1

Incident Investigation Jobs (NOW HIRING)

Incident Response: Lead and conduct comprehensive host forensics, network forensics, log analysis ... Investigative Skills: Strong investigative background withexpertisein Windows analysis and ...

next page

Showing results 1-20

Incident Investigation information

See salary details

$41K

$127.2K

$199.5K

How much do incident investigation jobs pay per year?

As of Jul 1, 2026, the average yearly pay for incident investigation in the United States is $127,177.00, according to ZipRecruiter salary data. Most workers in this role earn between $89,000.00 and $172,000.00 per year, depending on experience, location, and employer.

What is the highest paid investigator?

The highest paid investigators are often senior-level professionals such as forensic investigators, corporate security investigators, or specialized accident investigators, with salaries reaching over $100,000 annually. Factors influencing pay include experience, certifications, industry, and location, with some roles in high-risk or high-profile fields earning significantly more.

What is incident investigation?

Incident investigation is the process of systematically examining workplace accidents, near-misses, or hazardous events to determine their causes and prevent future occurrences. Investigators gather evidence, interview witnesses, and analyze data to identify root causes rather than just symptoms. The goal is to improve safety protocols, ensure compliance with regulations, and protect employees and assets. Effective incident investigations help organizations learn from mistakes and create a safer work environment.

What is the difference between Incident Investigation vs Safety Technician?

AspectIncident InvestigationSafety Technician
Required credentialsOSHA training, safety certifications, sometimes engineering or technical backgroundOSHA 10/30-hour training, safety certifications, technical knowledge
Work environmentOn-site investigations, accident scenes, industrial settingsInspections, safety audits, training sessions in various workplaces
Employer and industry usageManufacturing, construction, oil & gas, industrial facilitiesManufacturing plants, construction sites, facilities management

Incident Investigators focus on analyzing accidents and determining root causes after incidents occur, often working on-site at accident scenes. Safety Technicians perform inspections, safety audits, and implement safety measures to prevent incidents. Both roles require safety certifications and are vital in maintaining workplace safety, but Incident Investigators primarily analyze past events, while Safety Technicians proactively identify hazards.

What are the key skills and qualifications needed to thrive in Incident Investigation, and why are they important?

To excel in Incident Investigation, you need strong analytical abilities, attention to detail, and a background in safety, engineering, or a related field, often supported by certifications such as Certified Safety Professional (CSP) or Certified Incident Investigator (CII). Familiarity with root cause analysis tools, incident management software, and reporting systems is typically required. Exceptional communication, critical thinking, and problem-solving skills help investigators effectively gather information and convey findings. These competencies are essential to accurately identify causes, prevent future incidents, and ensure workplace safety and compliance.

What are some common challenges faced by professionals in incident investigation roles, and how can they be effectively managed?

Incident investigation professionals often encounter challenges such as gathering accurate information from multiple sources, managing sensitive or confidential data, and working under tight deadlines to resolve issues promptly. To effectively manage these challenges, it's important to establish clear communication protocols, utilize structured investigation methodologies, and foster trust with all stakeholders. Regular training on the latest investigative tools and techniques also helps ensure thorough and unbiased investigations, leading to better outcomes for both the organization and affected individuals.

How much do NTSB investigators make?

NTSB investigators typically earn between $80,000 and $130,000 annually, depending on experience and location. They often hold specialized certifications and work in a federal agency environment with regular hours and safety-focused responsibilities.

What careers are in investigative?

Careers in investigative work include roles such as incident investigator, criminal investigator, forensic investigator, and safety inspector. These jobs typically require strong analytical skills, attention to detail, and often involve working with evidence, reports, and interviews to determine causes of incidents or crimes.

What is the role of an incident investigator?

An incident investigator is responsible for examining workplace accidents or safety incidents to determine their causes and contributing factors. They collect evidence, interview witnesses, analyze data, and prepare reports to recommend corrective actions, often using tools like root cause analysis and safety protocols. Their work helps prevent future incidents and ensures compliance with safety regulations.
More about Incident Investigation jobs
What states have the most Incident Investigation jobs? States with the most job openings for Incident Investigation jobs include:
Infographic showing various Incident Investigation job openings in the United States as of June 2026, with employment types broken down into 84% Full Time, 15% Part Time, and 1% Contract. Highlights an 90% Physical, 2% Hybrid, and 8% Remote job distribution, with an average salary of $127,177 per year, or $61.1 per hour.
Cyber Incident Response & Digital Forensics

Cyber Incident Response & Digital Forensics

Eliassen Group

Manhattan, NY โ€ข On-site

$70 - $90/hr

Other

Medical, Dental, Vision, Life, Retirement

This job post hasย expired 2 days ago.ย Applications are no longer accepted.


