Incident Response Analyst
$127k - $140kdeepwatch
Overview Come join Deepwatch’s team of world-class cybersecurity professionals and the brightest minds in the industry. If you're ready to challenge yourself with work that matters, then this is the place for you. We're redefining cybersecurity as one of the fastest growing companies in the U.S. – and we have a blast doing it! Who We Are Deepwatch is the leader in managed security services, protecting organizations from ever-increasing cyber threats 24/7/365. Powered by Deepwatch’s cloud-based security operations platform, Deepwatch provides the industry’s fastest, most comprehensive detection and automated response to cyber threats together with tailored guidance from dedicated experts to mitigate risk and measurably improve security posture. Hundreds of organizations, from Fortune 100 to mid-sized enterprises, trust Deepwatch to protect their business. Our core values drive everything we do at Deepwatch, including our approach to tackling tough cyber challenges. We seek out tenacious individuals who are passionate about solving complex problems and protecting our customers. At Deepwatch, every decision, process, and hire is made with a focus on improving our cybersecurity solutions and delivering an exceptional experience for our customers. By embracing our values, we create a culture of excellence that is dedicated to empowering our team members to explore their potential, expand their skill sets, and achieve their career aspirations, which is supported by our unique annual professional development benefit. Deepwatch recognition includes: 2025, 2024, 2023, 2022 and 2021 Great Place to Work® Certified 2024 Military Times Best for Vets Employers 2024 US Department of Labor Hire Vets Gold Award 2024 Forbes' America's Best Startup Employers 2024 Cyber Defense Magazine, Global Infosec Awards 2023 and 2022 Fortress Cybersecurity Award 2023 $180M Series C investment from Springcoast Capital Partners, Splunk Ventures, and Vista Credit Partners of Vista Equity Partners 2022 Cybersecurity Excellence Award for MDR Location Hybrid, Tampa, FL / Remote Note on location While proximity to Tampa is preferred to support a hybrid schedule in our Tampa Center of Excellence, we’re open to remote candidates who can support the Eastern Time Zone. Responsibilities Reporting to the Manager of Adversary Response, the Incident Response Analyst operates on the front lines of active cyber conflict—defending organizations against sophisticated, real-world adversaries. This is a mission-critical role for practitioners who thrive in high-pressure environments and are driven to outpace, outthink, and disrupt advanced threat actors. As a primary responder during live incident engagements, you will lead hands-on investigations into complex intrusions, leveraging advanced EDR and detection platforms to trace attacker behavior, contain threats in real time, and eradicate adversary presence at its source. In this role, you’ll get to: Lead end-to-end incident response engagements within customer environments, driving rapid investigation, containment, and remediation of active threats Conduct deep-dive forensic and malware analysis to uncover adversary tactics, techniques, and procedures (TTPs), translating findings into actionable intelligence Proactively hunt for advanced threats through hypothesis-driven threat hunting across diverse data sources and telemetry Triage and validate suspicious activity using a combination of OSINT, proprietary intelligence, and behavioral analysis Own the documentation of incidents, ensuring clear, defensible reporting and timeline reconstruction within case management systems Identify and operationalize new adversary techniques, tools, and tradecraft—scaling knowledge across the team to strengthen collective defense Maintain a constant pulse on the evolving threat landscape, applying emerging intelligence to real-world investigations Surface visibility gaps in logging, telemetry, and detection coverage, and partner with stakeholders to enhance overall security posture Collaborate cross-functionally to develop and refine detection content, response playbooks, and threat intelligence outputs Serve as a trusted advisor to customers, confidently guiding them through the full incident response lifecycle—from initial compromise to full remediation and recovery Qualifications To be successful in this role, you will bring: Proven, hands-on experience leading incident response investigations, with the ability to independently scope, analyze, and drive complex engagements to resolution A track record of operating in high-volume, high-complexity environments (e.g., MDR, MSSP, consulting, or enterprise IR teams), with exposure to a wide range of real-world incidents and adversary scenarios Deep expertise with Endpoint Detection & Response (EDR) platforms such as SentinelOne, Microsoft Defender, and CrowdStrike, including advanced querying, triage, and response actions Strong command of incident response methodologies and frameworks (e.g., NIST, PICERL), with the ability to apply them dynamically in fast-moving, ambiguous situations Experience leveraging SIEM, SOAR, case management, and threat intelligence platforms to investigate, correlate, and respond to threats at scale A solid understanding of attacker methodologies, including common and emerging tactics, techniques, and procedures (TTPs), with the ability to map activity to frameworks such as MITRE ATT&CK Exceptional communication skills, with experience presenting technical findings and strategic recommendations to both technical teams and executive stakeholders The ability to operate as a trusted advisor during high-pressure incidents—bringing clarity, structure, and confidence to customer engagements Note This role is best suited for practitioners who have been deeply immersed in live incident response environments and have built pattern recognition across numerous engagements. Candidates with limited exposure to real-world incidents may find the pace, ambiguity, and complexity of this role challenging. Additional Compliance & Benefits Statutory Pay Disclosure The anticipated salary range for this role is $127,00 - $140,000 + stock options + benefits. Actual compensation may vary from posted hiring range based upon geographic location, work experience, education, and/or skill level. ITAR Compliance This position will have access to customer data and as such is subject to International Traffic in Arms Regulations (ITAR). Upon application, candidates will be asked to confirm that they are a U.S. Person as defined by the following: A citizen of the U.S.; A lawful permanent resident of the United States; A person admitted to the United States as a