Incident Response Engineer

  • Full Time
  • Anywhere

Website ProCircular, Inc.

Passionate about cybersecurity, built around people.

Company Overview

ProCircular is about relationships and trust. We provide organizations with practical expertise and guidance to manage risk, improve security readiness, meet regulatory commitments, and continually address the latest cyber threats.

 

People are at the center of our philosophy, and quality is the cornerstone. We build trust by being approachable, realistic, and unbiased. Each client’s unique goals guide our work, and every project produces a tangible result and a clear roadmap. We’re passionate about cybersecurity, serious about quality, and built around people.

 

Position Summary

This Incident Response Engineer position will provide effective incident response, defense support and remediation plans through all phases of the incident response process. This person will work with a team that adapts to individual client’s needs and support them in their moments of crisis. Additionally, this person will assist with developing tools and processes to facilitate the incident response process.

 

Applications must be able to perform each essential job function satisfactorily.  The requirements listed below are representative of knowledge, skill, and/or ability: https://procircular.bamboohr.com/jobs/view.php?id=71&source=aWQ9Ng%3D%3D

 

Essential Job Functions (include but are not limited to the following)

Work with a team to perform forensic investigations, contain security incidents, provide guidance on remediation, and recommend techniques for hardening the client’s network.
Assist with conducting host forensics, network forensics, log analysis, and malware triage in support of incident response investigations to identify Indicators of Compromise (IOCs).
Produce forensic reports and report findings from analysis efforts.
Contribute to tool optimization and automation initiatives to streamline analysis and response workflows.
Follow and update standard operating procedures.
Support the ProCircular SOC and occasionally monitor security tools and provide tier II response to security incidents.
Maintain current knowledge and understanding of the threat landscape, emerging security threats, and vulnerabilities.
Contribute back to the community through blog posts and other public speaking events.
Stay cool under pressure in a fast paced and demanding environment
Live the values of ProCircular and follow the Company handbook.
Flexible on-call as needed to support incident response efforts.
Additional responsibilities as found necessary
Position Requirements

The requirements listed below are representative of the knowledge skills and abilities required. Employees who do not possess the requirements for a job at the time of hire will not be considered for the position. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

 

Required Skills and Experience

1+ years of professional experience in information security areas such as threat hunting, incident response, forensics, security analysis, and/or security engineering.
Experience working with Microsoft Windows and non-Windows system (Mac, Linux, etc.)
Working knowledge of detection tools such as EDR, Network Analytics, SIEM, and Intrusion Detection.

Experience conducting incident response engagements utilizing established industry-standard computer forensic protocols, processes, and chain of custody as required to collect and investigate cyber events, including onsite and remote imaging.
Familiarity in Regex and various scripting languages, especially Python, PowerShell, and Bash.
Background using analysis tools for incident response investigations to determine the extent and scope of compromise on all standard operating system environments.
Capable of completing technical tasks without supervision.
Desire to grow and expand both technical and soft skills.
Effective communication skills and the ability to articulate issues and resolutions concisely.

Desired Skills and Experience

Ability to correlate data from various sources and determine root cause.
Experience with performing anomaly or malware hunts using a common framework and standard methodology
Familiarity with Elastic, Splunk and/or other SIEMs.
Strong understanding of secure network architecture and strong background in performing network operations.
Experience working with mobile devices.
Knowledge and experience in cloud and SaaS environments, AWS, Azure, GCP, and O365.
Desired Education:

Bachelor’s degree in a computer science related field or equivalent experience.
Certifications: E|CIH, IHRP, GCIH, GCFA, GCIA, CHFI or equivalent.
Language Requirements:

The primary language of ProCircular is English. Excellent communication skills are required, defined as the ability to:

Actively listen for total comprehension
Ask questions that enhance the understanding of a certain topic
Relay information and/or instruction in a descriptive and understandable fashion in both written and verbal format

Reasoning Ability Requirements

High-functioning, reasoning abilities are necessary to meet deadlines, prioritize company and customer needs, and work in a high functioning collaborative team environment.

 

Physical Requirements

Occasional lifting up to 50 lbs. may be necessary from time to time. Must be able to sit for long periods of time, view a computer monitor, and type frequently/constantly.

 

Travel Requirements

Valid driver’s license is required for occasional travel and on-site response requirements.

 

Employment Status

Exempt: This role is exempt which means it is excluded from minimum wage, overtime regulations, and other rights and protections afforded nonexempt employees.

 

Schedule Expectations

Our normal hours of operation are from Monday through Friday, from 8:00 am to 5:00 pm.

 

Full-Time

Full-Time employees are defined legally as working at least 30 hours per week, however; full time positions at ProCircular require at least 40 hours.  Occasionally, working over 40 hours in a given week may be necessary in order to meet the requirements of the position. As long as performance expectations are met, employees may flex his or her schedule, subject to preapproval of one’s direct supervisor.

 

Supervision Requirements

This position has no direct supervisory responsibilities.

 

Performance Expectations

All teammates are evaluated at least annually on their performance based on the essential job functions in this job description, along with ProCircular’s Core Values:

 

It’s about people

People define every part of our business. Growth potential is based on the abilities and personalities of the people involved. Technology solutions are a part of the equation, but it’s the people in an organization that define its true security. We work hardest when we’re supporting one another. We take care of each other; we take care of our families, and in doing so we take better care of our customers.

Fear is the mind killer

We don’t let fear define the need for our services and we don’t present a problem without discussing realistic response or mitigation options. There’s more than enough to worry about in life and plenty of people telling us to be afraid. We’re solutions people, not fear mongers.
Strong opinions lightly held

Opinions are important—they coalesce facts, reason, experience, and judgment into actionable points of view. We present our opinions with logic and reason rather than emotions, offering several alternatives to each challenge and the supporting data. The rejection of an idea is not a rejection of the individual or their merit. Everyone has a voice and a chance to speak, regardless of title, station or seniority.
Quality over speed, speed over cost

Every organization must consciously balance quality, speed, and cost. We will always put the quality of our work first. We make great efforts to move quickly, but never at the expense of quality. While we strive to keep our services affordable, we never choose an inexpensive alternative that will adversely impact quality or speed.
Cool heads, warm hearts

We keep a cool head and help others do the same, especially in a crisis. We approach adversity with patience, logic, and understanding. Mistakes happen; we don’t hide, ignore, condemn, or fear them. Mistakes are opportunities to exemplify honesty, accountability, professionalism, tolerance, and grace. Instead of pointing a finger, we use humor, empathy, and fun when it matters most.

R-E-S-P-E-C-T

We treat each other how we hope to be treated. We don’t yell; we aren’t condescending, and we always try to understand the other person’s perspective, before reacting to it. We keep it light and we listen. We extend this principle to our customers, and we understand that talking down to them is the easiest way to send them to a competitor.

Tomorrow just happened

Life is what happens when we’re busy making other plans. We work hard on today but we’re always thinking about the future. We take extra time to make sure we’re learning and looking ahead. No matter what your discipline or area of expertise, you’re adding your capabilities to the long-term plan for the organization and its clients.

To apply for this job please visit procircular.bamboohr.com.

Interest Form

Join A TAI Roundtable

Please fill out this form to indicate your interest in joining one of Technology Association of Iowa’s Roundtables.

Participation in the CIO, CISO or CEO Roundtables is exclusively reserved for technology executives of TAI member organizations with these (or comparable) job titles. All other TAI Roundtables is exclusively reserved for individuals employed by TAI member organizations. Not a member? Join now.

  • This field is for validation purposes and should be left unchanged.