Cyber Defense Response Analyst II

CME Group

Actively hiring
New York - 300 Vesey Street, US Posted 87 days ago $103,200$172,000 / year
View original post Log in to save

At a glance

AI generated

TL;DR

As a Cyber Defense Response Analyst II at CME Group, you will join a dynamic team dedicated to safeguarding global financial markets by addressing medium-severity cyber incidents. Your day-to-day responsibilities include leading the full incident response lifecycle from triage to remediation using advanced tools like KAPE and EnCase, conducting threat hunts to identify security gaps, and leveraging Python and REST APIs to automate security solutions. You will also lead tabletop exercises and maintain technical documentation for incident response. Ideal candidates possess a deep curiosity, innovative problem-solving skills, and the ability to communicate effectively under pressure. Strong experience with digital forensics, malware analysis, SIEM tools like Q Radar and Splunk, and cloud environments is required, along with proficiency in Python for data manipulation and API interactions.

Skills

Python Pandas REST APIs AWS GCP Azure SIEM Splunk Qradar Sentinel Chronicle ArcSight KAPE EnCase Cellebrite FTK Magnet_Axiom Autopsy Ghidra Ida_Pro PEStudio x64dbg

What you'll do

  • Drive the full incident response lifecycle from triage to remediation using endpoint forensics and malware analysis.
  • Conduct regular threat hunts to identify misconfigurations, detection gaps, and other anomalies in multi-cloud environments.
  • Build and integrate security tools using AI, Python, and REST APIs for ad-hoc needs and advanced use-cases.
  • Lead tabletop exercises to enhance team readiness and response capabilities.
  • Maintain and update internal knowledge base of incident response runbooks and playbooks.

What we're looking for

  • 2-4 years of experience in Digital Forensics, Incident Response, and Malware Analysis.
  • Proficiency with digital forensics tools like KAPE, EnCase, FTK, and malware analysis tools such as Ghidra and Ida Pro.
  • Experience using SIEM platforms like Q Radar, Splunk, or similar log management technologies.
  • Strong understanding of computer networking, operating systems, and cybersecurity principles.
  • Development experience with Python for data manipulation and API interactions in security contexts.
  • Bachelor’s degree in Engineering, Computer Science, or Information Security; relevant certifications preferred.

Market check

Salary context

This $103,200–$172,000 range sits above 26% of similar postings on FindRole.

Peer median band

$112,800$198,000

Median floor and ceiling across peers.

Typical midpoint (25–75%)

$135,650$184,325

Middle half of comparable postings.

Based on 239 comparable postings.

* 240 is the maximum number of comparable postings sampled.

Employer

About CME Group

CME Group operates the world''s largest financial derivatives marketplace, offering futures and options products across interest rates, equity indexes, foreign exchange, energy, agricultural products, and metals. Industry: Financial Exchanges & Derivatives

CME Group currently has 11 open roles on FindRole.

Listed pay typically runs $117,050–$195,050 across 10 roles with salary data.

Most-posted roles

View all roles at CME Group

More like this

Similar roles

Cybersecurity Analyst

Leidos

3347 Whitehall Oh, US 24 days ago $69,550$125,725
SIEM SOAR AWS Azure GCP Python NetFlow Full Packet Capture IDS/IPS HIPS/HBSS Anti-Virus Network Forensics Mobile Device Management MAM MTD OSI Model Defense-in-Depth Packet Analysis Behavioral Analysis Statistical Analysis Machine Learning

Sr Analyst, Cyber Defense

McDonald’s Corporation

Chicago, Illinois, US 28 days ago $127,332$159,165
SIEM EDR Python Autopsy Velociraptor Ghidra NIST Cybersecurity Framework Cyber Kill Chain SOAR Linux Windows MacOS CI/CD eDiscovery Forensics

Specialist, Cyber Defense & Response

Prudential Financial

Wash, 213 Washington St., Newark, Nj, US 129 days ago $96,200$158,800
SIEM MITRE ATT&CK Python PowerShell AWS Cloud Security Digital Forensics Threat Hunting Adversary Emulation Automation CI/CD MITRE ATLAS MITRE D3FEND

Cyber Threat & Response Engineer (L2)

3M

Remote (Us, Texas, Austin, US) 161 days ago $164,612$201,193
Python PowerShell Bash SIEM EDR MITRE ATT&CK Threat Intelligence Malware Analysis Log Correlation Incident Response Network Monitoring Scripting Automation Problem Solving Analytical Skills Communication Cross-Functional Collaboration
Remote

Cyber Analyst, Digital Forensics Incident Response

At-Bay

Remote (US) 46 days ago $80,000$115,000
Digital_Forensics Incident_Response Malware_Analysis Ransomware Cloud_Environments AWS Azure Google_Cloud_Pods CI/CD Linux Windows_Server Network_Operations Security_Operations_Center Python PostgreSQL
Remote

Principal Advanced Threat Response Analyst

Hewlett Packard Enterprise

Locations All, Texas, US 60 days ago $120,500$276,500
MITRE ATT&CK Python Splunk Sentinel CrowdStrike Carbon Black Defender ATP Mitre Attck AWS Azure GCP PowerShell Bash CI/CD SIEM EDR Red Team Offensive Security Cobalt Strike Metasploit Purple Team Exercises