Cyber Incident Response Specialist II investigates, reports, and responds to detected cyber incidents. Maintains system cybersecurity monitoring operations, and performs cyber incident triage to determine scope, urgency, and potential impact of the incident. Being a Cyber Incident Response Specialist II identifies the specific vulnerability and makes recommendations for remediation. Proactively searches for threats using a variety of Computer Network Defense (CND) tools, including intrusion detection system alerts, firewall and network traffic logs, and host system logs. Additionally, Cyber Incident Response Specialist II documents all activities that occurred during the incident using established methodologies and procedures. Conducts a root cause analysis for each incident to define follow-up action items and to make recommendations to stakeholders. Develops and maintains thorough, up-to-date knowledge of cybersecurity threats and incident response best practices. Typically requires a bachelor's degree in computer science. Typically reports to a manager. The Cyber Incident Response Specialist II occasionally directed in several aspects of the work. Gaining exposure to some of the complex tasks within the job function. To be a Cyber Incident Response Specialist II typically requires 2-4 years of related experience.
Find out Job Distribution by:Years of Experience
Education Level
Company Size
Industry