refugee; or A person that has been granted asylum by the United States government. The intent of this requirement is not to verify employment eligibility overall, but to ensure compliance with import/export regulations. If you do not meet these requirements, we encourage you to apply for other open roles at Deepwatch. This information will be verified upon offer of employment. What We Offer Deepwatch is excited to provide benefits designed to support team members and their families. Including: Medical, dental, vision, and disability insurance Flexible Time Off (FTO), 12 company holidays, sick leave and 8-Weeks Paid Parental Leave Unique professional development benefits with Annual “development dollars” to support our people growth and development Wellness contests and monthly educational programs 401(K) retirement program Learn more here: Deepwatch Benefits EEO & Privacy We know theconfidence gapandimposter syndrome can get in the way of meeting spectacular candidates, so please don’t hesitate to apply — we’d love to hear from you. Please review our DEI Statement here. Deepwatch welcomes and encourages applications from people with disabilities and accommodations are available on request for candidates taking part in all aspects of the selection process. Please inform your recruiter or View email address on click.appcast.io for further information. All Deepwatch employees are expected to: Be interested in and able to work remotely from a home office when not at a corporate office Pass a pre-employment background check in accordance with applicable laws Deepwatch is an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, age, disability status, marital status, sexual orientation, gender identity, genetic information, protected veteran status, or any other characteristic protected by law. In compliance with federal law, all persons hired will be required to verify identity and eligibility to work in the United States and to complete the required employment eligibility verification document form upon hire. By submitting your application, you agree that Deepwatch may collect your personal data for recruiting, global organization planning, and related purposes. The Deepwatch Privacy Policy explains what personal information we may process, where we may process your personal information, our purposes for processing your personal information, and the rights you can exercise over Deepwatch’s use of your personal information. #J-18808-Ljbffr
- Madison-Davis, LLC is seeking a Senior Cybersecurity Analyst in Boston, Massachusetts. The role involves enhancing security controls, managing risks, and supporting incident responses across a modern technology landscape. The ideal candidate will have over 5 years of cybersecurity...Suggested
- ...Ernst & Young Oman is seeking a Cyber Triage and Forensics Incident Analyst to be a key member of the security incident response team. The role involves handling security incidents, performing forensic analysis, and coordinating remediation efforts. Ideal candidates should...Suggested
- Cayuse Holdings is seeking an ITSM Incident Response Analyst to work remotely on an independent contract basis. This role involves managing incidents, supporting the Service Desk, and ensuring ITIL-aligned processes are adhered to for effective incident management. The...SuggestedRemote jobContract work
- ...technology solutions provider is seeking a Systems Security Analyst in Boston, MA. The role focuses on protecting... ...with IT, engineering, and compliance teams. Key responsibilities include monitoring security incidents, managing vulnerabilities, and enhancing security processes...Suggested
$80.2k - $111.3k
...Position Overview The Cybersecurity Incident Response Engineer, Senior leads complex incident response efforts for enterprise networks... ...technical and procedural coaching to incident handlers and SOC analysts, elevating investigative techniques, documentation quality,...SuggestedContract workWork experience placementWork at office- ...Cytel is hiring a Cyber Security Analyst in Boston, MA to strengthen their information security operations. The analyst will monitor... ...security events, conduct investigations, and participate in incident response while working closely with IT teams in a regulated...
- ...is looking for a highly skilled Security Analyst to join our team in Boston, MA. The... ...systems through proactive measures and responses. Candidates should possess a Bachelor's... ...will have experience in risk assessment, incident response, and security frameworks. Responsibilities...
- Info-Ways is seeking a skilled Security Operations specialist based in Boston, MA. The role involves incident analysis, configuration changes, and log management, requiring experience with Checkpoint firewalls and Cisco ASA series. As part of the role, candidates will...
$75.28k - $109.55k
...people, tech experts, researchers, and systems analysts to advance our mission. As a not-for-... ...and that's where you come in. As a Major Incident Manager, you'll be at the center of high-stakes situations, leading rapid response efforts to restore essential systems...Full timeLocal areaRemote workFlexible hoursShift workNight shift$85k - $95k
...recognition from customers and industry analysts alike. WHY BLACK KITE We’re a fast‑moving... .... THE OPPORTUNITY The SOC Analyst / Incident Responder is a mid‑level security operations... ..., lead incident investigations, execute response activities, and contribute to the...WorldwideFlexible hours$85k - $95k
...in cyber risk intelligence based in Boston, is seeking a SOC Analyst / Incident Responder. This mid-level position entails monitoring... ...have 2-4 years in security operations, knowledge of incident response methodologies, and familiarity with networking principles. The...Flexible hours$100k - $115k
...member of the Information Services Department, the Senior Analyst, Cybersecurity Operations & Response supports the execution and continuous improvement of... ...responsible for assisting with security operations, incident response activities, and threat and vulnerability management...Full timeContract workWork at office$70k - $110k
Whoop, Inc. is looking for a Security Analyst to enhance security operations and maintain operational visibility. This role requires collaboration with security and engineering teams to investigate alerts and address security issues efficiently. Applicants should have 3...Work at office- Mass Digital Health is seeking an Incident Management Associate to analyze historical incidents and identify resolution actions. You’ll be responsible for leading major incident resolutions while ensuring transparent communication with all stakeholders. The ideal candidate...
