Senior Incident Response (CIRT) Analyst

Overview

Location : New York, NY, Denver, CO, Canton, MA or Bolingbrook, IL

In this position, you'll be based in the New York, Denver, Canton or Bolingbrook office for a minimum of three days a week, with the flexibility to work from home for some of your working week. Find out more about our flexible work culture at computershare.com / flex.

About the role

We give you a world of potential

Senior CIRT Analyst is a permanent full-time role within Computershare Shared Services (CSS) in the Global Information Security (GIS) department. You will join the Cyber Defence team in a hands-on capacity, leading complex incident investigations, building and tuning threat detection capabilities, and mentoring SOC Analysts to support global 24 / 7 operations. You will act as the primary escalation point for incidents that exceed Tier 1 / 2 capabilities and ensure operational continuity outside of Security Operations leadership hours. This includes close collaboration with Security Engineering, Threat Intelligence, the NOC and Incident Management to manage and resolve cyber security incidents.

You will, with Security Engineering colleagues, focus on the operational and tactical build-out of threat detection and response. You will translate real-world threats into effective detection logic across SIEM and EDR platforms, conduct targeted threat hunts, and help embed high-confidence detection into playbooks and response workflows, supporting the Incident Detection and Response capability.

Our Senior CIRT Analysts are regionally aligned in a follow-the-sun model with presence in the Americas, EMEA and APAC. They have a global presence and regional expertise, advising regional CISO teams on regional compliance and reporting from a technical perspective.

Please note : This role requires you to work a 9 : 00 am - 5 : 00 pm MST schedule as well as an on-call rotation.

Responsibilities

• Act as the senior escalation point for complex or high-severity incidents.
• Lead the incident response lifecycle from detection through post-incident review.
• Perform high-level forensic analysis across cloud, endpoint and network data.
• Develop and execute hypothesis-driven hunts across available telemetry.
• Use results to identify gaps or refine detection logic.
• Build, tune, and document detection logic in Sentinel, Defender, CrowdStrike and other platforms.
• Translate threat intelligence into rules and analytics to support incidents.
• Maintain and execute MITRE ATT&CK coverage plans.
• Design and improve operational playbooks and SOAR workflows.
• Implement response logic for recurring incident types.
• Support the development of SOC Analysts by providing escalation support, training and structured feedback.

Qualifications

Bonuses

Rewards and benefits

Compensation

The typical base pay range for this role is :

About Us

A company to be proud of

We're a global leader in financial administration with over 12,000 employees across more than 22 countries. Our open and inclusive culture supports growth and opportunities.

Fairness and culture

We're committed to equal opportunity and provide accommodations during the recruitment process. For information, visit computershare.com / access.

J-18808-Ljbffr