Sr. Incident Response Analyst

Overview

On Site
$70 - $80 per hour
Contract - W2

Skills

Sr. Incident Response Analyst

Job Details



Title - Sr. Incident Response Analyst
Location - Rosemont, IL (Hybrid Work Model)

About the Role
We are seeking a highly skilled Senior Incident Response Analyst to join our dynamic Cybersecurity team. In this critical role, you will serve as a frontline defender, leading the response to complex security incidents, analyzing threats, and ensuring the resilience of our systems. You will work closely with cross-functional teams and executive stakeholders to protect the organization's digital assets and reputation.
You will play a key role in detecting, investigating, and responding to threats using tools like IBM QRadar, SentinelOne, Microsoft Defender, and CyberArk, while also leveraging your expertise in network security-including Cisco firewalls, F5 load balancers, and VPN infrastructure.




Key Responsibilities



  • This position is Blue-Team focused.

  • Lead and manage end-to-end incident response efforts, from detection and containment to remediation and reporting.

  • Perform deep-dive forensic investigations using SIEM (QRadar), EDR (SentinelOne), and endpoint protection (Microsoft Defender).

  • Monitor and analyze alerts across network, endpoint, and identity platforms, correlating indicators of compromise (IOCs) and tactics, techniques, and procedures (TTPs).

  • Utilize CyberArk to investigate privileged account activity and enforce least-privilege principles.

  • Analyze and respond to network-based threats using logs and packet captures from firewalls (Cisco), load balancers (F5), and VPN appliances.

  • Work with IT and infrastructure teams to implement mitigations and improve preventive controls.

  • Serve as a point of escalation for junior analysts and mentor them in threat analysis, IR processes, and tool usage.

  • Deliver clear and concise communications to executive leadership during and after incidents, including impact assessments, response actions, and recovery timelines.

  • Collaborate on tabletop exercises and continuously improve incident response playbooks and runbooks.

  • Stay ahead of the curve on emerging threats, vulnerabilities, and best practices in cybersecurity.




Required Qualifications



  • 5+ years of experience in security operations, incident response, or threat detection/analysis.

  • Deep hands-on experience with:

  • SIEM: IBM QRadar (required)

  • EDR/XDR: SentinelOne, Microsoft Defender

  • PAM: CyberArk

  • Network security: VPNs, Cisco ASA/Firepower, F5 load balancers

  • Strong understanding of TCP/IP, IDS/IPS, packet analysis, and attack vectors.

  • Proven experience writing and presenting executive-level incident reports.

  • Excellent verbal and written communication skills, especially in high-pressure situations.

  • Knowledge of MITRE ATT&CK framework and familiarity with common malware families and TTPs.

    Preferred Qualifications

    • Industry certifications such as GCIH, GCFA, CISSP, or CEH.

    • Experience working in highly regulated industries (e.g., finance, healthcare, government).

    • Familiarity with SOAR platforms and automation scripting (Python, PowerShell).




Josh Novekoff


Recruiting Lead


LaSalle Network



LaSalle Network is an Equal Opportunity Employer m/f/d/v.


LaSalle Network is the leading provider of direct hire and temporary staffing services. For over two decades, LaSalle has helped organizations hire faster and connect top talent with opportunities, from entry-level positions to the C-suite. With units specializing in Accounting and Finance, Administrative, Marketing, Technology, Supply chain, Healthcare Revenue Cycle, Call Center, Human Resources and Executive Search. LaSalle offers staffing and recruiting solutions to companies of all sizes and across all industries.


LaSalle Network is the premier staffing and recruiting firm, earning over 100 culture, revenue and industry-based awards from major publications and having its company experts regularly contribute insights on retention strategies, hiring trends and hiring challenges, and more to national news outlets. LaSalle Network offers temporary Field Employees benefit plans including medical, dental and vision coverage. Family Medical Leave, Worker's compensation, Paid Leave and Sick Leave are also provided.


View a full list of our benefits here:


LNPW

Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.