ZipRecruiter

Log In

1

Detection Response Analyst Jobs (NOW HIRING)

Allstate

OR · On-site

$100K - $160K/yr

The Level 3 Incident Response Analyst role is designed for someone who thrives in complex ... You will play a key role in shaping detection strategies, identifying root causes, and translating ...

DataAnnotation

Incident Response Analyst

Washington, DC · Remote

$40/hr

... response, detection engineering, DFIR, malware analysis, threat intelligence, or similar) Some coding experience required Fluency in English (native or bilingual level) Strong writing and analytical ...

DataAnnotation

Incident Response Analyst

Denver, CO · Remote

$40/hr

... response, detection engineering, DFIR, malware analysis, threat intelligence, or similar) Some coding experience required Fluency in English (native or bilingual level) Strong writing and analytical ...

DataAnnotation

Incident Response Analyst

Wausau, WI · Remote

$40/hr

... response, detection engineering, DFIR, malware analysis, threat intelligence, or similar) Some coding experience required Fluency in English (native or bilingual level) Strong writing and analytical ...

DataAnnotation

Incident Response Analyst

Santa Fe, NM · Remote

$40/hr

... response, detection engineering, DFIR, malware analysis, threat intelligence, or similar) Some coding experience required Fluency in English (native or bilingual level) Strong writing and analytical ...

DataAnnotation

Incident Response Analyst

Virginia, MN · Remote

$40/hr

... response, detection engineering, DFIR, malware analysis, threat intelligence, or similar) Some coding experience required Fluency in English (native or bilingual level) Strong writing and analytical ...

DataAnnotation

Incident Response Analyst

Florida, NY · Remote

$40/hr

... response, detection engineering, DFIR, malware analysis, threat intelligence, or similar) Some coding experience required Fluency in English (native or bilingual level) Strong writing and analytical ...

DataAnnotation

Incident Response Analyst

Sioux Falls, SD · Remote

$40/hr

... response, detection engineering, DFIR, malware analysis, threat intelligence, or similar) Some coding experience required Fluency in English (native or bilingual level) Strong writing and analytical ...

Allstate

Level 3 Incident Response Analyst

$100K - $160K/yr

The Level 3 Incident Response Analyst role is designed for someone who thrives in complex ... You will play a key role in shaping detection strategies, identifying root causes, and translating ...

DataAnnotation

Incident Response Analyst

Oregon, WI · Remote

$40/hr

... response, detection engineering, DFIR, malware analysis, threat intelligence, or similar) Some coding experience required Fluency in English (native or bilingual level) Strong writing and analytical ...

Ramp

Detection & Response, Lead

New York, NY · Remote

$160.40K - $283K/yr

About the Role Join our growing security team and help drive security detection and response ... Utilize log ingestion platform for security analytics and identification of tactics, techniques and ...

Astreya

Incident Response Analyst II

San Jose, CA · On-site

... quick detection and incident response using various monitoring and automation tools, conducting ... IRC analysts are expected to respond to all alarms/alerts set in the data center environment ...

next page

Showing results 1-20

People also search for

All JobsDetection Response Analyst Jobs

Detection Response Analyst information

What are the key skills and qualifications needed to thrive as a Detection Response Analyst, and why are they important?

To thrive as a Detection Response Analyst, you need a solid understanding of cybersecurity principles, threat analysis, and incident response, often supported by a degree in computer science or cybersecurity and relevant certifications like CompTIA Security+ or GIAC. Familiarity with Security Information and Event Management (SIEM) tools, intrusion detection systems (IDS), and scripting languages such as Python or PowerShell is typically required. Analytical thinking, attention to detail, and strong communication skills help analysts effectively investigate threats and coordinate with teams. These skills are essential for timely threat detection, minimizing risks, and safeguarding organizational assets.

How does a Detection Response Analyst typically collaborate with other teams within an organization?

Detection Response Analysts work closely with various departments, including IT, network operations, and incident response teams, to ensure timely identification and mitigation of security threats. Collaboration often involves sharing threat intelligence, participating in incident response drills, and coordinating on investigations to minimize the impact of security incidents. Regular communication with other security professionals helps analysts stay updated on emerging threats and implement best practices across the organization. This teamwork is essential for maintaining a robust and proactive cybersecurity posture.

What is a Detection Response Analyst?

A Detection Response Analyst is a cybersecurity professional responsible for monitoring, detecting, and responding to security threats within an organization’s IT environment. They analyze security alerts, investigate potential incidents, and coordinate responses to mitigate risks. Their work helps protect sensitive data and maintain the overall security posture of a company. Detection Response Analysts often use various security tools, such as Security Information and Event Management (SIEM) systems, to identify suspicious activities and ensure timely incident resolution.

What is the difference between Detection Response Analyst vs Security Analyst?

AspectDetection Response AnalystSecurity Analyst
CertificationsCompTIA Security+, GIAC certificationsCompTIA Security+, CISSP, CEH
Work EnvironmentSecurity operations centers, incident response teamsIT departments, security teams, consulting firms
Employer & Industry UsageCybersecurity firms, large enterprises, government agenciesOrganizations across various industries, including finance, healthcare, and tech
Primary FocusDetecting and responding to security incidents in real-timeMonitoring, analyzing, and improving security posture

The Detection Response Analyst primarily focuses on identifying and responding to security threats as they occur, often working within security operations centers. Security Analysts have a broader role in monitoring, analyzing, and enhancing overall security measures across an organization. While both roles require similar certifications and work in cybersecurity environments, Detection Response Analysts are more incident-response oriented, whereas Security Analysts focus on ongoing security management.

