ZipRecruiter

Log In

1

Mdr Analyst Jobs (NOW HIRING)

ASMGi

Cyber Incident Response Analyst

Cleveland, OH

Work with ASMGi MDR / MSOC plus Service clients as part of the overall service and specifically the ... Analyze, track and triage anomalies that have been escalated to ensure appropriate identification ...

Barracuda Networks Inc.

Envision yourself at Barracuda The Director of MDR will lead the SOC and Expert Led team, overseeing a global organization across AMER, EMEA, and APAC that consists of cyber security analysts ...

Koniag, Inc.

Declassification Analyst

Washington, DC · On-site

$90K - $110K/yr

MDR Intake & Triage: * Log requests; verify scope, custodians, and records series; assign tracking ... Coach junior analysts; deliver quick-reference guides; assist with onboarding and knowledge ...

kgs

Declassification Analyst

Washington, DC

MDR Intake & Triage: * Log requests; verify scope, custodians, and records series; assign tracking ... Coach junior analysts; deliver quickreference guides; assist with onboarding and knowledge transfer.

kgs

Declassification Analyst

Washington, DC

MDR Intake & Triage: * Log requests; verify scope, custodians, and records series; assign tracking ... Coach junior analysts; deliver quickreference guides; assist with onboarding and knowledge transfer.

Arctic Wolf

Product Marketing Manager - MDR

$157K/yr

Bring your writing and analytics prowess, you deliver compelling content to empower marketing and ... Direct Experience with Managed Detection and Response (MDR) solutions * Bachelor's degree in ...

next page

Showing results 1-20

People also search for

All JobsMdr Analyst Jobs

Mdr Analyst information

See salary details

$39K

$68.7K

$97.5K

How much do mdr analyst jobs pay per year?

As of Jun 7, 2026, the average yearly pay for mdr analyst in the United States is $68,656.00, according to ZipRecruiter salary data. Most workers in this role earn between $66,000.00 and $69,000.00 per year, depending on experience, location, and employer.

What is the difference between Mdr Analyst vs Security Analyst?

AspectMdr AnalystSecurity Analyst
CredentialsCertifications like CompTIA Security+, CEH, CISSP (preferred)Certifications like CompTIA Security+, CISSP, GIAC Security Certifications
Work EnvironmentManaged Security Service Providers (MSSPs), cybersecurity firmsCorporate IT departments, security teams in various industries
ResponsibilitiesMonitoring security alerts, managing MDR tools, incident responseAnalyzing security threats, implementing security measures, incident investigation

Both roles focus on cybersecurity, but Mdr Analysts primarily work with managed detection and response services, while Security Analysts handle broader security strategies within organizations. The roles often overlap in skills and certifications, making them closely related but distinct in their operational focus.

What is an MDR Analyst?

An MDR Analyst, or Managed Detection and Response Analyst, is a cybersecurity professional responsible for monitoring, detecting, analyzing, and responding to security threats within an organization's network. They work as part of a security operations team, often in a managed service environment, to identify suspicious activities, investigate incidents, and provide recommendations to mitigate potential threats. MDR Analysts leverage advanced security tools, threat intelligence, and incident response protocols to protect organizational assets and minimize the impact of cyberattacks.

What are the key skills and qualifications needed to thrive as an MDR Analyst, and why are they important?

To thrive as an MDR (Managed Detection and Response) Analyst, you need a solid understanding of cybersecurity principles, incident response, threat detection, and relevant IT infrastructure, often supported by a degree in cybersecurity, computer science, or related certifications like CompTIA Security+ or CISSP. Familiarity with security information and event management (SIEM) tools, endpoint detection and response (EDR) platforms, and ticketing systems is typically required. Strong analytical thinking, attention to detail, and effective communication skills help MDR Analysts investigate incidents and coordinate with stakeholders. These skills are crucial to quickly identify, assess, and mitigate security threats, minimizing risk and ensuring organizational resilience.

What are some common challenges faced by MDR Analysts when investigating security incidents?

MDR Analysts often face challenges such as managing high alert volumes, distinguishing between false positives and genuine threats, and staying current with rapidly evolving attack techniques. The role requires quick decision-making and effective communication with clients or internal teams to coordinate responses. Analysts must balance investigative thoroughness with the need for timely action, often working under pressure during critical incidents.
More about Mdr Analyst jobs
What cities are hiring for Mdr Analyst jobs? Cities with the most Mdr Analyst job openings:
What states have the most Mdr Analyst jobs? States with the most job openings for Mdr Analyst jobs include:
What job categories do people searching Mdr Analyst jobs look for? The top searched job categories for Mdr Analyst jobs are:
Mdr Analyst jobs near you
Infographic showing various Mdr Analyst job openings in the United States as of May 2026, with employment types broken down into 100% Full Time. Highlights an 82% Physical, 5% Hybrid, and 13% Remote job distribution, with an average salary of $68,656 per year, or $33 per hour.
Cyber Incident Response Analyst

