Title:  Senior Cyber Threat Analyst

Summary:

The Senior Cyber Threat Analyst will lead efforts to investigate cybersecurity incidents from end-to-end, engaging and coordinating peer teams, stakeholders, and external entities as necessary. This person will play a role of subject matter expert in the areas of incident response, threat hunting, and forensics. The Senior Cyber Threat Analyst will author incident response runbooks and mentor cyber threat analysts in incident response and digital forensics methodologies.

Responsibilities:

• Lead incident response activities to identify, assess, contain, mitigate all observed threats and document all investigational efforts for multiple audiences
• Develop and operationalize incident response runbooks with an emphasis on automation and ability to measure incident response effectiveness (Develop/track KPIs)
• Document and track incident response investigations, including observed IOCs and TTPs, system(s) impacted, criticality and scope of any data exposure, lessons learned, follow-up items
• Act as a liaison between a diverse group of teams including engineering, security, and network & system operations to ensure effective adoption of incident response requirements and operational considerations
• Act as incident manager for all declared cyber security incidents
• Conduct traditional forensic and data acquisition activities utilizing industry standard commercial and open-source toolsets
• Identify, analyze, and interpret trends or patterns in complex data sets
• Work with the functional business areas as needed during incident response investigations
• Develop, customize, and maintain reporting around key metrics related to investigational and threat hunting activities
• Serve as a trusted advisor to the team Lead, Manger, and the SVP, and CISO on sensitive matters warranting confidentiality
• Communicate and present issues/investigation results to peer and executive-level audiences
• Demonstrate subject matter expertise across most technology domains

Qualifications:

• Extensive cybersecurity experience, including 8+ years in investigations and incident response, supported by a bachelor’s degree or equivalent demonstrated expertise.
• Deep hands‑on expertise in incident response, computer forensics, malware analysis, network traffic analysis, and log analysis.
• Strong capability in security operations, including the use of SIEM, SOAR, and EDR platforms, threat intelligence, and frameworks such as MITRE ATT&CK and ATLAS.
• Broad technical knowledge across operating systems (Windows, macOS, Linux/Unix, mobile), modern cloud environments (SaaS, PaaS), and core security technologies such as firewalls and intrusion detection systems.
• Strong analytical, risk‑assessment, and communication skills, with the ability to operate effectively in high‑stress environments, clearly communicate with engineers and leadership, and handle sensitive information in accordance with defined processes.