Incident Response Analyst

Packsize

About The Position

The Incident Response Analyst is responsible for monitoring, detecting, analyzing, and responding to cybersecurity incidents affecting Packsize’s information systems and assets. In this role, you will play a critical part in the organization’s security operations by quickly investigating security alerts, mitigating threats, and performing root cause analysis to prevent future incidents. You will collaborate with cross-functional teams to ensure incidents are handled with urgency, professionalism, and adherence to established security protocols, all while maintaining clear and effective communication with stakeholders.

Requirements

Experience in cybersecurity, security operations, or IT incident management.
Familiarity with security monitoring tools (SIEM, IDS/IPS, EDR, etc.) and incident response processes.
Strong analytical and problem-solving skills with keen attention to detail.
Demonstrated ability to work effectively under pressure and prioritize multiple incidents simultaneously.
Excellent written and verbal communication skills, with the ability to clearly document and convey incident details to both technical and non-technical audiences.
Ability to collaborate with cross-functional teams and external partners in high-stress situations.
Self-motivated, organized, and adaptable to fast-paced, dynamic environments.

Nice To Haves

Knowledge of root cause analysis and digital forensics is a plus.
Relevant security certifications (such as Security+, GCIH, GCIA, or CEH) are preferred.

Responsibilities

Monitor security alerts and events, promptly investigate and analyze potential security incidents across IT infrastructure, applications, and endpoints.
Respond to cybersecurity incidents from identification through containment, eradication, and recovery, escalating as necessary to minimize business impact.
Conduct thorough root cause analysis for incidents and document findings in detailed incident reports.
Maintain accurate records of incidents, steps taken, and outcomes in the incident management system.
Communicate incident status, impact, and resolution steps to internal stakeholders in a clear and meaningful manner.
Coordinate with IT, technical support, and third-party vendors as needed for incident investigation and resolution.
Participate in post-incident reviews and contribute to lessons learned to strengthen the organization’s security posture.
Support proactive threat hunting and vulnerability identification to help prevent future incidents.
Regularly review security logs, events, and alerts to detect patterns or emerging threats.
Assist with the development and maintenance of incident response procedures, playbooks, and training materials.
Stay current with cybersecurity trends, threats, and best practices to continuously improve incident response capabilities.