- ...Cambridge, MA to maintain a safe environment by monitoring premises, enforcing policies, and ensuring excellent customer service. Responsibilities include surveillance, access control, emergency response, and patrolling. Ideal candidates will possess strong observational...
- ...lifestyle company in Boston is seeking a GSOC Lead Analyst to provide senior operational support for... ...over 4 years in security operations, expertise in incident management, and strong communication skills. Responsibilities include leading critical incidents,...Flexible hours
$110k - $160k
...and advance our business. We take that responsibility seriously. With a 200-year legacy and a... ...fulfilling career. Role: Reporting to the Cyber Incident Response Manager within the... ...experienced Cyber Incident Response - Senior Analyst to become part of a dynamic incident...Full timeLocal area$20 per hour
...Specialists, Inc. is looking for Security Specialists in Hingham, Massachusetts. Responsibilities include ensuring safety and professionalism for clients' employees and guests, responding to incidents promptly, and maintaining professionalism at all times. A high school...Hourly pay- ...construed as an exhaustive list of all responsibilities, duties and skills required of personnel... ...and collaborative Senior IT Business Analyst to support the planning, development, and... ...not limited to, responding to security incidents, supporting software deployments,...Work experience placementWork at office3 days per week
$40k
...authorization to proceed. The IT Business Analyst supports the contract team by updating... ...4 Job-Specific Essential Duties and Responsibilities: Support the team in re-baselining... ...with DHS standards. Participate in incident and problem management activities,...Contract workRemote work$70k - $101k
...THE ROLE The Senior Business Systems Analyst supports multiple asset classes (... ...within tight deadlines. This individual is responsible for initially shaping solution scope, driving... ...for investment platforms, including incident triage, root-cause analysis, defect resolution...Full timeLocal areaRemote workFlexible hours- ...Here! The Role: Business Systems Analyst Location: include Salisbury,... ...is a senior individual contributor responsible for delivering highly reliable, scalable... ...issues (P1/P2), including participation in incident bridge calls and root cause analysis....Full time3 days per week
$86k - $114k
...Senior Data & Systems Analyst, EHS Boston, Massachusetts, United States Anduril Industries... .... About The Team This role is responsible for building and maintaining the data... ..., and improvement opportunities in incident, audit, risk, training, and compliance data...Full timeWork experience placementImmediate start$48 - $55 per hour
...Health Information Management (HIM) Senior Analyst – Application Coordinator Accenture... ...address today’s biggest business challenges. Responsibilities Act as a subject matter expert (SME)... ..., ensuring timely resolution of incidents and service requests per defined SLAs....Hourly payLocal areaFlexible hours$48 - $55 per hour
...Health Information Management (HIM) Senior Analyst will bring experience managing... ...environment. The Application Coordinator will be responsible for collaborating with Accenture team,... ...activities, ensuring timely resolution of incidents and service requests per defined SLAs....Hourly payLive inWork at officeLocal areaFlexible hours$99.01k - $143.57k
Senior Systems Analyst, Workday Data Modeling & Configuration About the Opportunity Job... ...Analyst, Data Modeling & Configuration is responsible to maintain and optimize Workday... ...diagnose and resolve AI system and platform incidents, prioritize issues based on business impact...Work experience placementWork at office3 days per week- WHOOP is looking for a Security Analyst for day-to-day operations in Boston, MA. The ideal candidate will support and maintain security... ...teams and partners to investigate alerts and coordinate responses. Responsibilities include triaging security alerts, managing investigations...
- ...efforts. Educate and coach members on identity theft prevention and response. Ensure system outputs align with investigative and... ...Financial Crimes department. Act as coordinator during active fraud incidents, participating in incident response meetings and organizing or...Work experience placementWork at officeFlexible hours3 days per week
- athenahealth India is looking for an Incident Management Associate in Boston, MA to conduct analysis of historical incidents and identify potential resolution actions. This role involves communicating findings to senior management and requires a flexible work schedule,...Flexible hoursNight shift
- ...Reliability Operations in New Hampshire to ensure stability and resilience in critical retail systems. This role involves leading incident response, collaborating across functions, and driving improvements in system performance and reliability. The ideal candidate should...Full time
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Incident Response Analyst. Be the first to apply!
- health analyst Boston, MA
- hospitality analyst Boston, MA
- strategy analyst intern Boston, MA
- senior contracts analyst Boston, MA
- international analyst Boston, MA
- incident response analyst Boston, MA
- manufacturing analyst Boston, MA
- military analyst Boston, MA
- pharmacy analyst Boston, MA
- travel and expense analyst Boston, MA

