Incident Response Analyst

hace 4 semanas


San José, Costa Rica Splunk A tiempo completo

Join us as we pursue our vision to make machine data accessible, usable and valuable to everyone. We are a company filled with people who are passionate about our product and seek to deliver the best experience for our customers. At Splunk, we’re committed to our work, customers, having fun, and most importantly to each other’s success. Learn more about Splunk careers and how you can become a part of our journey

**Role**:
The Splunk Threat Response Incident Response Analyst works with the Security Operations Center Shift Lead, aligned with our United States-based shifts. The role is located in Costa Rica. In this role, you will be responsible for supporting our response to cyber security threats. You will also contribute to a variety of supporting security operations projects, including automation, detection creation, threat hunting, and more. You will have a foundational understanding of Information Security and Information Technology principles and disciplines coupled with excellent communications skills and a continuous desire to learn and grow. We are a passionate team who has fun, enjoys a good laugh, but above all else thinks security first.

**Responsibilities**:

- Perform various tasks required to support the 24x7 operation helping to improve documentation, building processes, and enrichment of security events within the Splunk Enterprise Security platform. This is a shift-based 4 days per week, 10-hour shift position.
- Contribute to new and ongoing security projects across automation, threat hunting, and detection creation and tuning
- Improve the quality of searches to enrich data with critical information.
- Gather evidence to support the organization's compliance and control monitoring responsibilities
- Review and update existing runbooks to ensure optimal and efficient response actions
- Assist in the development of new searches to find malicious activity in the Splunk environment
- Validate existing data sources meet data quality standards

**Requirements**:

- Two to five years of experience working in a Security Operations Center or equivalent environment
- Foundational knowledge of security related technologies including firewalls, intrusion detection systems and endpoint security tools
- Foundational knowledge of TCP/IP protocols, network analysis, and the OSI framework
- Foundational knowledge of endpoint and server systems administration
- Foundational knowledge of Cloud technologies
- Foundational proficiency in Python and Go, with additional knowledge of PowerShell and Bash preferred
- Ability to multitask, prioritize and take-charge
- Willingness and desire to think outside of the box for creative solutions to problems with the moxie to follow-through
- Excellent interpersonal skills
- Good attention to detail



  • San Francisco, Heredia, Costa Rica Re:Sources Global A tiempo completo

    Company Description**Job Description**:The Senior Associate, Information Security is part of a global team and is responsible for incident response of cyber security incidents that are associated with our businesses, clients, and vendors; is technically skilled and ensures incident containment, remediation, and closure.This individual will be expected to...


  • San José, Costa Rica DXC Technology A tiempo completo

    The Security Incident Response Control Center (SIRCC) Incident Coordinator position will serve as the in-region coordinator for all DXC cyber security incidents. Each follow-the-sun region will have a coordinator who will function in the incident coordination role in cooperation with the other coordinators in the other regions. Security incidents will be...


  • San José, Costa Rica DXC Technology A tiempo completo

    The Security Incident Response Control Center (SIRCC) Incident Coordinator position will serve as the in-region coordinator for all DXC cyber security incidents. Each follow-the-sun region will have a coordinator who will function in the incident coordination role in cooperation with the other coordinators in the other regions. Security incidents will be...

  • Incident Response Analyst

    hace 3 semanas


    San José, San José, Costa Rica Splunk A tiempo completo

    Join us as we pursue our vision to make machine data accessible, usable and valuable to everyone.We are a company filled with people who are passionate about our product and seek to deliver the best experience for our customers.At Splunk, we're committed to our work, customers, having fun, and most importantly to each other's success.Learn more about Splunk...


  • San Francisco, Heredia, Costa Rica Experian A tiempo completo

    Full-timeEmployee Status: RegularRole Type: HomeDepartment: Legal & ComplianceSchedule: Full TimeShift: Day Shift**Company Description**:Experian is the world's leading global information services company.During life's big moments - from buying a home or a car, to sending a child to college, to growing a business by connecting with new customers - we empower...


  • San José, Costa Rica DXC Technology A tiempo completo

    **Job specifics/responsibilities**: - Receive input from various event sources, investigate it for unusual and potentially malicious behavior that may indicate security incidents, and escalate any suspicious activity or anomalies to the Tier 2 SIRCC Analyst team; - During security incidents, liaise with the Tier 2 SIRCC Analyst and Tier 3 Incident...


  • San José, Costa Rica DXC Technology A tiempo completo

    **Job specifics/responsibilities**: - Receive input from various event sources, investigate it for unusual and potentially malicious behavior that may indicate security incidents, and escalate any suspicious activity or anomalies to the Tier 2 SIRCC Analyst team; - During security incidents, liaise with the Tier 2 SIRCC Analyst and Tier 3 Incident...


