Senior Cyber Incident Responder
$86.4kHighmark Health
Company :
Highmark Health
Job Description :
JOB SUMMARY
This Position is the top investigator in the Cyber Fusion Center, capable of working any kind of incident, leading investigations, and ensuring incidents are properly documented and completed ensuring the CIRP (Cyber Incident Response Plan) is adhered to. They will be considered the subject experts and may be called to lead projects and aid in formulation and execution of security strategy for the team. The Senior Cyber Incident Responder interfaces with other internal teams to determine scope of work and resources for the team and delegates activities based upon complexity and capacity.
ESSENTIAL RESPONSIBILITIES
Coordinate and provide expert technical support to enterprise-wide cyber defense technicians to resolve cyber defense incidents. Handle escalated incidents serving as subject matter expert. (20%)
Correlate incident data to identify specific vulnerabilities and make recommendations that enable expeditious remediation. (20%)
Analyze log files from a variety of sources (e.g., individual host logs, network traffic logs, firewall logs, and intrusion detection system [IDS] logs) to identify possible threats to network security. (10%)
Perform cyber defense incident triage, to include determining scope, urgency, and potential impact, identifying the specific vulnerability, and making recommendations that enable expeditious remediation. (10%)
Perform cyber defense trend analysis and reporting, making recommendations to leadership to mitigate future risks. (10%)
Perform initial, forensically sound collection of images and inspect to discern possible mitigation/remediation on enterprise systems. (10%)
Perform real-time cyber defense incident handling (e.g., forensic collections, intrusion correlation and tracking, threat analysis, and direct system remediation) tasks to support deployable Incident Response Teams (IRTs). (10%)
Receive and analyze network alerts from various sources within the enterprise and determine possible causes of such alerts. 95%)
Track and document cyber defense incidents from initial detection through final resolution. (5%)
Other duties as assigned or requested.
EXPERIENCE
Required
5 years of Malware Analysis, Digital Forensics, Data/Network Analysis, Penetration testing, Trends Analysis, or Information Assurance
5 years of Cyber Incident Handling
Preferred
- None
SKILLS
Identifying, capturing, containing, and reporting malware
Preserving evidence integrity according to standard operating procedures or national standards
Securing network communications
Recognizing and categorizing types of vulnerabilities and associated attacks
Protecting a network against malware (e.g., NIPS, anti-malware, restrict/prevent external devices, spam filters)
Performing damage assessments
Using security event correlation tools
Design incident response for cloud service models
EDUCATION
Required
- Bachelor's in computer science, cybersecurity, information technology, software engineering, information systems, computer engineering, or other related field?
Substitutions
- 6 years of experience with information security and systems analysis and experience working within an information security function using the HITRUST Common Security Framework (HITRUST CSF), or the NIST 800-83 cyber security framework
Preferred
- Masters in computer science, cybersecurity, information technology, software engineering, information systems, computer engineering, or other related field
LICENSES or CERTIFICATIONS
Required
- None
Preferred
Cyber Incident/Security Certifications
Information Technology Infrastructure Library (ITIL), two of the following certifications: CISSP, GCFA, GCIH, GCFE, GNFA, GREM or GCCC.
Language (Other than English):
None
Travel Requirement:
0% - 25%
PHYSICAL, MENTAL DEMANDS and WORKING CONDITIONS
Position Type
Office- or Remote-based
Teaches / trains others
Occasionally
Travel from the office to various work sites or from site-to-site
Rarely
Works primarily out-of-the office selling products/services (sales employees)
Never
Physical work site required
No
Lifting: up to 10 pounds
Constantly
Lifting: 10 to 25 pounds
Occasionally
Lifting: 25 to 50 pounds
Rarely
Disclaimer: The job description has been designed to indicate the general nature and essential duties and responsibilities of work performed by employees within this job title. It may not contain a comprehensive inventory of all duties, responsibilities, and qualifications required of employees to do this job.
Compliance Requirement : This job adheres to the ethical and legal standards and behavioral expectations as set forth in the code of business conduct and company policies.
As a component of job responsibilities, employees may have access to covered information, cardholder data, or other confidential customer information that must be protected at all times.? In connection with this, all employees must comply with both the Health Insurance Portability Accountability Act of 1996 (HIPAA) as described in the Notice of Privacy Practices and Privacy Policies and Procedures as well as all data security guidelines established within the Company's Handbook of Privacy Policies and Practices and Information Security Policy.?
Furthermore, it is every employee's responsibility to comply with the company's Code of Business Conduct. This includes but is not limited to adherence to applicable federal and state laws, rules, and regulations as well as company policies and training requirements.
Pay Range Minimum:
$86,400.00
Pay Range Maximum:
$138,600.00
Base pay is determined by a variety of factors including a candidate's qualifications, experience, and expected contributions, as well as internal peer equity, market, and business considerations. The displayed salary range does not reflect any geographic differential Highmark may apply for certain locations based upon comparative markets.
