LazyApply Logo

LazyApply

How It WorksPricingReviewsAI Cover Letter
Sutherland
Sutherland

10000+ employees

WebsiteLinkedIn
Business Process Outsourcing (BPO)
Information Technology and Services
Customer Service
About Sutherland

Sutherland is a global provider of digital transformation, business process outsourcing, and technology services. Founded in 1986, the company specializes in delivering customer experience management, back-office support, and IT services to clients across various industries including healthcare, banking, retail, and technology. Sutherland leverages advanced analytics, automation, and AI to help businesses improve operational efficiency and customer engagement. With a workforce exceeding 30,000 employees worldwide, Sutherland is recognized for its commitment to innovation and excellence in service delivery, supporting clients in their digital transformation journeys.

6 months ago

Cybersecurity Incident Response Analyst

Full-time
Mid Level
Security Engineer
Report problem

📋

Description
  • We are seeking an experienced Cybersecurity Incident Response Analyst with 5+ years of hands-on expertise in managing complex security incidents.
  • In this role, you will be responsible for detecting, analyzing, and responding to threats across various domains, including identity, web, network, and cloud environments.
  • The ideal candidate will demonstrate a strong threat-hunting mindset, excellent analytical skills, and the ability to thrive under pressure while collaborating effectively with cross-functional teams.
  • Key responsibilities include leading the incident response lifecycle, investigating attack vectors such as credential abuse, web attacks like SQL injection and XSS, network attacks including DDoS and lateral movement, and cloud threats like IAM misconfigurations.
  • You will work closely with SOC analysts, threat intelligence teams, forensics, and engineering groups, conduct root cause analysis, document procedures, and participate in threat hunting and purple team exercises.
  • Requirements include at least 5 years of experience in cybersecurity incident response or security operations, proficiency with SIEM, EDR, and SOAR tools, experience in cloud environments (AWS, Azure, GCP), and knowledge of frameworks like MITRE ATT&CK.
  • Industry certifications such as GCIH, GCFA, GNFA, GCIA, or cloud security certifications are preferred.
  • Experience with scripting (Python, PowerShell, Bash) and threat intelligence practices is a plus.

🎯

Requirements
  • A minimum of 5 years of hands-on experience in cybersecurity incident response or security operations.
  • Proven expertise in investigating and mitigating incidents across one or more areas: identity, web, network, or cloud.
  • Proficiency with SIEM, EDR, and SOAR tools (e.g., Splunk, Sentinel, CrowdStrike).
  • Experience in hybrid or cloud-first environments (AWS, Azure, or GCP).
  • Strong understanding of frameworks and methodologies such as MITRE ATT&CK, the cyber kill chain, and threat modeling.
  • Excellent written and verbal communication skills, with the ability to document and convey technical details clearly to both technical and non-technical stakeholders.
  • Industry certifications include GCIH, GCFA, GNFA, GCIA, or relevant cloud security certifications (AWS, Azure, or GCP).
  • Experience with scripting or automation (e.g., Python, PowerShell, Bash).
  • Exposure to advanced threat hunting and threat intelligence practices.

🏖️

Benefits
  • Equal opportunity employer promoting diversity and inclusion.
  • Positive work environment fostering professional growth.
  • Confidentiality of all personal information according to EEO guidelines.