CO.ALITION
Senior Incident Response Analyst
CO.ALITION, Denver, Colorado, United States, 80285
About us
Coalition is the world's first Active Insurance provider designed to help prevent digital risk before it strikes. Founded in 2017, Coalition combines broad insurance coverage with a digital risk assessment and continuous security monitoring to help organizations protect themselves in today's hyper-connected world.
Opportunities to make an impact with bold thinking are real - and happening daily.
ResponsibilitiesWork under the direction of IR lead and outside counsel to conduct IR investigationsFulfill client requests and resolve incidents received via e-mail or internal ticketing systems in a timely and detail-oriented mannerManage all client interactions professionally with a strong emphasis on client satisfactionAnalyse and assess security incidents and escalate to appropriate internal teams for additional assistanceTriage and scope incidents for prospective clients to understand the DFIR objectives and magnitude of effort involved to satisfy objectivesProvide strategic, relevant, and achievable recommendations to help advance the security posture of organisations during and after an incidentCommunicate effectively with clients (executives and IT) on the topics of incident type, remediation, forensics and analysisPerform host and network-based forensics across Windows, Mac, and Linux platforms as well as cloud environmentsDeliver high-quality written and verbal reports, recommendations, and findings to key stakeholders including clients and legal counselParticipate in, or work directly on additional projects, assignments, or initiatives as requiredMentor and coach team members and work effectively as part of team unitDevelop, evaluate and utilise novel methods to hunt for indicators of compromise and perform analysis across large sets of dataAssist in the development of internal guidelines, playbooks and knowledge baseDemonstrate industry thought leadership through blog posts and occasional public speaking eventsSkills and Qualifications3-5 years of professional experience (2 years directly related to IR or functional area) or equivalent combination of education and experienceBachelor's degree in digital forensics, cybersecurity, computer science, information systems or similar fieldWorking as part of a team in a remote matrixed consulting environmentIncident Response: conducting or managing IR investigations for organizations, responding to opportunistic and targeted threats such asBECs, FTFs, ransomware and APTsDigital Forensic Analysis: a background in using different forensic analysis tools in incident response investigations to determine the extent and scope of compromise and possessing creativity and logic in approaching complex forensic problemsIncident Remediation: strong knowledge of opportunistic and targeted attacks and ability to generate customized strategic and tactical remediation plans for clientsNetwork Forensic Analysis: strong knowledge of networking protocols, network analysis tools, and ability to perform analysis of associated network logsSOC and EDR: experience with EDR solutions and leveraging detections and analytics to mitigate threats appropriatelyPossessing an understanding of secure network architecture and a strong knowledge of networking fundamentalsCloud Incident Response: knowledge in AWS, Azure, GCP incident response strategiesAdditional RequirementsExcellent problem-solving skills with the ability to diagnose and troubleshoot technical issuesCustomer oriented with a strong interest in client satisfactionAbility to learn new technologies and concepts quickly, and comfortable using command-line interfacesCapable of leading teams of highly motivated analystsCommunicate highly technical information to a non-technical audienceAbility to handle and work with clients through high stress situationsProficiency in project managementFoster a positive work environment and attitudeFlexibility with your work schedule in times of urgent response needsContribute to thought leadership within the DFIR industryBonus SkillsGCIH, GCIA, GCFA, GCFE, ACE, EnCE, CFCE, CISSP, or similarCompensation
Our compensation reflects the cost of labor across several US geographic markets. The US base salary for this position ranges from $122,000/year in our lowest geographic market up to $161,000/year in our highest geographic market. Consistent with applicable laws, an employee's pay within this range is based on a number of factors, which include but are not limited to relevant education, skills, job-related knowledge, qualifications, work experience, credentials, and/or geographic location. Your recruiter can share more on target salary for your location during the interview process. Coalition, Inc. reserves the right to modify this range as needed.Perks100% medical, dental and vision coverageFlexible PTO policyAnnual home office stipend and WeWork accessMental & physical health wellness programs (One Medical, Headspace, Wellhub, and more)!Competitive compensation and opportunity for advancement
Why Coalition?