Highmark Health and its affiliates prohibit discrimination against qualified individuals based on their status as protected veterans or individuals with disabilities and prohibit discrimination against all individuals based on any category protected by applicable federal, state, or local law.
We endeavor to make this site accessible to any and all users. If you would like to contact us regarding the accessibility of our website or need assistance completing the application process, please contact the email below.
For accommodation requests, please contact HR Services Online at View email address on click.appcast.io
California Consumer Privacy Act Employees, Contractors, and Applicants Notice
Req ID: J278529
$100.2k - $164.1k
...Senior Incident Response Consultant 133254 This role joins SpearTip, the cybersecurity consulting segment within Zurich Resilience Solutions... ...cutting-edge technologies, unique skill sets, and proven cyber counterintelligence strategies, SpearTip partners with our clients...CyberSeniorFull timeTemporary workApprenticeshipLocal areaRemote workVisa sponsorshipFlexible hours$106.8k - $194.8k
...Firewall (WAF) solutions to protect client applications from cyber threats. You will work within a team of cybersecurity... ...actively monitor application traffic, analyze security events, and respond to incidents to mitigate risks effectively. Additionally, you will...CyberSeniorSummer holidayFlexible hours- ...security technologies to detect, prevent, and respond to security threats in real time. •... ...and public AI and ML/DL systems against cyber threats, adversarial attacks, and data breaches... ...activity for anomalies and security incidents. • Develop and enforce policies to...CyberSeniorImmediate startRemote workFlexible hours
$102.17k
...country. Job Description Join the Trinnex Security Team as a Senior Cyber Security Analyst, where you will operate at the intersection... ...to detect emerging threats. Lead response efforts for complex incidents (e.g., APTs, data breaches), including forensic analysis and...CyberSeniorH1b- ...Trinnex is seeking a Senior Cyber Security Analyst to protect critical software systems that support water utilities and infrastructure. This role focuses on securing the software development lifecycle while collaborating with engineering teams to enhance overall security...CyberSenior
- ...Senior Cybersecurity Analyst Anywhere Type: Contract-to-Hire Category: Security... ..., guide security architecture, and drive incident response and risk mitigation. The role... ...and drive decisions. Identify gaps in cyber operations and implement improvements....CyberSeniorHourly payPermanent employmentContract workLocal areaRemote work
$93.54k - $103.32k
...critical systems against today's most advanced cyber threats? We are seeking a Cybersecurity... ...- Tier 2 to monitor alerts, investigate incidents, and ensure swift, effective responses... ...Affairs (VA) digital assets and responds to, investigates, and mitigates potential...CyberPermanent employmentTemporary workLocal areaShift work- ...network equipment, change control, disaster recovery testing, cyber vulnerability assessments, and logical segmentation... ...for potential breaches/vulnerabilities and act as first responder for any potential incident. Provide input for detailed analysis, diagnosis and...CyberWork at officeRemote work
- ...motivated, diligent, and skillful Site Reliability Engineer to join the Cyber Security Engineering (CSE) Team. The CSE Team, working within... .... This position can be remote anywhere in the U.S. The Senior Site Reliability Engineer will be responsible for ensuring...CyberSeniorTemporary workRemote work
$90k - $120k
...Information Security Officer (CISO), the Senior Cybersecurity Operations Analyst will be... ...multiple security tools to identify incidents and potential information security threats... ...will identify, corelate, escalate, and respond to security incidents using various security...SeniorFull timePart timeWork experience placementWork at officeFlexible hours- ...data and computer systems from evolving cyber threats. The analyst will be... ...activity, identifying vulnerabilities, responding to incidents, and ensuring compliance with security... ...recommend enhancements to management and senior IT staff. Training and Awareness: Provide...Cyber
$224k - $337k
...The Principal Cyber Security Architect/Engineer will be responsible for leading the design and implementation of cutting‑edge cybersecurity... ...technical excellence and solution innovation to leading incident response efforts and conducting digital analysis. Your work will...CyberTemporary workRemote workWorldwideFlexible hours$40 per hour
...assessing threats and providing technical feedback, ideal for those with 2+ years in cybersecurity roles like penetration testing or incident response. This remote position offers flexible project selection and hourly pay starting at $40. Qualifications include a bachelor...CyberHourly payRemote workFlexible hours- ...Development, Engineering & IT, Data Science, Cyber Enablement, Logistics, and Training.... ...actions taken, and installation activities Log incidents and provide direct support to end users... ...components, and supporting organizations Respond to user questions and resolve issues...CyberShift work
$80k - $100k
...an IT Security Analyst to bolster its cybersecurity operations. The successful candidate will monitor security alerts, investigate incidents, and support initiatives to enhance the organization's security posture. This position demands 3–5 years of IT experience, strong...$40k
