ZipRecruiter

Log In

2

Remote Gcih Jobs (NOW HIRING)

Xtium

Security Manager

OR ยท On-site +1

$100K - $130K/yr

Security+, GCIH, GCIA, CISSP, or similar certification preferred. The salary range for this ... Remote

Hewlett Packard Enterprise Development LP

Principal Advanced Threat Response Analyst This role has been designated as 'Remote/Teleworker ... Advanced SANS certifications such as GCFA, GREM, GCIA, GNFA, GCTI, GSEC, or GCIH. * Offensive ...

Valiant Solutions, LLC

SOC Manager

Washington, DC ยท On-site +1

Remote work requires a high level of trust in our employees, and we strictly adhere to the details ... GCIH, GCFA, or GREM. Equivalent industry incident response certifications, such as CISSP, CISM, or ...

Coalfire

Senior FedRAMP Consultant

Charleston, WV ยท Remote

Offline and remote evidence inspection of client provided documentation; appropriately mark ... CISSP, CISA, CISM, CCSP, CFR, CCISO, GCED, GCIH, GSLC * Deep experience with government compliance ...

Milbank LLP

Cyber Security Specialist

$145K - $185K/yr

Please note this is a remote position. The working hours are: 6am - 2pm Eastern Time, Monday ... GSEC, GCIH, GPEN, GCED, PCNSE or OSCP. Compensation The anticipated base salary range offered for ...

Ascend Learning

Senior Security Engineer

Leawood, KS ยท On-site +1

$111K - $152K/yr

Headquartered in Burlington, MA, with additional office locations and hybrid and remote workers in ... Incident Handler-focused certification (e.g., GCIH or equivalent) required. * 5+ years of ...

Hewlett Packard Enterprise

Principal Advanced Threat Response Analyst This role has been designated as 'Remote/Teleworker ... Advanced SANS certifications such as GCFA, GREM, GCIA, GNFA, GCTI, GSEC, or GCIH. * Offensive ...

SkyePoint Decisions

SOC Analyst IV

Washington, DC ยท Remote

$90K - $120K/yr

This is a remote position. Responsibilities: * Provides Tier III support for SIEM alert triage ... GCIH, GCIA, CEH, Security+. * Experience with SIEM, and endpoint telemetry. * Experience with ...

next page

Showing results 1-20

All JobsRemote Gcih Jobs

Remote Gcih information

What is the difference between Remote Gcih vs Cybersecurity Analyst?

AspectRemote GcihCybersecurity Analyst
CertificationsGCIH (GIAC Certified Incident Handler)Often GCIH or CISSP
Work EnvironmentRemote or on-site cybersecurity teamsRemote or on-site security operations centers
Industry UsageCybersecurity, incident responseCybersecurity, risk management

Remote Gcih professionals focus on incident handling and response, often requiring GCIH certification, while Cybersecurity Analysts may have broader roles in security monitoring and analysis, sometimes holding similar certifications. Both roles are vital in cybersecurity teams, with overlapping skills but different primary focuses.

What is a Remote GCIH?

A Remote GCIH refers to a cybersecurity professional who works remotely and holds the GIAC Certified Incident Handler (GCIH) certification. This certification demonstrates expertise in detecting, responding to, and resolving cybersecurity incidents. Remote GCIH professionals often work for organizations needing incident response and threat management, handling security breaches from any location. Their primary responsibilities include analyzing security events, mitigating attacks, and documenting incident responses to improve an organization's security posture.

What are the key skills and qualifications needed to thrive as a Remote GCIH (GIAC Certified Incident Handler), and why are they important?

To excel as a Remote GCIH, you need a solid understanding of cybersecurity principles, incident response methodologies, and a GIAC Certified Incident Handler (GCIH) certification. Familiarity with security information and event management (SIEM) tools, intrusion detection systems, and forensic analysis software is typically required. Strong analytical thinking, effective written communication, and the ability to remain calm under pressure are critical soft skills. These competencies enable effective detection, response, and mitigation of security incidents, ensuring organizational resilience against cyber threats.

What are some common challenges faced by Remote GCIH professionals and how can they be addressed?

