Incident Response Analyst

Founded in 2010, CLEAR’s mission is to create frictionless experiences. With more than 12+ million members and hundreds of partners across the world, CLEAR’s identity platform is transforming the way people live, work, and travel. Whether it’s at the airport, stadium, or right on your phone, CLEAR connects you to the things that make you, you - making everyday experiences easier, more secure, and more seamless. Since day one, CLEAR has been committed to privacy done right. 

We are looking for an Incident Response Analyst to join our team. The ideal candidate has a strong drive to solve security challenges and the desire to implement best-in-class security measures using cutting edge technology.

What You Will Do:

• Investigate, analyze, and report IT security incidents in accordance with the incident response plan
• Be a part of the incident response on-call rotation, which may include nights, weekends, and holidays
• Create documentation and contribute to process build out for incident response
• Help enhance and mature incident response practices
• Work with and assist employees with security questions or escalations
• Perform network/system forensic investigations
• Learn and cross train in all CLEAR technologies
• Conduct internal and external security audits
• Recommend and install appropriate tools and countermeasures
• Define, implement and maintain corporate security policies
• Work with key business leaders to help identify critical assets and their protection

Who You Are:

• 2-4 years experience in a GSOC, SOC, IOC, or as an Incident Responder
• Ideal candidate would have fusion center experience in crisis/incident management and/or travel security programs
• Experience with reviewing and creating detections
• Experience with cloud security best practices
• Understanding and usage enterprise log management/SIEM query languages
• Strong interest in emerging technology and ongoing security governance implications
• Strong understanding of networking, applications, and systems preferred
• Strong knowledge of Linux, Windows and Apple operating systems
• Experience using EDR and other security agents 
• Able to travel domestically as needed

#LI-Hybrid