Cyber Incident Response Analyst

ASMGi

Cleveland, OH

Full-time

Posted 27 days ago

Job description

ASMGi - Cyber Incident Response Analyst
General Summary:
As a key member of ASMGi’s Information Security Incident Response Team this individual will be responsible for various parts of the incident response process - detection, validation, containment, remediation, and communication - for IT based security events and incidents impacting ASMGi’s clients.
This individual will be responsible for the rapid response and resolution of security incidents including the ASMGi MDR / MSOC plus client’s environments. This will involve coordinating with teams including Legal, Security Operations and Forensics experts, internal or external, to identify root cause, restore services and communicate status to affected stakeholders.
This role will act as the escalation path for the ASMGi Operations Team to validate findings and identify scope of events and support during larger investigations. This individual will act as an internal and client facing resource while interacting with the third-party Security Operations Center as applicable.
Principal Accountabilities:
25% - Client Incident Response Onboarding and Program Development.
  • Work with ASMGi MDR / MSOC plus Service clients as part of the overall service and specifically the Incident Response Program Development including Incident Response Policy, Incident Response Plan, and Incident Response Playbook development and adoption.
  • Conduct client Tabletop Exercises on an annual basis based on the adopted Incident Response Playbook as part of the ASMGi MDR / MSOC plus Incident Response Service.
50% - Incident Response
  • Perform Level 2 and Level 3 computer security incident response activities including coordinating with the Security Operations Center and Forensics experts, internal and external.
  • Analyze, track and triage anomalies that have been escalated to ensure appropriate identification of risk to ASMGi MDR / MSOC plus clients.
  • Oversee the forensic analysis of cybersecurity incidents impacting ASMGi MDR / MSOC plus clients.
  • Understand and research emerging threats and current trends that may impact customers along with mitigation/resolutions for such threats.
  • Communicate and coordinate response efforts including working with ASMGi MDR / MSOC plus client’s I.T., Business Leaders, and Third Parties to mitigate the impact of the risk and provide a lead role as part of the ASMGi Computer Security Incident Response Team (CSIRT).
  • Prepare incident reports of analysis and methodology and results of investigation to be submitted to ASMGi MDR / MSOC plus clients.
25% - Assist with Incident Management Strategy Development, Consulting and Management of Third-Party Security Operations Center.
  • Leverage lessons learned, threat modeling and emerging industry better practice, to analyze the effectiveness of the existing program (policies, technology, and awareness) to continuously improve the Incident Management Program.
  • Review industry frameworks, emerging threats, and best practice to advance the ASMGi MDR / MSOC plus Service.
  • Partner with ASMGi partners and internal groups to improve the ASMGi MDR / MSOC plus service and capabilities.
  • Assist with management of third-party business relationships for the security operations center and service levels. Identify potential gaps including procedures needed to mitigate risk and assist with appropriate solutions.
Job Complexity
  • Appropriately balances security risk and business impact to ensure that ASMGi’s use of detection/response controls are effective.
  • Ability to build operational processes using industry best-practice that are tailored to the ASMGi MDR / MSOC plus client’s organization, system, and processes.
  • Ability to effectively communicate risk including corrective action plans/recommendations to non-technical audiences including the ASMGi MDR / MSOC plus client’s Executives and the Board of Directors leveraging the MDR / MSOC plus service.
  • Ability to create effective reports and presentations tailored to different audiences to ensure transparency and understanding of the ASMGi MDR / MSOC plus Service.
  • Assist with development of MDR / MSOC plus Service roadmap.
Job Specifications
Minimum education required: Bachelor's Degree Required
Education desired: Bachelor of Science
Years of relevant experience: 7 – 10 +
Knowledge, skills, and abilities required:
  • High level of technical expertise in information security, including deep familiarity with relevant penetration and intrusion techniques and attack vectors.
  • Cybersecurity in large complex companies including knowledge of security and privacy breach laws and regulatory reporting.
  • Proven experience working with Security Operations Center services, forensics firms.
  • Demonstrated ability to lead and develop cohesive and collaborative management and operational teams internally and with a third-party.
  • Proven experience implementing policies, procedures, and technology to detect and recover from a cybersecurity attack.
  • Ability to demonstrate strong computer knowledge networks, desktops, servers, cloud, and software as a service technology.
  • Expertise with next generation firewalls, Endpoint Detection and Response, Microsoft Advanced Threat Protection, Azure, and Office 365, Zero Day Threat Detection Technology, Threat Intelligence Feeds, Forensics, Data Loss Prevention Software, Web Proxies, Web Application Firewalls.
  • Strong problem-solving and trouble-shooting skills.
  • Strong communication skills including writing reports and presenting to senior executives.
  • Demonstrated connections to external Incident Response leaders and learning organizations.
Working Conditions
  • Normal corporate office environment and remote / virtual based on COVID-19.
  • On call work is required.

Apply