IBM CISO - Cybersecurity Forensic Analyst

IBM

Quick summary

Work type
On-site
Location
Austin, TX
Posted
8 days ago

Market check

Salary context

How this pay compares to similar roles

Similar $162k
$110k most similar roles pay here $207k

This listing doesn't post a salary. Most similar roles pay $139,712–$184,975.

Based on 239 similar postings.

Employer

About IBM

IBM is a US-based global technology company providing hybrid cloud, AI, consulting, enterprise software, and IT infrastructure products and services.

IBM currently has 743 open roles on FindRole.

Listed pay typically runs $1,000,000–$1,000,000 across 8 roles with salary data.

Most-posted roles

View all roles at IBM

At a glance

TL;DR · IBM CISO - Cybersecurity Forensic Analyst

Apply Now Log in to save

As a Senior Incident Response Forensic Analyst at IBM’s CSIRT in Austin, TX, you will work closely with incident responders, threat detection teams, and leadership to investigate cybersecurity incidents across the Americas. Your day-to-day responsibilities include conducting forensic investigations on endpoint, network, and cloud environments, collecting and analyzing digital evidence, and supporting containment and remediation efforts. You will correlate forensic data with threat intelligence, reconstruct attack timelines, and document findings for both technical and non-technical stakeholders. The role requires expertise in digital forensics using tools like EnCase and FTK, strong investigative skills, and experience with EDR and SIEM platforms. Additionally, you should have a solid understanding of Windows, Mac, Linux operating systems, networking technologies, and scripting languages such as Python or PowerShell. This position demands the ability to operate effectively in high-pressure environments and contribute to continuous improvement of incident response capabilities.

Skills

EnCase FTK Autopsy Python PowerShell Windows Mac Linux Firewalls Proxies IDS/IPS EDR SIEM CrowdStrike Microsoft Defender for Endpoint MDE IBM Cloud AWS Azure X-Ways Axiom ELK SIFT Plaso

What you'll do

  • Conduct forensic investigations on endpoint, network, and cloud environments.
  • Collect, preserve, and analyze digital evidence according to established standards.
  • Support incident response activities including triage, containment, eradication, and recovery.
  • Correlate forensic evidence with threat intelligence and detection signals.
  • Reconstruct attack timelines and identify root cause and impact of incidents.
  • Document findings and produce clear reports for both technical and non-technical stakeholders.

What we're looking for

  • 3-5 years of experience in Incident Response, SOC, or Digital Forensics.
  • Strong digital forensics expertise with industry-standard tools like EnCase and FTK.
  • Ability to collect, preserve, and analyze evidence while maintaining chain of custody.
  • Experience operating within incident response workflows using EDR and SIEM platforms.
  • Understanding of attacker TTPs and experience in malware or memory forensics.
  • Strong technical writing and presentation skills for diverse audiences.
  • Knowledge of Windows, Mac, Linux operating systems and enterprise cybersecurity tools.

Related searches

More IBM CISO jobs IBM CISO jobs in Austin All jobs at IBM

More like this

Similar roles

Cyber Analyst, Digital Forensics Incident Response

At-Bay

Remote (US) 54 days ago $80,000$115,000
Digital_Forensics Incident_Response Malware_Analysis Ransomware Cloud_Environments AWS Azure Google_Cloud_Pods CI/CD Linux Windows_Server Network_Operations Security_Operations_Center Python PostgreSQL
Remote
Save

Cybersecurity Analyst

Leidos

3363 Dahlgren Va 9 days ago $87,100$157,450
RMF DoD DoN SECNAV OPNAV STIGs Nessus OS hardening Networking concepts System security engineering Technical documentation SIEM Secure coding practices CompTIA Security+ CEH CISSP
Save

Cyber Security Analyst

Nvidia

Remote (CA) 1 day ago $160,000$258,750
AWS Azure GCP Kubernetes Python Go Docker CI/CD MITRE ATT&CK GuardDuty Sentinel Security Command Center Terraform PostgreSQL Splunk SIEM ELK Stack Prometheus Grafana
Remote
Save

Cyber Security Analyst

Nvidia

Remote (Virginia, VA) 1 day ago $160,000$258,750
AWS Azure GCP Kubernetes Python Go Docker MITRE ATT&CK CI/CD Terraform Prometheus Grafana Splunk SIEM SOC Digital_Forensics Malware_Analysis
Remote
Save