"Alerted.org

2nd shift: 4:45/5:45pm - 12:45 am

1. Sr. Level Incident Response Analyst , with 7+ years working within an ENTERPRISE Security Operations Team (including Cloud SecOps)

2. Extensive IR and Security Analyst experience responding to ransomware, malware, phishing incidents, etc.

- Understand how to differentiate false positives

-Experience with Cloud Security Operations and SOAR

3. Experience proactively finding adversary activities through log analysis, network traffic analysts and utilizing the MITRE attack framework

Tool Stack: (preferred but not needed) Splunk, Crowdstrike and Proof Point

Description

Individual contributor for second shift focused on proactively finding adversary activities in the network with the goal of discovery before they complete their mission. The ideal candidate would have skills and experience in log analysis, network traffic analysis, and MITRE attack framework.

Part of the global IT security team working closely with the US SOCs teams.

Performs a combination of duties in accordance with departmental guidelines.

Conduct real-time and historical analysis using the full security suite owned by CNA including Endpoint Protection, SIEM, Firewall, Endpoint Detection & Response, Intrusion Detection Systems, Email Gateway, Web Content Filtering, Network Detection & Response, & Identity Management technology.

Conduct incident response triage analysis on suspected hosts to determine potential ongoing attacks and its scope.

Conduct analysis review of junior staff for quality control; mentor junior staff to encourage career growth and development.

Stay on top of latest attacker tactics, techniques and procedure to discover sophisticated threats in the network.

Collaborate with SOC, Intelligence, Incident Response and Enterprise Security Teams for incident investigations and hunt missions when possible.

Identify visibility gaps in the network and recommend solutions.

Develop, maintain and update playbooks, process, and detection capabilities based on real-time feedback from investigations.

Coordinate escalation for advance forensics, malware reverse-engineering, and additional host review tasks to third party vendors.

Articulate security incident details to business stakeholders and non-technical individuals.

May perform additional duties as assigned

Skills:

Familiarity with SOC operations, scheduling, and tools including SIEM, SOAR, and DFIR products.

Knowledge of the incident response lifecycle and cyber security leading practices.

Solid understanding of security policy construction and publication.

In-depth knowledge of regulations (i.e., SOX, privacy, etc.) and internal controls as they apply to IT.

Ability to influence change in corporate understanding and adoption of information security concepts.

Proven solid analytical and problem solving skills.

Excellent communications and interpersonal skills and the ability to work effectively with peers, IT management and staff, and internal/external business partners/clients.

Ability to manage various technical projects to completion.

Advanced computer skills including Microsoft Office suite and other business related software systems. Other technologies will apply dependent on business area supported.

Preferred insurance industry knowledge.

Skills

Security, incident response, MITRE

Additional Skills & Qualifications

Education: Typically a minimum of five years of technical experience in the security aspects of multiple platforms, operating systems, software, communications and network protocols or an equivalent combination.

Industry certifications preferred (CISSP, GCFA, GCIH, GCFE, or equivalent) or related discipline, or equivalent experience in Computer Science.

Experience Level

Mid Level

Job Type & Location

This is a Contract position based out of Chicago, IL.

Pay and Benefits

The pay range for this position is $65.00 - $65.00/hr.

Eligibility requirements apply to some benefits and may depend on your job classification and length of employment. Benefits are subject to change and may be subject to specific elections, plan, or program terms. If eligible, the benefits available for this temporary role may include the following:

• Medical, dental & vision • Critical Illness, Accident, and Hospital • 401(k) Retirement Plan – Pre-tax and Roth post-tax contributions available • Life Insurance (Voluntary Life & AD&D for the employee and dependents) • Short and long-term disability • Health Spending Account (HSA) • Transportation benefits • Employee Assistance Program • Time Off/Leave (PTO, Vacation or Sick Leave)

Workplace Type

This is a fully remote position.

Application Deadline

This position is anticipated to close on Nov 13, 2025.

h4>About TEKsystems:

We're partners in transformation. We help clients activate ideas and solutions to take advantage of a new world of opportunity. We are a team of 80,000 strong, working with over 6,000 clients, including 80% of the Fortune 500, across North America, Europe and Asia. As an industry leader in Full-Stack Technology Services, Talent Services, and real-world application, we work with progressive leaders to drive change. That's the power of true partnership. TEKsystems is an Allegis Group company.

The company is an equal opportunity employer and will consider all applications without regards to race, sex, age, color, religion, national origin, veteran status, disability, sexual orientation, gender identity, genetic information or any characteristic protected by law.

About TEKsystems and TEKsystems Global Services

We’re a leading provider of business and technology services. We accelerate business transformation for our customers. Our expertise in strategy, design, execution and operations unlocks business value through a range of solutions. We’re a team of 80,000 strong, working with over 6,000 customers, including 80% of the Fortune 500 across North America, Europe and Asia, who partner with us for our scale, full-stack capabilities and speed. We’re strategic thinkers, hands-on collaborators, helping customers capitalize on change and master the momentum of technology. We’re building tomorrow by delivering business outcomes and making positive impacts in our global communities. TEKsystems and TEKsystems Global Services are Allegis Group companies. Learn more at TEKsystems.com.

The company is an equal opportunity employer and will consider all applications without regard to race, sex, age, color, religion, national origin, veteran status, disability, sexual orientation, gender identity, genetic information or any characteristic protected by law.