Incident Response Analyst

Check Point Software TechnologiesDallas, TX
Remote

About The Position

Responsible for daily incident management of customer incidents. Perform incident response and forensic analysis of compromised systems, identify and provide recommendations for remediation. Formulate and direct incident response efforts, prioritize those response efforts, and create legible incident reports that describe the compromise vector, attacker methodologies and artifacts. Ability to manage complicated global incidents. Ability to perform large-scale compromise assessments for customer environments. Build incident response plans and playbooks. Create attack scenarios for customer tabletop training exercises. Creation of detailed incident reports for customers and effective communication of findings to customers. Build and maintain sandbox/test lab environments to evaluate malicious code. Work within a team environment and will be responsible for coordinating work actions.

Requirements

  • 10+ years of cybersecurity experience
  • 2-5 years of experience performing T3 incident response with an emphasis on system compromise analysis
  • Experience performing security reviews/vulnerability risk assessments of network environments using both manual procedures and automated analysis tools
  • Experience with enterprise security solutions
  • Experience with incident crisis management
  • Experience with performing attack simulation for training security teams
  • Experience with creating procedures and documented plans for security teams
  • Ability to participate in on-call rotation, including at least one weekend a month
  • Must be eligible to work in the US without sponsorship from an employer now or in the future

Responsibilities

  • Daily incident management of customer incidents
  • Incident response and forensic analysis of compromised systems
  • Identify and provide recommendations for remediation
  • Formulate and direct incident response efforts
  • Prioritize incident response efforts
  • Create legible incident reports that describe the compromise vector, attacker methodologies and artifacts
  • Manage complicated global incidents
  • Perform large-scale compromise assessments for customer environments
  • Build incident response plans and playbooks
  • Create attack scenarios for customer tabletop training exercises
  • Create detailed incident reports for customers
  • Effective communication of findings to customers
  • Build and maintain sandbox/test lab environments to evaluate malicious code
  • Work within a team environment and coordinate work actions
© 2026 Teal Labs, Inc
Privacy PolicyTerms of Service