Cybersecurity Incident Response Specialist
About The Position
Geotab is seeking a Cybersecurity Incident Response Specialist who will be responsible for protecting Geotab's software, hardware, and supply chain by leading incident response efforts across government-compliant and commercial environments. This role is ideal for someone who loves investigative security work, thrives in fast-moving environments, and is keen to join an industry leader. The Cybersecurity Incident Response Specialist will own incident response operations for Geotab's government compliance environments, proactively monitor, triage, and lead response efforts for security incidents, conduct log analysis across web applications, and leverage tools including Elastic and CrowdStrike. During lower-incident periods, the specialist will lead threat hunts and strategic IR project work to continuously improve security posture. The role also includes participation in an on-call rotation with dedicated coverage for US-specific incidents. The successful candidate will be a self-starter with strong investigative instincts, able to execute independently with minimal supervision, possess excellent communication skills for coordinating across leadership and internal teams, and demonstrate an ability to push tasks to completion in ambiguous or high-pressure situations.
Requirements
- Post-secondary diploma or degree specializing in Computer Science, Engineering, or a related field
- 3–5 years of experience in an Incident Response or Security Operations role
- Hands-on experience with Elastic, CrowdStrike, and SQL
- Scripting proficiency in Python, PowerShell, and Bash
- Familiarity with Splunk, QRadar, or other SIEM tools is a strong asset
- Experience in GCP environments (primary)
- AWS, Azure, or Oracle cloud familiarity is an asset
- Strong communication skills with proven ability to work independently as a self-starter in a remote or hybrid environment
- Willingness to participate in a on-call incidents
- Candidates must have continuously resided in the continental United States for at least three years immediately preceding their application.
- Successful applicants will be required to provide verifiable documentation of continuous lawful residency.
- Ability to pass an enhanced background check, including a drug screening test (if applicable) and a credit check.
Nice To Haves
- CCSP certification desired
- CISSP and SANS certifications is a plus
Responsibilities
- Proactively monitor, evaluate, and track systems and networks for breaches to Geotab's security, products, and customers
- Identify security flaws and vulnerabilities and utilize industry standard metrics for evaluating risks (e.g. CVSS)
- Ensure that Geotab's compliance requirements are met (e.g. NIST 800-53 & NIST 800-171), with dedicated focus on FedRAMP and CONUS environments
- Perform security audits, risk analysis, network forensics, and penetration testing to reduce attack surface
- Perform malware analysis and reverse engineering to develop a procedural set of responses to security problems
- Establish plans that outlines security gap assessments, policies, procedures, playbooks, training, and tabletop testing
- Establish protocols for effectively communicating security incidents and breaches with customers, internal stakeholders, and law enforcement
- Remedy security breaches in a timely manner according to priority and provide expert SME guidance to internal teams
Benefits
- Flex working arrangements
- Home office reimbursement program
- Baby bonus & parental leave top up program
- Online learning and networking opportunities
- Electric vehicle purchase incentive program
- Competitive medical and dental benefits
- Retirement savings program
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
Education Level
Associate degree