More about Detection Response Analyst jobs
What cities are hiring for Detection Response Analyst jobs? Cities with the most Detection Response Analyst job openings:
What states have the most Detection Response Analyst jobs? States with the most job openings for Detection Response Analyst jobs include:
What job categories do people searching Detection Response Analyst jobs look for? The top searched job categories for Detection Response Analyst jobs are:
Detection Response Analyst jobs near you
Infographic showing various Detection Response Analyst job openings in the United States as of May 2026, with employment types broken down into 4% As Needed, 75% Full Time, 15% Part Time, and 6% Contract. Highlights an 79% Physical, 1% Hybrid, and 20% Remote job distribution.
Sr. Incident Response Analyst

Sr. Incident Response Analyst

Sony Pictures Entertainment

Culver City, CA • On-site

$120.80K - $151K/yr

Full-time

Posted 21 days ago

Sony Pictures Entertainment rating

6.8

Company rating: 6.8 out of 10

Based on 6 frontline employees who took The Breakroom Quiz

3rd of 6 rated film or creative companies

Job description

This role provides leadership and expertise in advanced cyber incident response, forensic investigations, and security operations automation. The position is responsible for investigating and coordinating responses to cybersecurity incidents, including malware infections, data exfiltration, denial-of-service attacks, insider threats, and other security breaches.
The role works closely with the Security Operations Center (SOC) to triage, investigate, and respond to security alerts, leveraging automation and orchestration to improve response speed and consistency. This individual collaborates with cross-functional teams across IT, network engineering, vulnerability management, and threat intelligence to identify root causes, implement remediation actions, and strengthen the organization's overall security posture.
Additionally, the role supports the development and continuous improvement of incident response processes, detection capabilities, and SOAR playbooks to enhance operational efficiency and reduce response times.
Responsibilities
  • Develop, maintain, and improve enterprise incident response plans, procedures, and playbooks aligned with industry frameworks (NIST, MITRE ATT&CK, etc.).
  • Lead and coordinate investigation and response activities for cybersecurity incidents including malware, phishing, ransomware, insider threats, and data breaches.
  • Work closely with the SOC to triage and investigate alerts, determine incident severity, and drive appropriate response actions.
  • Design, develop, and maintain SOAR playbooks and automation workflows to streamline security operations and improve incident response efficiency.
  • Conduct in-depth forensic investigations across endpoints, networks, cloud environments, and logs to determine root cause, scope, and impact of incidents.
  • Partner with threat intelligence teams to incorporate indicators of compromise (IOCs), threat actor tactics, techniques, and procedures (TTPs), and emerging threats into detection and response workflows.
  • Collaborate with engineering, infrastructure, and application teams to implement remediation strategies and preventive controls to reduce future risk.
  • Support detection engineering efforts by identifying gaps in security monitoring and helping develop improved alerting and detection capabilities.
  • Assist with containment, eradication, and recovery activities following security incidents, ensuring systems and services are restored securely.
  • Lead post-incident reviews and root cause analysis to identify lessons learned and drive improvements to detection, response processes, and security architecture.
  • Produce clear incident reports and executive summaries for leadership and stakeholders, including recommended improvements.
  • Act as a primary point of coordination with internal stakeholders, third-party partners, legal teams, and external agencies when required.
  • Monitor emerging threats, vulnerabilities, and attacker techniques to proactively improve detection and response capabilities.
  • Partner with vulnerability management and security engineering teams to proactively address security gaps identified during investigations.
  • Continuously improve SOC and incident response operations through metrics, automation, and operational maturity initiatives.

Qualifications/ preferred skills
  • Experience with SIEM platforms (Splunk, Sentinel, QRadar, etc.)
  • Experience with SOAR platforms (XSOAR, Tines, Swimlane, etc.)
  • Endpoint detection and response (EDR/XDR) technologies
  • Digital forensics and incident response (DFIR) methodologies
  • MITRE ATT&CK framework familiarity
  • Threat hunting and detection engineering experience
  • Scripting or automation experience (Python, PowerShell, APIs)

The anticipated base salary for this position is $120,800-$151,000. This role may also qualify for annual incentive and/or comprehensive benefits. The actual base salary offered will depend on a variety of factors, including without limitation, the qualifications of the individual applicant for the position, years of relevant experience, level of education attained, certifications or other professional licenses held, and if applicable, the location of the position.
Sony Pictures Entertainment is an equal opportunity employer. We evaluate qualified applicants without regard to race, color, religion, sex, national origin, disability, veteran status, age, sexual orientation, gender identity, or other protected characteristics.
SPE will consider qualified applicants with arrest or conviction records in accordance with applicable law.
Sony Pictures does not allow audio recording, video recording or use of AI note-taking tools during interviews. Please be aware these tools may be enabled as a default and can be difficult to disable once the interview has started, so we recommend you check your device and disable these tools prior to the start of your interview. If recording or the use of the tools occurs during the interview and cannot be promptly turned off or disabled, the interviewer may end the interview.
To request an accommodation for purposes of participating in the hiring process, you may contact us at SPE_Accommodation_Assistance@spe.sony.com.

Apply