...operations by monitoring security tools, performing initial incident triage, and assisting with containment, vulnerability... ..., and compliance activities. The role works under senior guidance to execute defined cyber actions, maintain incident documentation, support POA&M...CyberContract workRemote work$112.07k - $168.11k
...mitigate technology-related risks across the organization Direct incident response, crisis management, and recovery activities in... ...02, CIS Controls) Proven ability to lead incident response and cyber crisis management efforts Technical and Systems Expertise Experience...Cyber$142k - $178k
...based on documented best practices and standards. Manage incident/problem lifecycle including ticketing and stakeholder... ...or new activities. Work under supervision of the Sr. Cyber Security Manager and interact with Senior/Portfolio Architect. YOU MUST HAVE: Bachelor’s or...CyberPermanent employmentTemporary workWork experience placementFlexible hours$87.7k - $164k
...Information Security we blend risk strategy, digital identity, cyber defense, application security and technology solutions... ...value. The opportunity Cyber Triage and Forensics (CTF) Incident Analyst will work as a senior member of the technical team responsible for security...CyberSummer holidayLocal areaFlexible hours$97.14k - $190.5k
...solutions within our Cybersecurity platforms in support of our Cyber Defense Organization. Enterprise Technology plays a critical... ...understanding of network security, log analysis, threat detection, and incident response. Knowledge of RESTful APIs, data integration...CyberImmediate startRemote workFree visaFlexible hours$94.1k - $144.8k
...The Database Administrator, Senior leads the design, implementation, and lifecycle management of enterprise database platforms that... ...change plans, and set standards for documentation, monitoring, and incident response. Required Qualifications Bachelor’s degree (BA/BS) in...SeniorContract workWork experience placementWork at office- ...compliance requirements. - Execute directed cyber actions including network access... ...compliance. - Maintain documentation, incident logs, and runbooks to support auditability... ...market and internal value analysis including seniority and merit systems, as well as internal...CyberMinimum wageFull timeContract workTemporary workWork experience placementRemote work
- ...specialty and add-on services. Identifies high-risk cases and responds as indicated in accordance with established protocols.... ...Certification Authority (ECA) renewal as well as annual training such as Cyber Awareness and PII to ensure access to the CMS system is...CyberContract workWork experience placement
- ...Maintains eMASS package, manages POA&Ms, executes IAVM, runs STIG/ACAS scans, and integrates security across the SDLC. Supports cyber incident reporting per PWS §5 (72-hour timeline). Key Responsibilities Maintain TRDM Authority to Operate (ATO) in eMASS Produce...CyberFlexible hours
$100k - $160k
...Position: Offensive Security Consultant (Mid-Senior) Location: United States - Remote Employment Type: Full Time Pay Range: $100k-$160... ...remediation guidance Stay current on emerging threats, TTPs, and cyber security trends Contribute to penetration testing framework, including...CyberFull timeRemote work$94.1k - $150k
...Position Overview The Cyber Threat Hunter proactively protects enterprise environments from advanced cyber threats by analyzing network... ..., techniques, and procedures to strengthen cyber defense and incident response operations. This role directly supports a proactive...CyberContract workWork at office$201k - $303.6k
...Service, Security, and other teams across the organization. Senior Product Manager for AI and Automation PagerDuty is... ...and Tools. This is the backbone of how teams eliminate toil, respond to incidents autonomously, and ultimately enable AI-native SRE agents....SeniorLocal areaFlexible hours- ...solutions, databases) across multiple sites. Identify, analyze, responds, triages, and troubleshoot/resolve system alerts indicating... ...availability monitoring and reporting/escalation services. ~ Perform incident capture, verification, diagnostics and escalation. ~ High...SeniorWork experience placementLocal areaRemote workShift workNight shift
$126.2k - $264.1k
...infrastructure, and healthcare transformation. About the Role As an Senior Principal Product Manager, you will own product outcomes for... ..., and customer-facing messaging. Help triage escalations, incidents, and outages when product leadership is needed, ensuring follow...SeniorTemporary workFlexible hours- ...Overview Join a team where innovation meets mission. Our AI, cloud, cyber, and modernization solutions save agencies thousands of hours,... ...Process ACH payments and print checks to vendors/Employees Respond to all vendor inquires on a timely manner Reconcile vendor statements...CyberFull timeTemporary workWork at officeImmediate startRemote workWork from homeWorldwide
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Senior Cyber Incident Responder. Be the first to apply!
- senior robotics software engineer Springfield, IL
- senior director clinical development Springfield, IL
- senior consulting engineer Springfield, IL
- senior dynamics crm developer Springfield, IL
- senior application security Springfield, IL
- senior inventory accountant Springfield, IL
- senior accountant part time Springfield, IL
- senior manager diversity & inclusion Springfield, IL
- senior technical product manager Springfield, IL
- senior clinical data manager Springfield, IL