Remote GCIH (GIAC Certified Incident Handler) professionals often face challenges such as coordinating incident response efforts across distributed teams, maintaining effective communication during security events, and managing complex technical environments without on-site access. To address these, it's important to leverage robust collaboration tools, establish clear incident response protocols, and participate in regular virtual tabletop exercises with your team. Building strong relationships with colleagues and staying current with evolving threats can also help remote GCIH professionals respond more effectively and confidently.
More about Remote Gcih jobs
What cities are hiring for Remote Gcih jobs? Cities with the most Remote Gcih job openings:
What are the most commonly searched types of Gcih jobs? The most popular types of Gcih jobs are:
What states have the most Remote Gcih jobs? States with the most job openings for Remote Gcih jobs include:
What job categories do people searching Remote Gcih jobs look for? The top searched job categories for Remote Gcih jobs are:
Remote Gcih jobs near you
Infographic showing various Remote Gcih job openings in the United States as of June 2026, with employment types broken down into 100% Full Time. Highlights an 79% Physical, 14% Hybrid, and 7% Remote job distribution.
Staff Security Engineer (Remote)

Staff Security Engineer (Remote)

Red Cup IT, Inc.

Los Angeles, CA โ€ข Remote

Full-time

Posted 13 days ago

Job description

We are seeking a Staff Security Engineer who operates at the nexus of high-level strategy and multi-tenant operational excellence. While a traditional internal role secures a single enterprise perimeter, you are responsible for the integrated defense fabric of a vast portfolio of diverse client environments.

You will navigate the complexities of varied compliance needs and legacy technical debt, transforming them into a unified, scalable security posture. This is a technical leadership role designed for an expert who prefers the keyboard and the whiteboard over a people-management track, focusing on the "big picture" of our global security product stack.

Core Responsibilities1. Strategic Security Architecture & Product Strategy
  • Scalable Multi-tenancy: Architect and maintain hardened, isolated security stacks (SIEM, EDR, XDR) designed to scale across hundreds of distinct client environments.
  • Product Vetting: Serve as the technical lead for vendor evaluations, "battle-testing" emerging tech to define our global standard offerings.
  • Global Standardization: Engineer "Gold Image" baselines and automated deployment templates based on CIS and NIST frameworks to ensure rapid, secure onboarding.
2. Tier 4 Escalation & Forensic Mastery
  • Final Authority: Serve as the ultimate technical escalation point for the SOC, leading the response to sophisticated APTs and complex breaches.
  • Post-Mortem Leadership: Conduct deep-dive Root Cause Analysis (RCA) and translate incident findings into systemic, fleet-wide preventative measures.
3. Security Engineering & Hyper-Automation
  • Security as Code: Build the automation tissue that connects our stack, utilizing Python, PowerShell, and Terraform to automate threat containment and patch management.
  • Integration Engineering: Develop custom API integrations to bridge gaps between vulnerability scanners, RMM tools, and ticketing systems for seamless auto-remediation.
4. High-Stakes Advisory & Governance
  • Strategic vCISO: Act as a high-level advisor for key accounts, translating abstract risk into actionable business roadmaps for C-suite stakeholders.
  • Compliance Orchestration: Oversee technical evidence collection and governance for HIPAA, SOC 2, and CMMC, ensuring our clients remain audit-ready.
Technical ProfileCategoryCompetenciesCloud & IdentityExpert-level AWS/Azure security; Zero Trust Architecture (ZTA); Advanced IAM/Entra ID.SecOps & IntelligenceAdvanced SOAR/SIEM engineering (Sentinel, Splunk, CrowdStrike); MITRE ATT&CK mapping.Network DefenseDeep-packet inspection; BGP security; SD-WAN; SASE; Micro-segmentation.Automation / IaCProficiency in Python, Terraform, or Ansible for infrastructure-as-code.CertificationsCISSP (Highly Preferred), CISM, CCSP, or specialized GIAC (GCIH/GCFA).Experience & Qualifications
  • 812+ Years in Information Security, with a significant background (3+ years) in multi-client consulting or MSP environments.
  • Force Multiplier: Proven track record of leading cross-functional projects and mentoring senior engineers without direct-report authority.
  • Bilingual Communication: The rare ability to pivot from a deep-dive technical audit with an engineer to a risk-based ROI presentation for a CEO.