Incident Response Lead
Remote, U.S.
Applications have closed
Recorded Future, Inc.
Recorded Future is the most comprehensive and independent threat intelligence platform. Identify and mitigate threats across cyber, supply-chain, physical and fraud domains.This role is open to remote applicants in the East & Central regions of the U.S.
Recorded Future’s security team is looking for an expert security professional to lead the newly set up investigations team. The position is an opportunity to contribute to highly visible cybersecurity operations function globally, impacting Recorded Future, service ventures, partners, and customers. We are looking for a motivated and creative individual with strong knowledge of information security, hacking, and IT operations. The ideal candidate will demonstrate complex problem-solving skills, the ability to challenge assumptions, considering alternative perspectives, thinking quickly, and performing in high-stress situations while working in a strong, tight-knit, collaborative team environment.
What you'll do as Incident Response Lead
- Technical leadership and hands-on response and ownership of computer security incidents.
- Research and deploy new technologies as needed to support business objectives related to security detection and response.
- Design and implement new detection technologies along with playbook development and threat hunting.
- Advancing security automation and response.
- Collaborate with engineers to enhance, improve cloud (IaaS, SaaS, etc) based security detection and response.
- Update, modify and improve existing programs used for security detection and response.
- Develop documentation on all custom solutions.
- Regularly view and verify existing metrics to ensure accuracy and quality.
- Annotate existing metrics to improve user understanding of the meaning of metrics.
What you'll bring as the Incident Response Lead
- Excellent communication (verbal and written) skills.
- Excellent technical skills in a variety of operating systems, programming languages, and databases.
- Expert in computer security incident handling.
- Expert knowledge of computer security forensics and security vulnerabilities.
- Deep Information Security knowledge and awareness of ongoing threats.
- Scripting/coding abilities.
- A solid understanding of networking and core Internet protocols (e.g. TCP/IP, DNS, SMTP, HTTP, and distributed networks).
- Experience with Linux/UNIX systems and the best practices for securing applications and data on those stacks.
- Infrastructure-as-a-Service platforms ( Amazon Web Services, etc.)
- Threat research and threat intelligence knowledge.
- Flexibility – willingness to pitch in where needed across program and team.
- Strong leadership, influence, and collaboration skills; sound problem resolution, judgment, negotiating, and decision-making skills.
#LI-remote
Why should you join Recorded Future?
With over 600 employees, $140M ARR, 1,000 clients, and 50% year-over-year growth, Recorded Future is the world’s largest privately-held security intelligence company! Recorded Future employees (or “Futurists”), represent over 35 nationalities and embody our core values of being passionate, practicing inclusion, and acting ethically. Our dedication to empowering clients with intelligence to disrupt adversaries has earned us a 4.7-star user rating from Gartner and 8 of the top 10 Fortune 100 companies as clients.
Want more info?
Blog & Podcast: Learn everything you want to know (and maybe some things you’d rather not know) about the world of cyber threat intelligence
Instagram & Twitter: What’s happening at Recorded Future
The Record: The Record is a cybersecurity news publication that explores the untold stories in this rapidly changing field
Timeline: History of Recorded Future
Recognition: Check out our awards and announcements
We are committed to maintaining an environment that attracts and retains talent from a diverse range of experiences, backgrounds and lifestyles. By ensuring all feel included and respected for being unique and bringing their whole selves to work, Recorded Future is made a better place every day.
If you need any accommodation or special assistance to navigate our website or to complete your application, please send an e-mail with your request to our recruiting team at careers@recordedfuture.com
Recorded Future is an equal opportunity and affirmative action employer and we encourage candidates from all backgrounds to apply. Recorded Future does not discriminate based on race, religion, color, national origin, gender including pregnancy, sexual orientation, gender identity, age, marital status, veteran status, disability or any other characteristic protected by law.
Recorded Future will not discharge, discipline or in any other manner discriminate against any employee or applicant for employment because such employee or applicant has inquired about, discussed, or disclosed the compensation of the employee or applicant or another employee or applicant.
Tags: Automation Cloud DNS Forensics IaaS Incident response Linux SaaS Scripting SMTP TCP/IP Threat intelligence Threat Research UNIX Vulnerabilities
Perks/benefits: Career development Startup environment
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Specialist jobs
- Open Senior Cyber Security Engineer jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Principal Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Staff Security Engineer jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Product Security Engineer jobs
- Open Manager Pentest H/F jobs
- Open Cyber Security Specialist jobs
- Open Senior Information Security Analyst jobs
- Open Cybersecurity Analyst jobs
- Open Chief Information Security Officer jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Information Security Engineer jobs
- Open Security Specialist jobs
- Open Senior Penetration Tester jobs
- Open Cybersecurity Specialist jobs
- Open Security Researcher jobs
- Open Senior Security Architect jobs
- Open IT Security Engineer jobs
- Open Security Operations Analyst jobs
- Open CISM-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open ISO 27001-related jobs
- Open Pentesting-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open Analytics-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open Security assessment-related jobs
- Open Malware-related jobs
- Open DevOps-related jobs
- Open IDS-related jobs
- Open Security Clearance-related jobs
- Open Forensics-related jobs
- Open CEH-related jobs
- Open EDR-related jobs
- Open Kubernetes-related jobs