Stefanini
Cyber Defense Incident Responder, Senior (L3)
Stefanini, Greensboro, North Carolina, us, 27497
Overview
Cyber Defense Incident Responder, Senior (L3) Onsite in Greensboro, NC. Contract position for 12 months with potential for extension. Schedule: Mondays through Fridays, 2:00 PM to 10:00 PM Eastern; training during the first month: 10:00 AM to 6:00 PM Eastern. Details: Stefanini Group is hiring a Cyber Defense Incident Responder, Senior (Level 3) in Greensboro, NC. For quick apply, contact Krisha Lago at Call: (248) 728 2010 or Email: krisha.lago@stefanini.com. Location: 7900 National Service Road, Greensboro, NC 27409. Job ID 61569. Job Category: Cyber Security Engineer. Position Type: Contract. Remaining Positions: 1. Work Location
7900 National Service Road Greensboro, NC 27409 Job Title:
Cyber Defense Incident Responder, Senior (L3) Responsibilities Analyze and respond to complex security incidents and alerts generated by SOC tools (e.g., SIEM, EDR, IDS/IPS) Investigate and resolve escalated incidents from Level 1 and Level 2 analysts, ensuring swift containment and remediation Lead investigations into cybersecurity incidents, including malware infections, data breaches, and insider threats Perform digital forensics to collect, analyze, and preserve evidence for legal or compliance requirements Provide incident reports with detailed root cause analyses and actionable recommendations Use threat intelligence to identify patterns and indicators of compromise (IOCs) relevant to the organization Work closely with junior analysts to provide guidance, training, and mentorship Collaborate with IT, cybersecurity, and business stakeholder teams to implement and improve security controls Support continuous improvement of SOC processes, tools, and technologies to enhance efficiency and effectiveness Identify gaps in detection and response capabilities and recommend improvements to SOC leadership
Qualifications
Bachelor's degree in Computer Science or a related 4-year technical field Minimum 7 years of experience in supporting cyber defense operations in highly complex enterprise networks (SOC, SIRT, or CSIRT) One or more of the following certifications: GIAC Certified Intrusion Analyst, GCIH, GCIA, CISSP Experience in enterprise cybersecurity environment investigating targeted intrusions through complex network segments Knowledge of APT, Cybercrime, and Hacktivist TTPs Subject Matter Expert in cybersecurity principles and incident management Knowledge of Windows, OS X, Linux; network protocols; and application layer protocols Experience with scripting languages (PowerShell, Python, etc.) Understanding of Cyber Kill Chain, NIST, MITRE ATT&CK, and SANS Critical Security Controls Working knowledge of cryptographic algorithms and security technologies (IDS/IPS, SIEM, EDR, sandboxing, email security, UBAs) Network design knowledge including security architecture Strong analytical and technical skills in incident handling (detection, analysis, triage) Conceptual understanding of cyber threat hunting Experience analyzing cybersecurity events to determine true/false positives; incident response and remediation Experience with SIEM platforms and log aggregation for collection, analysis, correlation, and alerting Ability to develop rules, filters, signatures, and countermeasures for cyber defense platforms Knowledge of emerging cybersecurity technologies Ability to create technical documents and stakeholder briefing materials
Preferred Qualifications
Deep CSOC experience: intelligence-driven detection, threat lifecycle management, incident management, digital forensics, network/endpoint monitoring, OT security CSOC Process Management experience including process/procedure management and continual operational improvement Preferred certifications: CISSP, GCIH, GCIA, Linux+ Ability to communicate technical concepts to business leaders and technical teams Knowledge of cyber defense policies, procedures, and regulations Knowledge of vulnerability management processes Knowledge of common user and system authentication/authorization mechanisms
Salary
Pay Range: $57.00 - $72.50 per hour About Stefanini Group
The Stefanini Group is a global provider of IT outsourcing, consulting, and staffing services to Fortune 1000 enterprises. Our presence spans the Americas, Europe, Africa, and Asia, serving clients across financial services, manufacturing, telecommunications, technology, public sector, and utilities. Stefanini is a CMM Level 5 IT consulting company with a global presence. #LI-KL1 #LI-ONSITE #J-18808-Ljbffr