We're a remote-first, mission-driven team committed to building a more inclusive culture with people of all different backgrounds. We trust our team members to take responsibility, share ownership, and put in the work to help us in our pursuit to solve digital risk.
Coalition's exceptional growth stems from its ability to address real-world problems for organizations of all sizes and remain true to our founding values of character, humility, responsibility, purpose, authenticity, and inclusion.
We're always looking for collaborative, inquisitive individuals to join #OurCoalition.
Visit our Newsroom >
Privacy Notice
Coalition is committed to protecting your privacy. We want you to understand what personal information we collect and how we use it. We also want you to understand your options regarding our collection, use, and disclosure of such information and your ability to access and correct such information. As the leading provider of active insurance, Coalition is required to adhere to certain local regulations, including U.S. federal and state laws that protect your information and our use and disclosure of it.
Information submitted, collected, and processed as part of your application is subject to Coalition's Privacy Policy.Anti-Discrimination Notice
Coalition is proud to be an Equal Opportunity employer. It is our policy to provide equal opportunity to all individuals seeking employment without regard to race, color, religion, religious creed, national origin, age, sex, marital status, ancestry, physical or mental disability, military or veteran status, gender, gender identity, gender expression, sexual orientation, medical condition, genetic information, or any other protected category under federal, state, or local law. We also prohibit harassment or discrimination of applicants based on the above-protected categories. This policy covers all aspects of employment, including but not limited to, recruitment, selection, training, promotion, transfer, compensation, demotion, and termination of employment.Accommodations
Coalition complies with US federal and state disability laws. Our policy is to provide reasonable accommodations to qualified individuals with disabilities, including applicants and employees unless the accommodation imposes an undue hardship. Contact us by emailing candidateaccommodations@coalitioninc.com if you require reasonable accommodation to complete this application, interview, pre-employment testing, or participating in the employee selection process.
We consider qualified applicants, regardless of criminal histories, consistent with legal requirements.
To all recruitment agencies: Coalition does not accept unsolicited agency resumes. Do not forward resumes to our email alias, employees, or other physical or virtual organization locations. Coalition is not responsible for any fees related to unsolicited resumes.
Coalition is the world's first Active Insurance provider designed to help prevent digital risk before it strikes. Founded in 2017, Coalition combines broad insurance coverage with a digital risk assessment and continuous security monitoring to help organizations protect themselves in today's hyper-connected world.
Opportunities to make an impact with bold thinking are real - and happening daily.
ResponsibilitiesWork under the direction of IR lead and outside counsel to conduct IR investigationsFulfill client requests and resolve incidents received via e-mail or internal ticketing systems in a timely and detail-oriented mannerManage all client interactions professionally with a strong emphasis on client satisfactionAnalyse and assess security incidents and escalate to appropriate internal teams for additional assistanceTriage and scope incidents for prospective clients to understand the DFIR objectives and magnitude of effort involved to satisfy objectivesProvide strategic, relevant, and achievable recommendations to help advance the security posture of organisations during and after an incidentCommunicate effectively with clients (executives and IT) on the topics of incident type, remediation, forensics and analysisPerform host and network-based forensics across Windows, Mac, and Linux platforms as well as cloud environmentsDeliver high-quality written and verbal reports, recommendations, and findings to key stakeholders including clients and legal counselParticipate in, or work directly on additional projects, assignments, or initiatives as requiredMentor and coach team members and work effectively as part of team unitDevelop, evaluate and utilise novel methods to hunt for indicators of compromise and perform analysis across large sets of dataAssist in the development of internal guidelines, playbooks and knowledge baseDemonstrate industry thought leadership through blog posts and occasional public speaking eventsSkills and Qualifications3-5 years of professional experience (2 years directly related to IR or functional area) or equivalent combination of education and experienceBachelor's degree in digital forensics, cybersecurity, computer science, information systems or similar fieldWorking as part of a team in a remote matrixed consulting environmentIncident Response: conducting or managing IR investigations for organizations, responding to opportunistic and targeted threats such asBECs, FTFs, ransomware and APTsDigital Forensic Analysis: a background in