TheStaffed
We are seeking a Cybersecurity Incident Response Senior Analyst to join a leading management consulting team on an engagement with a top-tier global financial institution. This is a highly visible and hands-on role responsible for detecting, analyzing, and responding to cyber threats while ensuring compliance with internal policies and regulatory requirements. The ideal candidate will bring a mix of technical depth, governance awareness, and cross-functional collaboration capabilities.
Requirements and Qualifications
Minimum 5+ years of hands-on experience in cybersecurity incident detection and response, including containment, eradication, and recovery.
Strong knowledge of SIEM, DLP, phishing detection, EDR, and threat intelligence platforms to investigate and respond to anomalous activities.
Proven ability to analyze host- and network-based artifacts/logs and reconstruct incident timelines for root cause analysis.
Experience conducting threat hunting and proactively identifying indicators of compromise (IOCs) across systems and networks.
Demonstrated ability to collect and preserve digital evidence in a legally defensible manner.
Deep understanding of governance, risk, and compliance (GRC) standards, particularly in regulated environments such as financial services.
Familiarity with U.S. regulatory agencies (e.g., SEC, CFTC, NFA, OCC) and supporting audits or regulatory examinations.
Strong experience maintaining incident response playbooks, policies, and procedures, ensuring alignment with security mandates.
Ability to define, track, and report on KPIs, KRIs, and security metrics to measure program effectiveness and risk exposure.
Effective cross‑functional communicator, capable of leading incident calls and working with legal, compliance, risk, and tech teams.
Comfortable in global, hybrid (virtual/onsite) working environments with strong documentation and presentation skills.
Experience participating in post‑incident reviews, red/blue team exercises, and tabletop simulations.
#J-18808-Ljbffr
Requirements and Qualifications
Minimum 5+ years of hands-on experience in cybersecurity incident detection and response, including containment, eradication, and recovery.
Strong knowledge of SIEM, DLP, phishing detection, EDR, and threat intelligence platforms to investigate and respond to anomalous activities.
Proven ability to analyze host- and network-based artifacts/logs and reconstruct incident timelines for root cause analysis.
Experience conducting threat hunting and proactively identifying indicators of compromise (IOCs) across systems and networks.
Demonstrated ability to collect and preserve digital evidence in a legally defensible manner.
Deep understanding of governance, risk, and compliance (GRC) standards, particularly in regulated environments such as financial services.
Familiarity with U.S. regulatory agencies (e.g., SEC, CFTC, NFA, OCC) and supporting audits or regulatory examinations.
Strong experience maintaining incident response playbooks, policies, and procedures, ensuring alignment with security mandates.
Ability to define, track, and report on KPIs, KRIs, and security metrics to measure program effectiveness and risk exposure.
Effective cross‑functional communicator, capable of leading incident calls and working with legal, compliance, risk, and tech teams.
Comfortable in global, hybrid (virtual/onsite) working environments with strong documentation and presentation skills.
Experience participating in post‑incident reviews, red/blue team exercises, and tabletop simulations.
#J-18808-Ljbffr