Incident Response Analyst (Intermediate)

Job Description

Incident Response Analyst Intermediate:
On behalf of our Consulting client, Procom is searching for an Incident Response Analyst for a 6 month contract role. This position is a hybrid position with 2 days onsite at our client’s Toronto office.

Incident Response Analyst Intermediate - Job Description:
The Intermediate Incident Response Analyst will support enterprise cybersecurity operations and incident response activities. This role involves monitoring, investigating, documenting, and responding to security incidents across various environments, working closely with security operations teams to identify threats and support remediation efforts.

Incident Response Analyst Intermediate - Responsibilities:
• Monitor and triage security alerts from SIEM, EDR/XDR, cloud security, and email security platforms
• Validate security incidents and assess severity, scope, and business impact
• Conduct investigations involving phishing attacks, malware infections, ransomware events, account compromise, insider threats, unauthorized access, data exfiltration, and cloud security incidents
• Analyze logs, indicators of compromise (IOCs), and system activity to determine root cause
• Document investigation findings, timelines, evidence, and remediation recommendations
• Support containment, eradication, and recovery activities
• Contribute to threat hunting initiatives and proactive security monitoring
• Assist with development and enhancement of detection use cases and security monitoring content
• Support security automation and SOAR initiatives where applicable
• Collaborate with security, infrastructure, cloud, and operations teams during incident response activities

Incident Response Analyst Intermediate - Mandatory Skills:
• 3–5 years of cybersecurity experience
• 2–3+ years of incident response, SOC, or cyber investigation experience
• Strong understanding of the incident response lifecycle
• Hands-on experience with SIEM platforms and EDR/XDR technologies
• Experience with Azure and GCP security monitoring
• Strong log analysis and root cause investigation skills
• Excellent communication and analytical skills

Incident Response Analyst Intermediate – Nice-to-Have Skills:
• Threat hunting experience
• KQL query development
• SOAR and security automation experience
• Experience in financial services or highly regulated industries
• Familiarity with enterprise security operations processes and frameworks

Incident Response Analyst Intermediate – Assignment Length:
This is a 6 month contract position.

Incident Response Analyst Intermediate - Start Date:
ASAP.

Incident Response Analyst Intermediate - Assignment Location:
Toronto, Ontario, Canada – Hybrid with 2 days in office.

This employer uses both human and technology-assisted tools to support candidate screening and assessment. Final hiring decisions are made by people.