Key responsibilities

  • Support a 24x7 cyber operations center through cyber incident investigation, triage, and response activities.

  • Conduct memory, disk, and image forensics during active investigations and triage efforts.

  • Collect, interpret, and communicate technical information from investigative artefacts to executive leadership.


Job description

Description

Hybrid 4+ days onsite in New York, NY

Our client seeks a cybersecurity professional with strong digital forensics and incident response experience to support a 24x7 operations environment. The role will investigate incidents, perform memory, disk, and image forensics, and enhance security tooling and processes. The professional will analyze complex security data, communicate findings to technical and executive stakeholders, and help mature security architecture and standards. This role will influence post-incident improvements and contribute to cybersecurity platform objectives.


Due to client requirements, applicants must be willing and able to work on a w2 basis. For our w2 consultants, we offer a great benefits package that includes Medical, Dental, and Vision benefits, 401k with company matching, and life insurance.


Rate: $70.00 to $90.00/hr. w2


Responsibilities

  • Support a 24x7 cyber operations center through cyber incident investigation, triage, and response activities.
  • Use tools such as Splunk, Microsoft Defender, and CrowdStrike to support incident analysis and response.
  • Collect, interpret, and communicate technical information from investigative artefacts to executive leadership.
  • Conduct memory, disk, and image forensics during active investigations and triage efforts.
  • Communicate clearly with technical and non-technical audiences during incidents and post-incident activities.
  • Provide senior-level consultation for information security infrastructure, including deployment and optimization of tools such as Axiom Forensics, Splunk, Microsoft Defender, and CrowdStrike.
  • Contribute to the development and implementation of security architecture, standards, procedures, and guidelines across multiple platforms.
  • Partner with business and operational infrastructure teams to recommend post-incident security improvements and support implementation.
  • Review and analyze complex security data to provide insights, conclusions, and actionable recommendations.
  • Define, implement, and apply security and continuity of business policies and standards aligned to recognized information security principles.
  • Address high-risk security concerns and incidents, recommend risk mitigation actions, and support the publication of standards.
  • Contribute to broader cybersecurity platform objectives.


Experience Requirements

  • Significant experience in digital forensics, incident response, cybersecurity operations, or a related information security function.
  • Experience supporting or operating within a 24x7 cyber operations center environment.
  • Hands-on experience with Splunk, Microsoft Defender, and CrowdStrike, and other incident response or threat detection platforms.
  • Experience conducting digital forensic investigations, including memory, disk, and image analysis.
  • Ability to collect, interpret, and communicate technical incident information to diverse stakeholder groups.
  • Strong verbal and written communication skills for technical and non-technical audiences.
  • Ability to manage multiple priorities, adapt quickly, and work effectively under pressure.
  • Experience supporting enterprise information security infrastructure and optimizing security tooling.
  • Strong analytical and problem-solving skills with the ability to assess complex data and produce actionable recommendations.
  • Understanding of information security standards, controls, policies, and industry best practices.
  • Experience addressing high-risk security concerns and supporting remediation or mitigation efforts.
  • Splunk certification or equivalent demonstrated expertise (preferred).
  • Experience contributing to security architecture and enterprise security standards in large, complex organizations (preferred).
  • Familiarity with continuity of business principles and related security requirements, NIST, ISO (preferred).
  • Previous enterprise cyber incident response experience in a large financial institution (preferred).

Education Requirements

  • Splunk certification or equivalent demonstrated expertise.

Eliassen Group logo

About Eliassen Group

Sourced by ZipRecruiter

Eliassen Group provides strategic consulting and talent solutions to drive our clients' innovation and business results. Our purpose is to positively impact the lives of our employees, clients, consultants, and the communities in which we operate. Leveraging over 30 years of success, our expertise in talent solutions, life sciences consulting, Agile consulting, cloud services, risk management, business optimization, and managed services enables us to partner with our clients to execute their business strategy and scale effectively. Headquartered in Reading, MA, and with offices from coast to coast, Eliassen Group offers local community presence and deep networks, as well as national reach.

Industry

It services

Company size

5,001 - 10,000 Employees

Headquarters location

Reading, MA, US

Year founded

1989