1

Detection Response Analyst Jobs (NOW HIRING)

We are seeking a dynamic and proactive Incident Response Analyst (IRA) to join our global ... Key Responsibilities Monitoring & Detection • Continuously monitor for alerts and alarms across ...

We are seeking a dynamic and proactive Incident Response Analyst (IRA) to join our global ... Key Responsibilities Monitoring & Detection Continuously monitor for alerts and alarms across ...

... detect, analyze, mitigate, and respond to cyber threats and adversarial activity on the DHS ... Leidos is seeking a Senior Incident Response Analyst to join our team on this highly visible DHS ...

We are seeking a dynamic and proactive Incident Response Analyst (IRA) to join our global ... Key Responsibilities Monitoring & Detection Continuously monitor for alerts and alarms across ...

We are seeking a dynamic and proactive Incident Response Analyst (IRA) to join our global ... Key Responsibilities Monitoring & Detection • Continuously monitor for alerts and alarms across ...

We are seeking a dynamic and proactive Incident Response Analyst (IRA) to join our global ... Key Responsibilities Monitoring & Detection • Continuously monitor for alerts and alarms across ...

next page

Showing results 1-20

Detection Response Analyst information

How does a Detection Response Analyst typically collaborate with other teams within an organization?

Detection Response Analysts work closely with various departments, including IT, network operations, and incident response teams, to ensure timely identification and mitigation of security threats. Collaboration often involves sharing threat intelligence, participating in incident response drills, and coordinating on investigations to minimize the impact of security incidents. Regular communication with other security professionals helps analysts stay updated on emerging threats and implement best practices across the organization. This teamwork is essential for maintaining a robust and proactive cybersecurity posture.

What are the key skills and qualifications needed to thrive as a Detection Response Analyst, and why are they important?

To thrive as a Detection Response Analyst, you need a solid understanding of cybersecurity principles, threat analysis, and incident response, often supported by a degree in computer science or cybersecurity and relevant certifications like CompTIA Security+ or GIAC. Familiarity with Security Information and Event Management (SIEM) tools, intrusion detection systems (IDS), and scripting languages such as Python or PowerShell is typically required. Analytical thinking, attention to detail, and strong communication skills help analysts effectively investigate threats and coordinate with teams. These skills are essential for timely threat detection, minimizing risks, and safeguarding organizational assets.

What is the difference between Detection Response Analyst vs Security Analyst?

AspectDetection Response AnalystSecurity Analyst
CertificationsCompTIA Security+, GIAC certificationsCompTIA Security+, CISSP, CEH
Work EnvironmentSecurity operations centers, incident response teamsIT departments, security teams, consulting firms
Employer & Industry UsageCybersecurity firms, large enterprises, government agenciesOrganizations across various industries, including finance, healthcare, and tech
Primary FocusDetecting and responding to security incidents in real-timeMonitoring, analyzing, and improving security posture

The Detection Response Analyst primarily focuses on identifying and responding to security threats as they occur, often working within security operations centers. Security Analysts have a broader role in monitoring, analyzing, and enhancing overall security measures across an organization. While both roles require similar certifications and work in cybersecurity environments, Detection Response Analysts are more incident-response oriented, whereas Security Analysts focus on ongoing security management.

What is a Detection Response Analyst?

A Detection Response Analyst is a cybersecurity professional responsible for monitoring, detecting, and responding to security threats within an organization’s IT environment. They analyze security alerts, investigate potential incidents, and coordinate responses to mitigate risks. Their work helps protect sensitive data and maintain the overall security posture of a company. Detection Response Analysts often use various security tools, such as Security Information and Event Management (SIEM) systems, to identify suspicious activities and ensure timely incident resolution.
More about Detection Response Analyst jobs
What cities are hiring for Detection Response Analyst jobs? Cities with the most Detection Response Analyst job openings:
What states have the most Detection Response Analyst jobs? States with the most job openings for Detection Response Analyst jobs include:
Infographic showing various Detection Response Analyst job openings in the United States as of July 2026, with employment types broken down into 1% Locum Tenens, 1% Internship, 86% Full Time, 6% Part Time, 1% Temporary, and 5% Contract. Highlights an 82% Physical, 5% Hybrid, and 13% Remote job distribution.
Incident Response Analyst II

