Blue Yonder is seeking a Sr. Cybersecurity Incident Response Analyst to join our Security Operations team. In this role, you will be instrumental in leading Tier 2 incident response efforts, conducting proactive threat hunting, and protecting our enterprise from sophisticated cyber-attacks. You will work closely with cross-functional teams to strengthen our security posture and ensure a rapid, effective response to security incidents.
What You'll Do
- Monitor and analyze security alerts to determine the appropriate course of action to protect the enterprise and reduce overall risk.
- Quickly assess, prioritize, and respond to security incidents, ensuring timely containment, eradication, and recovery to minimize business impact.
- Investigate security incidents to determine root causes, attack vectors, and vulnerabilities, providing recommendations to reduce the attack surface and prevent recurrence.
- Conduct proactive threat-hunting activities based on intelligence, anomalies, and adversary tactics to identify and mitigate threats before they escalate.
- Work closely with IT, engineering, legal, compliance, and other teams to coordinate incident response efforts and ensure an effective security posture.
- Maintain detailed documentation of security incidents, response actions, and lessons learned, ensuring continuous improvement in security processes.
- Enhance and maintain incident response procedures, ensuring alignment with industry best practices and emerging threats.
- Provide guidance, training, and mentorship to SOC analysts and IT staff on security threats, incident handling, and response best practices.
- Leverage threat intelligence sources to stay informed on evolving cyber threats and proactively adjust security strategies to defend against them.
What We're Looking For
- Bachelor's degree in Computer Science, Information Security, or related equivalent experience.
- 5+ years of experience in information security or cybersecurity as an analyst, engineer or consultant.
- MUST have experience with incident response methodologies and tools (e.g. SANS IR, EDR, SIEM, Threat Intelligence, etc.).
- Strong technical skills and attention to detail.
- Excellent verbal and written communication skills.
- Ability to work independently, as part of a team, and under pressure in a fast-paced environment.
- Strong problem-solving skills and a proactive approach to work.
- Knowledge of security frameworks such as NIST and ISO 27001.
- Familiarity with security regulations and standards (e.g. PCI DSS, HIPAA, etc.).
- Strong familiarity with cloud security technologies and frameworks across major cloud providers (AWS, Azure, Google Cloud).
- Experience with cloud-native security monitoring, incident response in cloud environments, and threat detection techniques to protect workloads, data, and identities in hybrid and multi-cloud architectures.
Technical Stack
- Security Information and Event Management (SIEM)
- Endpoint Detection and Response (EDR) / Extended Detection and Response (XDR)
- Network Security Monitoring & Intrusion Detection/Prevention Systems (IDS/IPS)
- Threat Intelligence Platforms (TIP)
- Security Orchestration, Automation, and Response (SOAR)
- Digital Forensics and Incident Response (DFIR) Tools
- Malware Analysis & Reverse Engineering Tools
- Vulnerability Management & Assessment
- Web Application Security Testing Tools
- Cloud Security Monitoring & Protection
- Email Security & Phishing Protection
- Deception & Honeypot Technologies
- Data Loss Prevention (DLP)
- Privileged Access Management (PAM) & Identity Security
- Firewall & Next-Generation Firewall (NGFW) Solutions
Team & Environment
This role is part of the Security Operations (SOC) team at Blue Yonder.
Work Mode
This is a remote position. Candidates located in Monterrey, Mexico are preferred, but those in the Mexico City area will also be considered.
All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or protected veteran status.
