Senior CIRT Analyst

Analysts to support global 24/7 operations. In this role, you will act as the primary escalation point for incidents that exceed Tier 1/2 capabilities and ensures operational continuity outside of Security Operations leadership working hours. This includes close collaboration with teams like Security Engineering, Threat Intelligence, the NOC and Incident Management to manage and resolve cyber security incidents to competition.

Alongside our colleagues in Security Engineering, which drives strategic control implementation, you will be focused on the operational and tactical build out of threat detection and response. You will proactively translate real-world threats and attack behaviours into effective detection logic across SIEM and EDR platforms, conduct targeted threat hunts and help embed high-confidence detection into playbooks and response workflows, supporting our Incident Detection and Response Capability.

Our Senior CIRT Analysts are regionally aligned in a follow-the-sun model including positions in the Americas, EMEA and APAC. They have a global presence, but also regional expertise, working alongside and advising our regional CISO teams on regional compliance and reporting requirements from a technical perspective.
Please note: This role requires you to work a 9:00 am - 5:00 pm Mountain Standard Time (MST) schedule as well as an on-call rotation.

Other key responsibilities include:

• Act as the senior escalation point for complex or high-severity incidents.

• Lead incident response lifecycle from detection through to post-incident review.

• Perform high level forensic analysis across cloud, endpoint and network data.

• Develop and execute hypothesis driven hunts across available telemetry.

• Use results to identify gaps or refine detection logic.

• Build, tune, and document detection logic in Sentinel, Defender, CrowdStrike and other platforms.

• Translate threat intelligence into rules and analytics to support incidents.

• Maintain and execute MITRE ATT&CK coverage plans.

• Design and improve operational playbooks and SOAR workflows.

• Implement response logic for recurring incident types.

• Support the development of SOC Analysts by providing escalation support, training and structured feedback.

What will you bring to the role?

• The ability and willingness to work a 9:00-5:00 Mountain Standard Time (MST) schedule

• Flexibility to work an on-call rotation which will include some weekends and public holidays (current schedule is 1 week every 6 weeks but is subject to change)

• 2+ years' experience in SOC, IR or similar roles with demonstrable in threat hunt or tier 3 response

• Experience building detection logic and analytics rules (e.g. KQL, Sigma)

• Deep understanding of MITRE ATT&CK, threat actors, and attack chains

• Strong verbal and written communication skills including report writing skills, the ability to brief groups of people and the ability to translate technical terms into easy-to-understand concepts for non-technical colleagues

• Experience in financial services, aviation, government or other regulated industries

Bonus points if you have:

• GIAC certifications (e.g. GCIA, GCIH, GNFA, GMON, GCFA), Microsoft SC-200, AZ-500 or equivalent

• Experience with Sentinel, Defender and CrowdStrike

• Strong scripting knowledge (PowerShell, python etc)

• Knowledge of Security Frameworks including SOC2, ISO 27001 and NIST

• Active geopolitical awareness

• Bachelor's degree or a master's degree in a relevant field

Rewards designed for you

Paid parental leave, flexible working and a caring and inclusive culture.

Health and wellbeing rewards that can be tailored to support you and your family, including medical, dental and vision.

Invest in your future with 401k matching and tax-advantaged flexible spending plans, including healthcare, dependent care and commuter.

Income protection. Our package includes short and long-term disability benefits, life insurance and supplemental life insurance.

And more. Ours is a welcoming and close-knit community, with experienced colleagues ready to help you grow. Our careers hub will help you find out more about our rewards and life at Computershare, visit computershare.com/careershub.

Compensation. The typical base pay range for this role is:
Illinois & Colorado: $100,000 - $145,000 per year USD
Massachusetts $105,000-$155,000 per year USD
New York: $110,000-$160,000 per year USD

#LI-Hybrid

ABOUT US

A company to be proud of

We're a global leader in financial administration with over 12,000 employees across more than 22 different countries. At Computershare, it's more than just a job, our open and inclusive culture means that we will help you to grow, to move forward and make the most of our world of opportunities.

Fairness and culture

We're dedicated to providing you with the opportunity to succeed on your own merits, starting from the application process and continuing throughout your career with us. Our goal is to create an environment where everyone feels valued, to remove barriers and obstacles and ensure equal opportunities for all. For support with accommodations or adjustments during our recruitment process please visit computershare.com/access for further information.

ABOUT THE TEAM

Our Shared Services teams support all of our business lines behind the scenes. Across the world, we have a range of specialisms that ensure the delivery of our business priorities. These include Technology, Information Security, Finance, Risk, Audit, Governance, Marketing and Communications as well as our People team. Join our strategic team and help us look after everything from creating an amazing end to end employee journey to keeping our systems safe. You'll be looking after our people, our clients and their customers, whilst maintaining our exceptional standards around the globe.