Cyber Incident Responder and Threat Hunter
About The Position
Guardian is seeking a Cyber Incident Responder who demonstrates curiosity, tenacity, follow-through, and an analytical mindset to join the Cyber Incident Response and Threat Services team. This role supports Guardian’s cyber incident response and threat hunting operations, contributing to investigations, proactive detection, and operational improvements. The candidate will work closely with DFIR leadership and Cyber Defense Operations to identify threats, contain incidents, and improve detection capabilities. The successful candidate must live by Guardian’s success factors of acting with accountability, leading with the customer at the center, committing to collaborate, communicating with transparency, and connecting with empathy and compassion.
Requirements
- 2–7 years of cybersecurity experience, including cyber defense, incident response, and digital forensics
- Knowledge of data loss prevention, endpoint protection, digital forensics (Windows and Linux), and cloud, network, web, database, and data security
- Familiarity with MITRE ATT&CK, NIST CSF, and threat intelligence workflows
- Excellent analytical and problem-solving skills; ability to analyze complex data and identify actionable insights
- Strong written and oral communication skills; ability to communicate at all levels of the organization and collaborate across multiple teams
- Experience supporting investigations and containment efforts in regulated environments
- Proficient in leveraging AI-driven tools and techniques to enhance cyber incident response, threat hunting, and defensive strategy.
- Possess an Associate’s or Bachelor’s degree in cybersecurity or related field, or equivalent industry certifications
- Willingness to participate in a 24x7 on-call support rotation
- Must be legally authorized to work in the United States, without the need for employer sponsorship.
Responsibilities
- Execute Guardian’s cyber incident response strategy, acting swiftly to identify, contain, and eradicate security incidents
- Conduct thorough investigations of security events and coordinate recovery efforts with other teams to restore normal operations
- Create detailed reports on incident response activities, findings, and recommendations, and maintain accurate records of investigations and outcomes
- Respond to data loss prevention events to prevent unauthorized access and exfiltration of sensitive data
- Proactively search for cyber threats within the network using advanced techniques; identify patterns, anomalies, and potential indicators of compromise
- Perform forensic analysis on compromised systems and collect evidence in accordance with legal and regulatory requirements
- Stay informed on current and emerging cyber threats that may impact the organization
- Preform regular threat hunts to contribute to our proactive defense program
- Identify use cases for detection engineering to strengthen Guardian’s security posture
- Collaborate across multiple teams and business units.
- Strategically use AI-powered solutions to improve detection, investigation efficiency, and overall cyber resilience.
- Provide Tier 2 support for the Cyber Defense Operations Team, working closely to identify and respond to potential threats
Benefits
- Skill-building
- Leadership development
- Philanthropic opportunities
- Opportunities to build communities
- Supportive, flexible, and inclusive benefits and resources
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
Education Level
Associate degree
