Cybereason logo

Incident Response Engineer - Cybereason

View Company Profile
Job Title
Incident Response Engineer
Job Location
United States (Remote)
Job Description


About the Company

Cybereason is on a mission to reverse the adversary advantage by empowering defenders with ingenuity and technology to end cyber attacks. 

We have the technology, and now we are looking to expand our talent! -  Come and talk to us about joining a market leader and a diverse team of passionate people who win as one, ensuring a customer-first approach is core to everything we do and never giving up on reversing the adversary advantage.

The Cybereason Incident Response team is seeking talented and motivated investigators passionate about advancing the industry and elevating the standards of Incident Response through innovation. As an Incident Response Engineer, you will play a pivotal role in amplifying our industry-leading investigative capabilities and delivering a trusted expert experience to clients. This position is tailored for individuals driven to propel the industry forward and set new benchmarks for Incident Response.

What you will do:

  • Conduct log analysis, host forensics, network forensics, and malware triage in support of ongoing Incident Response investigations using Cybereason’s advanced response tooling.
  • Utilize Cybereason’s proprietary IR technology to conduct large-scale investigations across both the EDR and Digital Forensic evidence landscape.
  • Assist with every stage of the Incident Response lifecycle, including scoping, analysis, remediation, reporting, and tactical communications.
  • Contribute technical content such as playbooks, scripts, and automation tooling to enhance IR processes, investigation workflows, and IR infrastructure.
  • Conduct research into forensic artifacts, behavioral analysis, and threat-hunting techniques to enhance detection and investigative capabilities.
  • Create and maintain adversary detection content based on tactics, techniques, and procedures observed during IR investigations.


  • Minimum 4 years of Incident Response or comparable industry experience (threat hunting, threat detection and response, malware analysis, etc)
  • Knowledge and experience of:
    • at least one scripting or development language (such as Python)
    • Investigations of at least one major OS family (Windows, Mac OS, *nix)
  • ...and at least two of the following:
    • Digital forensics (disk and memory collection & analysis)
    • Network Security Monitoring (NSM), network traffic analysis, and log analysis
    • Static and dynamic malware analysis
    • Threat Hunting with EDR
    • Data Science with Jupyter, Pandas, etc
    • Threat Intelligence and adversary tracking

Additional Qualifications:

  • Ability to successfully interface with clients (internal and external)
  • Ability to document and explain technical details in a concise, understandable manner
  • Ability to manage and balance own time among multiple tasks

Why join now?

  • Leading technology in MITRE ATT&CK Evaluations and the Gartner EPP Magic Quadrant.
  • Flexible remote working model.
  • Access to sales tools, people and processes designed to make you successful.
  • New hire stock equity.
  • Diverse and inclusive workplace culture. 

Maximum Salary:$140,000 





More About Cybereason:


Our culture and how we operate reflects in our shared values. Our #Defenders are individuals with diverse skill sets and backgrounds who are driven to innovate and scale with our growing organization. We are a team that strives to learn from each other, solve challenging problems, and work collaboratively toward our goal of reversing the adversary advantage.

Core Values:

  • Win As One: The power of an individual is less than the power of a team.
  • Ever Evolving: Change keeps us at the forefront, so we encourage it.
  • Daring: To achieve the impossible, we must dare to be different.
  • Obsessed with Customers: We believe gaining our customers’ trust is the most important part of what we do.
  • Never Give Up: We are tenacious and resilient, and we never stop.
  • UbU: We believe people can only unlock their full potential when they work somewhere that accepts who they are.

If these values resonate with you and our vision excites you, join us today and help us end cyber attacks from the endpoint to everywhere! #Defenders

Don’t meet every single requirement? Studies have shown that women and people of color are less likely to apply to jobs unless they meet every single qualification. At Cybereason we are dedicated to building a diverse, inclusive, and authentic workplace (#uBu), so if you’re excited about this role but your past experience doesn’t align perfectly with every qualification in the job description, we encourage you to apply anyways. You may be just the right candidate for this or other roles.

Discover job listings, tech companies, startups, investors, job listings, funding rounds, industries, and tech stacks.

Get EmployblBook a demo call


Get periodic emails about startups and the tech job market

Employbl Newsletter is about helping you find jobs and understand the tech job market. Read previous issues.

Cybereason Headquarters Location

Boston, MA

View on map

Cybereason Company Size

Between 500 - 2,000 employees

Cybereason Founded Year


Cybereason Total Amount Raised


Cybereason Funding Rounds

View funding details
  • Series G

    $100,000,000 USD

  • Series F

    $50,000,000 USD

  • Series F

    $275,000,000 USD

  • Series E

    $200,000,000 USD

  • Secondary Market

    $37,000,000 USD

  • Series D

    $100,000,000 USD

  • Series C

    $59,000,000 USD

  • Series B

    $25,000,000 USD

  • Series A

    $4,600,000 USD

Cybereason's Investors

Cybereason's Industries

Cybereason's Tech Stack