Incident Response Analyst II

Astreya

San Jose, CA • On-site

$72K - $115K/yr

Full-time

Medical, Dental, Vision, Life, Retirement, PTO

Re-posted 19 days ago


Astreya rating

8.1

Company rating: 8.1 out of 10

Based on 6 frontline employees who took The Breakroom Quiz

53rd of 208 rated it services


Job description

We are seeking a dynamic and proactive Incident Response Analyst (IRA) to join our global operations team. This role is critical to maintaining operational integrity across data centers, cloud services, and regional facilities. The ideal candidate will be experienced in realtime monitoring, incident response, and collaborative coordination, with the ability to manage both IT infrastructure incidents and facility/environmental alerts. The IRA must consistently meet strict Service Level Agreement (SLA) timelines to ensure rapid detection, response, and resolution of incidents.
Key Responsibilities Monitoring & Detection
• Continuously monitor for alerts and alarms across:
• IT infrastructure: Server performance issues, network outages, system failures.
• Environmental alerts relevant to operations
• Response to Cloud based alerts/alarms.
• External Facing Services: Incoming emails, including colocation maintenance notices, service requests from CDN partners, and other critical notifications
• Responsible for initial assessment, containment, and mitigation of cloud infrastructure alerts and alarms
• Proven experience managing live infrastructure incidents across OCI/AWS/Azure/GCP within a 24/7 Operations Center.
• Serve as the first responder to all alerts and notifications-perform prompt triage, categorize severity, and initiate appropriate response actions in alignment with defined SLA timeframes.
• Create and manage alarm, incident and change tickets, ensuring documentation quality and strict adherence to SLA timelines.
Incident Response & Coordination
• Serve as the Incident Commander during active incidents, leading incident bridge calls and orchestrating response efforts in collaboration with internal teams, subject matter experts (SMEs), external vendors, and the Global Operations Center (GOC).
• Facilitate global shift handovers, ensuring seamless communication and issue tracking between regions.
• Collaborate closely with data center operators, network engineers, security personnel, and other stakeholders.
• Ensure all incident response activities comply with strict SLA timelines for acknowledgment, escalation, and resolution.
Documentation & Reporting
• Produce accurate and timely incident reports, detailing:
• Executive summary and timeline
• Root cause (actual or potential)
• Business impact and remediation steps
• Draft Post-Incident Reports (PIRs) and assist in scheduling internal post-mortem reviews.
• Maintain up-to-date standard operating procedures (SOPs), runbooks, and incident handling documentation.
• Ensure documentation and reporting tasks are completed within SLA requirements. Operational Support & Process Improvement
• Support regional managers and program owners in maintaining operational excellence and enhancing processes
Basic Qualifications
• 3+ years of experience in a command center, NOC/FOC, or 24x7 operations environment.
• Proven ability to triage multiple concurrent incidents, with strong prioritization based on severity and risk.
• Familiarity with data center layouts, IP networking, servers, and LAN/WAN configurations.
• Experience with facility and environmental monitoring relevant to incident response. Proficiency with IT systems, high keyboard accuracy (minimum 25 WPM), and comfort using ticketing tools and monitoring platforms. •
• Strong communication skills-able to work independently, provide clear updates, and collaborate across global teams.
• Understanding of data protection regulations (e.g., GDPR) and how to manage sensitive information securely.
• Willingness to work on-site, in rotating shifts (including nights, weekends, and holidays) as part of a global support model.
• Demonstrated ability to consistently meet or exceed SLA timelines for incident management and resolution.
Preferred Qualifications
• Strong analytical and problem-solving skills-can perform under pressure and resolve incidents efficiently.
• Exposure to project coordination or process improvement initiatives.
• Relevant certificates in either Cloud, Server or Edge related work
Ability to work weekday or weekend work with possible shift rotation.
Salary Range
$72,960.00 - $115,200.00 USD (Salary)
  • Please note that the salary information provided herein is base pay only (gross); it does not include other forms of compensation which may or may not apply to this specific position, namely, performance-based bonuses, benefits-related payments, or other general incentives - none of which are guaranteed, may be subject to specific eligibility requirements, and are wholly within the discretion of Astreya to remit.
  • Further, the salary information noted above is a range that consists of a minimum and maximum rate of pay for this specific position. Where an applicant or employee is placed on this range will depend and be contingent on objective, documented work-related considerations like education, experience, certifications, licenses, preferred qualifications, among other factors.

Astreya offers comprehensive benefits to all Regular, Full-Time Employees, including:
  • Medical provided through UHC (PPO, HSA, Surest options) / Medical provided through Kaiser (HMO option only) for California employees only
  • Dental provided through UHC
  • Nationwide Vision provided by UHC
  • Flexible Spending Account for Health & Dependent Care
  • Pre-Tax Account for Commuter Benefit/Parking & Transit (location-specific)
  • Continuing Education and Professional Development via various integrated platforms, e.g. Udemy and Coursera
  • Corporate Wellness Program provided by Goomi Group
  • Employee Assistance Program
  • Wellness Days
    401k Plan
  • Basic and Supplemental Life Insurance
  • Short Term & Long Term Disability
  • Critical Illness, Critical Hospital, and Voluntary Accident Insurance
  • Tuition Reimbursement (available 6 months after start date, capped)
  • Paid Time Off (accrued and prorated, maximum of 120 hours annually)
  • Paid Holidays
  • Any other statutory leaves, paid time, or other ancillary benefits required under state and federal law

What Astreya employees say

Pay

Benefits

Hours and flexibility

Workplace

Get the full story on Breakroom