  • San José, San José, Costa Rica Crg Solutions A tiempo completo

    Crg Solutions is seeking a Cybersecurity Threat Hunter to join its team. This role is responsible for identifying and mitigating cyber threats through digital forensics investigations and threat hunting.The ideal candidate will have extensive experience in conducting digital forensics investigations, including identifying attack vectors, understanding attack...


  • San Francisco, Heredia, Costa Rica Ibm A tiempo completo

    **Introduction****Your Role and Responsibilities**- Act as a delegate to the IBM Cloud CISO by overseeing cyber incidents in collaboration with IBM CSIRT, Legal, and other various security teams within IBM.- Provide final approvals for the Root Cause Analysis performed post-incident and ensure preventative actions are in place with the responsible parties.-...


  • San José, San José, Costa Rica Syniverse A tiempo completo

    About Us: At Syniverse, we believe connectedness is at the core of our business. We strive to create a diverse, equitable, and inclusive workplace where everyone feels valued and empowered to succeed.Role Summary: The Lead Incident Management Engineer is responsible for leading and coordinating resources, response, and communications during system and/or...


  • San José, San José, Costa Rica Syniverse A tiempo completo

    Syniverse is the world's most connected company.Whether we're developing the technology that enables intelligent cars to safely react to traffic changes or freeing travelers to explore by keeping their devices online wherever they go, we believe in leading the world forward.Which is why we work with some of the world's most recognized brands.Eight of the top...


  • San José, San José, Costa Rica Syniverse A tiempo completo

    Job Summary: Syniverse is seeking an experienced Lead Incident Management Engineer to join our team. This individual will be responsible for leading and coordinating resources, response, and communications during system and/or product outages or service degradations.Key Accountabilities:Leads incident support and crisis management calls to drive timely...


  • San Francisco, Heredia, Costa Rica Experian A tiempo completo

    About ExperianExperian is a global information services company, empowering consumers and clients to manage their data with confidence. We help individuals take financial control, businesses make informed decisions, lenders lend responsibly, and organizations prevent identity fraud and crime.Cyber Security Threat Response Manager RoleThe Cyber Security...


  • San José, San José, Costa Rica Syniverse A tiempo completo

    Company Overview: Syniverse is a global technology company that connects the world. We believe in leading the way forward by developing innovative solutions for our clients.Job Description: As a Lead Incident Management Engineer at Syniverse, you will play a critical role in coordinating resources and responses during system outages or service degradations....


  • San José, San José, Costa Rica Splunk A tiempo completo

    We're shaping the future of digital resilience at Splunk, where innovative technologies empower our customers to thrive. As a seasoned manager, you'll lead our Rapid Response Team in maintaining the highest standards of incident response, system reliability, and operational excellence. Join us in fostering a culture of belonging, where diverse perspectives...


  • San José, San José, Costa Rica Splunk Inc A tiempo completo

    Splunk Global Technical Support: A Leader in Incident ManagementWe're seeking an exceptional individual to fill the role of RRT Manager. This position offers an exciting opportunity to join a dynamic team focused on delivering world-class service to our customers.Job SummaryAs a member of our global technical support team, you'll be responsible for managing...

  • Support Incident Manager

    hace 3 semanas


    San José, San José, Costa Rica Cloud Software Group A tiempo completo

    Key Responsibilities- Incident Management- Lead cross-functional response to high priority, high visibility, complex critical incidents.- Calmly assess situations and command flawless execution of the incident response process to high-profile, high-impact escalations, to drive customer loyalty- Ensure the flow of information by pulling in appropriate...

  • Support Incident Manager

    hace 3 semanas


    San José, Costa Rica Cloud Software Group A tiempo completo

    Key Responsibilities - Incident Management - Lead cross-functional response to high priority, high visibility, complex critical incidents. - Calmly assess situations and command flawless execution of the incident response process to high-profile, high-impact escalations, to drive customer loyalty - Ensure the flow of information by pulling in appropriate...

  • Support Incident Manager

    hace 3 semanas


    San José, Costa Rica Cloud Software Group A tiempo completo

    Key Responsibilities Incident Management - Lead cross-functional response to high priority, high visibility, complex critical incidents. - Calmly assess situations and command flawless execution of the incident response process to high-profile, high-impact escalations, to drive customer loyalty - Ensure the flow of information by pulling in appropriate...


  • San José, San José, Costa Rica Splunk Inc A tiempo completo

    About UsSplunk Inc. is a leader in unified security and observability platforms, dedicated to building a safer and more resilient digital world.We're committed to creating an amazing career destination where our people thrive. Our technology may be cutting-edge, but it's our team members who make us stand out as one of the best places to work.What We DoThe...