to an Agency mission (e.g., collection, cyber and intelligence analysis) and/or a similar...CyberHourly payFull timeContract workTemporary workWork experience placementSummer workImmediate start- ...Technologies is currently seeking a Readiness Analyst to support a program in San Antonio, TX... ...to go longer) Readiness Analyst Responsibilities Perform as a technical analyst to... ...with Microsoft Office Suite Expertise in cyber mission areas and capabilities Familiarization...CyberContract workWork at office
- ...are seeking a Lessons Learned Improvement Analyst to support our ongoing mission at... ...not limited to Mission Reports (MISREPs), Cyber Protection Team Final Reports, unit operational... ...regarding operations, exercises, projects, incidents, and problems, for assigned areas....CyberTemporary workFor contractorsFlexible hours
$95k - $120k
...Research Assessments (OSRAs) Technical Analyst to identify and mitigate risks to sensitive... ..., TX and will be an on-site position. Responsibilities: Responsible for researching,... ...Planners Course (JIPC) Phase II, Joint Cyber Analysis Course (JCAC), DoD OSINT Foundational...CyberCurrently hiring- ...claims and litigation coordination. ESSENTIAL JOB DUTIES AND RESPONSIBILITIES Insurance Program Management In collaboration with a risk... ...Liability (EPL), Errors & Omissions (E&O), Property & Casualty, Cyber, Workers' Compensation, Crime, and other relevant coverages....Cyber
- ...A cybersecurity firm is seeking a Cyber Intern to join their innovative team in San Antonio. The intern will engage in various... ..., assist in programming, and gain hands-on experience in incident detection and response. Candidates should possess knowledge in cybersecurity...CyberSummer workInternshipRemote workFlexible hours
- Data Analyst K2 Group is seeking a Data Analyst in support of Headquarters, Installation... ...in up to 29 assessments annually. Responsibilities Gather and verify assessment data through... .... Adhere to OPSEC, AT Level I, Cyber Awareness, and other mandatory DoD training...CyberContract workTemporary work
- ...Position Title: Cyber Analyst Position Overview: Providing support to the Combat Operations... ...in San Antonio, Texas Position Responsibilities: Acting as Command and Control (C2) liaison... ...and military personnel Respond to cyber incidents and coordinate the unit and Air Force...CyberLocal areaDay shift
- ...Key Access Control Analyst LOCATION San Antonio, TX 78208 CLEARANCE TS... ...you to find the right fit. POSITION RESPONSIBILITIES Manage and maintain access control... ...Respond to access-related security incidents Implement role-based access control...Temporary workFor contractorsImmediate startFlexible hours
- A government consulting firm based in San Antonio, TX seeks a Sr. Forensic Malware Analyst to support operations at Lackland AFB. The role involves conducting forensic examinations, documenting findings, and collaborating with military and external agencies. Candidates...Cyber
$87.1k - $157.45k
Via Logic LLC is looking for a Cyber Security Analyst in San Antonio, TX. This position is responsible for providing Tier II Cyber Security Analysis and implementing... ...extensive experience with network defense and incident response, as well as relevant certifications. The...CyberNight shift- ...Description Leidos is seeking a Cyber Security Analyst in San Antonio, TX. This position provides... ...to rotate to days Primary Responsibilities Identify and offer solutions to gaps... ...Detect and Respond) within a Computer Incident Response organization. Hands‑on experience...CyberNight shift
- A research organization is seeking an Associate Specialist/Specialist focused on supply chain cybersecurity in San Antonio, Texas. The role involves managing cybersecurity risks and compliance with federal regulations, drafting contracts, and providing training to staff...CyberWork at office
- STS Systems Defense, LLC is looking for an Operations Research Analyst to support its mission at Lackland AFB in San Antonio, TX. This position demands expert analytical support to improve decision-making and operational effectiveness across various military initiatives...Cyber
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Cyber Incident Response Analyst. Be the first to apply!
- information security consultant San Antonio, TX
- cyber security analyst San Antonio, TX
- cyber San Antonio, TX
- cyber security business analyst
- information security consultant
- cyber security analyst internship
- entry level cyber security analyst
- junior cyber security analyst
- cyber soc analyst
- cyber security operations analyst