Cyber Defense Incident Responder, Senior (L3) Onsite in Greensboro, NC. Contract position for 12 months with potential for extension. Schedule: Mondays through Fridays, 2:00 PM to 10:00 PM Eastern; training during the first month: 10:00 AM to 6:00 PM Eastern. Details: Stefanini Group is hiring a Cyber Defense Incident Responder, Senior (Level 3) in Greensboro, NC. For quick apply, contact Krisha Lago at Call: (248) 728 2010 or Email: krisha.lago@stefanini.com. Location: 7900 National Service Road, Greensboro, NC 27409. Job ID 61569. Job Category: Cyber Security Engineer. Position Type: Contract. Remaining Positions: 1. Work Location
7900 National Service Road Greensboro, NC 27409 Job Title:
Cyber Defense Incident Responder, Senior (L3) Responsibilities Analyze and respond to complex security incidents and alerts generated by SOC tools (e.g., SIEM, EDR, IDS/IPS) Investigate and resolve escalated incidents from Level 1 and Level 2 analysts, ensuring swift containment and remediation Lead investigations into cybersecurity incidents, including malware infections, data breaches, and insider threats Perform digital forensics to collect, analyze, and preserve evidence for legal or compliance requirements Provide incident reports with detailed root cause analyses and actionable recommendations Use threat intelligence to identify patterns and indicators of compromise (IOCs) relevant to the organization Work closely with junior analysts to provide guidance, training, and mentorship Collaborate with IT, cybersecurity, and business stakeholder teams to implement and improve security controls Support continuous improvement of SOC processes, tools, and technologies to enhance efficiency and effectiveness Identify gaps in detection and response capabilities and recommend improvements to SOC leadership
Qualifications
Bachelor's degree in Computer Science or a related 4-year technical field Minimum 7 years of experience in supporting cyber defense operations in highly complex enterprise networks (SOC, SIRT, or CSIRT) One or more of the following certifications: GIAC Certified Intrusion Analyst, GCIH, GCIA, CISSP Experience in enterprise cybersecurity environment investigating targeted intrusions through complex network segments Knowledge of APT, Cybercrime, and Hacktivist TTPs Subject Matter Expert in cybersecurity principles and incident management Knowledge of Windows, OS X, Linux; network protocols; and application layer protocols Experience with scripting languages (PowerShell, Python, etc.) Understanding of Cyber Kill Chain, NIST, MITRE ATT&CK, and SANS Critical Security Controls Working knowledge of cryptographic algorithms and security technologies (IDS/IPS, SIEM, EDR, sandboxing, email security, UBAs) Network design knowledge including security architecture Strong analytical and technical skills in incident handling (detection, analysis, triage) Conceptual understanding of cyber threat hunting Experience analyzing cybersecurity events to determine true/false positives; incident response and remediation Experience with SIEM platforms and log aggregation for collection, analysis, correlation, and alerting Ability to develop rules, filters, signatures, and countermeasures for cyber defense platforms Knowledge of emerging cybersecurity technologies Ability to create technical documents and stakeholder briefing materials
Preferred Qualifications
Deep CSOC experience: intelligence-driven detection, threat lifecycle management, incident management, digital forensics, network/endpoint monitoring, OT security CSOC Process Management experience including process/procedure management and continual operational improvement Preferred certifications: CISSP, GCIH, GCIA, Linux+ Ability to communicate technical concepts to business leaders and technical teams Knowledge of cyber defense policies, procedures, and regulations Knowledge of vulnerability management processes Knowledge of common user and system authentication/authorization mechanisms
Salary
Pay Range: $57.00 - $72.50 per hour About Stefanini Group
The Stefanini Group is a global provider of IT outsourcing, consulting, and staffing services to Fortune 1000 enterprises. Our presence spans the Americas, Europe, Africa, and Asia, serving clients across financial services, manufacturing, telecommunications, technology, public sector, and utilities. Stefanini is a CMM Level 5 IT consulting company with a global presence. #LI-KL1 #LI-ONSITE #J-18808-Ljbffr