Cyber Incident Responder and Threat Hunter
Role details
Job location
Tech stack
Job description
Do you want to be part of a collaborative problem-solving cybersecurity team? Guardian is seeking a Cyber Incident Responder who demonstrates curiosity, tenacity, follow-through, and an analytical mindset to join the Cyber Incident Response and Threat Services team.
This role supports Guardian's cyber incident response and threat hunting operations, contributing to investigations, proactive detection, and operational improvements. The candidate will work closely with DFIR leadership and Cyber Defense Operations to identify threats, contain incidents, and improve detection capabilities. The successful candidate must live by Guardian's success factors of acting with accountability, leading with the customer at the center, committing to collaborate, communicating with transparency, and connecting with empathy and compassion., * Execute Guardian's cyber incident response strategy, acting swiftly to identify, contain, and eradicate security incidents
- Conduct thorough investigations of security events and coordinate recovery efforts with other teams to restore normal operations
- Create detailed reports on incident response activities, findings, and recommendations, and maintain accurate records of investigations and outcomes
- Respond to data loss prevention events to prevent unauthorized access and exfiltration of sensitive data
- Proactively search for cyber threats within the network using advanced techniques; identify patterns, anomalies, and potential indicators of compromise
- Perform forensic analysis on compromised systems and collect evidence in accordance with legal and regulatory requirements
- Stay informed on current and emerging cyber threats that may impact the organization
- Preform regular threat hunts to contribute to our proactive defense program
- Identify use cases for detection engineering to strengthen Guardian's security posture
- Collaborate across multiple teams and business units.
- Strategically use AI-powered solutions to improve detection, investigation efficiency, and overall cyber resilience.
- Provide Tier 2 support for the Cyber Defense Operations Team, working closely to identify and respond to potential threats
Requirements
- 2-7 years of cybersecurity experience, including cyber defense, incident response, and digital forensics
- Knowledge of data loss prevention, endpoint protection, digital forensics (Windows and Linux), and cloud, network, web, database, and data security
- Familiarity with MITRE ATT&CK, NIST CSF, and threat intelligence workflows
- Excellent analytical and problem-solving skills; ability to analyze complex data and identify actionable insights
- Strong written and oral communication skills; ability to communicate at all levels of the organization and collaborate across multiple teams
- Experience supporting investigations and containment efforts in regulated environments
- Proficient in leveraging AI-driven tools and techniques to enhance cyber incident response, threat hunting, and defensive strategy.
- Possess an Associate's or Bachelor's degree in cybersecurity or related field, or equivalent industry certifications
- Willingness to participate in a 24x7 on-call support rotation
Benefits & conditions
$95,170.00 - $156,355.00
The salary range reflected above is a good faith estimate of base pay for the primary location of the position. The salary for this position ultimately will be determined based on the education, experience, knowledge, and abilities of the successful candidate. In addition to salary, this role may also be eligible for annual, sales, or other incentive compensation.
Our Promise
At Guardian, you'll have the support and flexibility to achieve your professional and personal goals. Through skill-building, leadership development and philanthropic opportunities, we provide opportunities to build communities and grow your career, surrounded by diverse colleagues with high ethical standards.
