{"schemaVersion":"jobsearcher.job.v1","id":"2e199cbe2875ff7e3bdbe788","url":"https://jobsearcher.com/jobs/2e199cbe2875ff7e3bdbe788","canonicalUrl":"https://jobsearcher.com/jobs/2e199cbe2875ff7e3bdbe788","title":"CSIRT Analyst","description":"Do you have a passion for Cyber Security, especially advanced Managed Detection & Response (MDR)? Does Incident Response, Digital Forensics, Threat Hunting, Threat Intelligence and everything related to Cyber Security feel like second nature to you? Are you a Cyber Defender at heart, driven to strengthen the blue team and help organizations that are under attack? If you answered yes to all of these questions, you might be the perfect fit for our CSIRT Analyst role!\n\nYou handle security alerts/incidents that have been escalated by the SOC Analysts (Tier 2)\n\nYou will handle security alerts and incidents together with your team\n\nYou conduct DFIR assignments, including DFIR readiness assessments\n\nYou participate in the weekly Threat Hunting duty to proactively chase threats through novel Tools, Techniques & Procedures (TTPs)\n\nYou will perform compromise assessments to identify potential compromises and their scope\n\nYou collect Threat Intelligence (IOCs and TTPs)\n\nYou will contribute to Detection Engineering in SIEM, xDR.\n\nTogether with the Red Team you will do Purple Teaming exercises to test and improve defenses\n\nYou contribute to the creation of playbooks in SOAR\n\nYou will co-write processes and procedures related to DFIR, Threat Intelligence, Threat Hunting.\n\nYou will be part of our Incident Response on call service.\n\nWhat you need to succeed:\n\nAt least 3-5 years of experience in a similar position.\n\nSignificant hands‑on experience in disk, memory and log acquisition in a forensically sound manner, parsing and deep forensic analysis of extracted artifacts and professional post‑incident report writing\n\nA bachelor or master degree or equivalent through experience.\n\nA hands‑on and proactive mindset with a 'can do' mentality.\n\nExperience and/or interest in working with the following MDR tools: EDR (CrowdStrike Falcon, MS Defender for Endpoint, Sentinel One, ...), NDR (Vectra, Darktrace, ...), xDR (CrowdStrike Identity Protection, MS Defender for Office/Clouds Apps/Identity/...).\n\nKnowledge of Security Monitoring with SIEM technologies.\n\nA passion about the following security capabilities: Security Monitoring, Digital Forensics, Incident Response, Threat Intelligence, Threat Hunting.\n\nCTG will consider for employment all qualified applicants including those with criminal histories in a manner consistent with the requirements of all applicable local, state, and federal laws.\n\nCTG is an Equal Opportunity Employer. CTG will assure equal opportunity and consideration to all applicants and employees in recruitment, selection, placement, training, benefits, compensation, promotion, transfer, and release of individuals without regard to race, creed, religion, color, national origin, sex, sexual orientation, gender identity and gender expression, age, disability, marital or veteran status, citizenship status, or any other discriminatory factors as required by law. CTG is fully committed to promoting employment opportunities for members of protected classes.\n\n#J-18808-Ljbffr","company":"Computer Task Group","rawCompany":"computer task group","city":"Anchorage","state":"AK","isRemote":false,"isActive":false,"createdAt":"2026-06-20T03:23:31.631Z","occupations":[{"code":"15-1212.00","title":"Information Security Analysts","slug":"information-security-analysts"},{"code":"15-1299.06","title":"Digital Forensics Analysts","slug":"digital-forensics-analysts"},{"code":"15-1299.05","title":"Information Security Engineers","slug":"information-security-engineers"}],"industries":[{"code":"541512","title":"Computer Systems Design Services","slug":"computer-systems-design-services"},{"code":"541519","title":"Other Computer Related Services","slug":"other-computer-related-services"},{"code":"541690","title":"Other Scientific and Technical Consulting Services","slug":"other-scientific-and-technical-consulting-services"}],"jobPosting":{"@context":"https://schema.org","@type":"JobPosting","title":"CSIRT Analyst","description":"Do you have a passion for Cyber Security, especially advanced Managed Detection & Response (MDR)? Does Incident Response, Digital Forensics, Threat Hunting, Threat Intelligence and everything related to Cyber Security feel like second nature to you? Are you a Cyber Defender at heart, driven to strengthen the blue team and help organizations that are under attack? If you answered yes to all of these questions, you might be the perfect fit for our CSIRT Analyst role!\n\nYou handle security alerts/incidents that have been escalated by the SOC Analysts (Tier 2)\n\nYou will handle security alerts and incidents together with your team\n\nYou conduct DFIR assignments, including DFIR readiness assessments\n\nYou participate in the weekly Threat Hunting duty to proactively chase threats through novel Tools, Techniques & Procedures (TTPs)\n\nYou will perform compromise assessments to identify potential compromises and their scope\n\nYou collect Threat Intelligence (IOCs and TTPs)\n\nYou will contribute to Detection Engineering in SIEM, xDR.\n\nTogether with the Red Team you will do Purple Teaming exercises to test and improve defenses\n\nYou contribute to the creation of playbooks in SOAR\n\nYou will co-write processes and procedures related to DFIR, Threat Intelligence, Threat Hunting.\n\nYou will be part of our Incident Response on call service.\n\nWhat you need to succeed:\n\nAt least 3-5 years of experience in a similar position.\n\nSignificant hands‑on experience in disk, memory and log acquisition in a forensically sound manner, parsing and deep forensic analysis of extracted artifacts and professional post‑incident report writing\n\nA bachelor or master degree or equivalent through experience.\n\nA hands‑on and proactive mindset with a 'can do' mentality.\n\nExperience and/or interest in working with the following MDR tools: EDR (CrowdStrike Falcon, MS Defender for Endpoint, Sentinel One, ...), NDR (Vectra, Darktrace, ...), xDR (CrowdStrike Identity Protection, MS Defender for Office/Clouds Apps/Identity/...).\n\nKnowledge of Security Monitoring with SIEM technologies.\n\nA passion about the following security capabilities: Security Monitoring, Digital Forensics, Incident Response, Threat Intelligence, Threat Hunting.\n\nCTG will consider for employment all qualified applicants including those with criminal histories in a manner consistent with the requirements of all applicable local, state, and federal laws.\n\nCTG is an Equal Opportunity Employer. CTG will assure equal opportunity and consideration to all applicants and employees in recruitment, selection, placement, training, benefits, compensation, promotion, transfer, and release of individuals without regard to race, creed, religion, color, national origin, sex, sexual orientation, gender identity and gender expression, age, disability, marital or veteran status, citizenship status, or any other discriminatory factors as required by law. CTG is fully committed to promoting employment opportunities for members of protected classes.\n\n#J-18808-Ljbffr","datePosted":"2026-06-20T03:23:31.631Z","dateModified":"2026-06-20T03:23:31.631Z","hiringOrganization":{"@type":"Organization","name":"Computer Task Group","sameAs":"https://jobsearcher.com"},"jobLocation":{"@type":"Place","address":{"@type":"PostalAddress","addressLocality":"Anchorage","addressRegion":"AK","addressCountry":"US"}},"identifier":{"@type":"PropertyValue","name":"JobSearcher","value":"2e199cbe2875ff7e3bdbe788"},"url":"https://jobsearcher.com/jobs/2e199cbe2875ff7e3bdbe788"}}