using different forensic analysis tools in incident response investigations to determine the extent and scope of compromise and possessing creativity and logic in approaching complex forensic problemsIncident Remediation: strong knowledge of opportunistic and targeted attacks and ability to generate customized strategic and tactical remediation plans for clientsNetwork Forensic Analysis: strong knowledge of networking protocols, network analysis tools, and ability to perform analysis of associated network logsSOC and EDR: experience with EDR solutions and leveraging detections and analytics to mitigate threats appropriatelyPossessing an understanding of secure network architecture and a strong knowledge of networking fundamentalsCloud Incident Response: knowledge in AWS, Azure, GCP incident response strategiesAdditional RequirementsExcellent problem-solving skills with the ability to diagnose and troubleshoot technical issuesCustomer oriented with a strong interest in client satisfactionAbility to learn new technologies and concepts quickly, and comfortable using command-line interfacesCapable of leading teams of highly motivated analystsCommunicate highly technical information to a non-technical audienceAbility to handle and work with clients through high stress situationsProficiency in project managementFoster a positive work environment and attitudeFlexibility with your work schedule in times of urgent response needsContribute to thought leadership within the DFIR industryBonus SkillsGCIH, GCIA, GCFA, GCFE, ACE, EnCE, CFCE, CISSP, or similarCompensation
Our compensation reflects the cost of labor across several US geographic markets. The US base salary for this position ranges from $122,000/year in our lowest geographic market up to $161,000/year in our highest geographic market. Consistent with applicable laws, an employee's pay within this range is based on a number of factors, which include but are not limited to relevant education, skills, job-related knowledge, qualifications, work experience, credentials, and/or geographic location. Your recruiter can share more on target salary for your location during the interview process. Coalition, Inc. reserves the right to modify this range as needed.Perks100% medical, dental and vision coverageFlexible PTO policyAnnual home office stipend and WeWork accessMental & physical health wellness programs (One Medical, Headspace, Wellhub, and more)!Competitive compensation and opportunity for advancement
Why Coalition?
We're a remote-first, mission-driven team committed to building a more inclusive culture with people of all different backgrounds. We trust our team members to take responsibility, share ownership, and put in the work to help us in our pursuit to solve digital risk.
Coalition's exceptional growth stems from its ability to address real-world problems for organizations of all sizes and remain true to our founding values of character, humility, responsibility, purpose, authenticity, and inclusion.
We're always looking for collaborative, inquisitive individuals to join #OurCoalition.
Visit our Newsroom >
Privacy Notice
Coalition is committed to protecting your privacy. We want you to understand what personal information we collect and how we use it. We also want you to understand your options regarding our collection, use, and disclosure of such information and your ability to access and correct such information. As the leading provider of active insurance, Coalition is required to adhere to certain local regulations, including U.S. federal and state laws that protect your information and our use and disclosure of it.
Information submitted, collected, and processed as part of your application is subject to Coalition's Privacy Policy.Anti-Discrimination Notice
Coalition is proud to be an Equal Opportunity employer. It is our policy to provide equal opportunity to all individuals seeking employment without regard to race, color, religion, religious creed, national origin, age, sex, marital status, ancestry, physical or mental disability, military or veteran status, gender, gender identity, gender expression, sexual orientation, medical condition, genetic information, or any other protected category under federal, state, or local law. We also prohibit harassment or discrimination of applicants based on the above-protected categories. This policy covers all aspects of employment, including but not limited to, recruitment, selection, training, promotion, transfer, compensation, demotion, and termination of employment.Accommodations
Coalition complies with US federal and state disability laws. Our policy is to provide reasonable accommodations to qualified individuals with disabilities, including applicants and employees unless the accommodation imposes an undue hardship. Contact us by emailing candidateaccommodations@coalitioninc.com if you require reasonable accommodation to complete this application, interview, pre-employment testing, or participating in the employee selection process.
We consider qualified applicants, regardless of criminal histories, consistent with legal requirements.
To all recruitment agencies: Coalition does not accept unsolicited agency resumes. Do not forward resumes to our email alias, employees, or other physical or virtual organization locations. Coalition is not responsible for any fees related to unsolicited resumes.