Job Description
Be an Early Applicant
Hiring Remotely in United States
Remote or Hybrid
Senior level
Fintech • Software
We deliver end-to-end risk and compliance solutions through our software and domain expertise.
The Role
The Senior Cyber Threat Analyst leads cybersecurity incident investigations coordinates teams authors runbooks mentors analysts and communicates findings to various stakeholders.
Summary Generated by Built In
Join a dynamic team at the pulse of global markets where we deliver innovative software and service solutions for essential financial reporting and capital markets transactions. At DFIN we are a values-driven organization that empowers you to build a fulfilling career while bringing your authentic self to work every day. Our "Win as One" mentality ensures that our team's success is directly linked to Client Shareholder and Employee Satisfaction.
Recognized as one of AMERICA'S MOST LOVED WORKPLACES® for five consecutive years and a Built In Best Places to Work for six years we are committed to our employees' total well-being. Enjoy competitive compensation a flexible workplace comprehensive benefits and opportunities for professional growth. Bring your passion and talents to DFIN - because being YOU thrives here.
Summary:
The Senior Cyber Threat Analyst will lead efforts to investigate cybersecurity incidents from end-to-end engaging and coordinating peer teams stakeholders and external entities as necessary. This person will play a role of subject matter expert in the areas of incident response threat hunting and forensics. The Senior Cyber Threat Analyst will author incident response runbooks and mentor cyber threat analysts in incident response and digital forensics methodologies.
Responsibilities:
Qualifications:
Preferred Qualifications:
It is the policy of Donnelley Financial Solutions to select place and manage all its employees without discrimination based on race color national origin gender age religion actual or perceived disability veteran status actual or perceived sexual orientation genetic information or any other protected status.
If you are a qualified individual w ith a disability or a disabled veteran you have the right to request a reasonable accommodation if you are unable or limited in your ability to use or access jobs.dfinsolutions.com as a result of your disability. You can request a reasonable accommodation by sending an email to [email protected] .
At DFIN protecting your identity is a top priority. Please be aware of scammers impersonating DFIN recruiters. DFIN recruiters will never request personal information via email or text. You will only receive a text from us if you've already been in contact. All automated messages will come from [email protected] . If you ever have doubts about the legitimacy of any communication from us please do not hesitate to reach out for verification via [email protected] (this email is for general TA questions and is not used for updates on your application status). #BI-Remote
Recognized as one of AMERICA'S MOST LOVED WORKPLACES® for five consecutive years and a Built In Best Places to Work for six years we are committed to our employees' total well-being. Enjoy competitive compensation a flexible workplace comprehensive benefits and opportunities for professional growth. Bring your passion and talents to DFIN - because being YOU thrives here.
Summary:
The Senior Cyber Threat Analyst will lead efforts to investigate cybersecurity incidents from end-to-end engaging and coordinating peer teams stakeholders and external entities as necessary. This person will play a role of subject matter expert in the areas of incident response threat hunting and forensics. The Senior Cyber Threat Analyst will author incident response runbooks and mentor cyber threat analysts in incident response and digital forensics methodologies.
Responsibilities:
- Lead incident response activities to identify assess contain mitigate all observed threats and document all investigational efforts for multiple audiences
- Develop and operationalize incident response runbooks with an emphasis on automation and ability to measure incident response effectiveness (Develop/track KPIs)
- Document and track incident response investigations including observed IOCs and TTPs system(s) impacted criticality and scope of any data exposure lessons learned follow-up items
- Act as a liaison between a diverse group of teams including engineering security and network & system operations to ensure effective adoption of incident response requirements and operational considerations
- Act as incident manager for all declared cyber security incidents
- Conduct traditional forensic and data acquisition activities utilizing industry standard commercial and open-source toolsets
- Identify analyze and interpret trends or patterns in complex data sets
- Work with the functional business areas as needed during incident response investigations
- Develop customize and maintain reporting around key metrics related to investigational and threat hunting activities
- Serve as a trusted advisor to the team Lead Manger and the SVP and CISO on sensitive matters warranting confidentiality
- Communicate and present issues/investigation results to peer and executive-level audiences
- Demonstrate subject matter expertise across most technology domains
- Perform other duties as assigned
Qualifications:
- Bachelor's degree with 8+ years of relevant experience or 10+ years of equivalent experience through work and education
- 8+ years of cybersecurity investigation and incident response experience
- Strong understanding of operating systems (Windows macOS Linux Unix mobile)
- Experience investigating incidents in cloud environments (SaaS PaaS and other cloud platforms)
Preferred Qualifications:
- Security certifications (e.g. CISSP GSEC GCFA GCFE)
- Strong analytical and problem-solving skills
- Knowledge across cybersecurity domains including firewalls IDS and network security platforms
- Experience leveraging threat intelligence in security operations
- Advanced knowledge of cyber attack techniques and mitigation strategies
- Ability to assess risk using qualitative and quantitative methods
- Strong communication skills for technical and leadership audiences
- Proven ability to handle confidential data and follow procedures
- Ability to perform effectively in fast-paced high-pressure environments
- Expertise in incident response digital forensics network traffic log and malware analysis
- Familiarity with MITRE ATT&CK and ATLAS frameworks
- Experience with SIEM SOAR and EDR tools for detection and response
It is the policy of Donnelley Financial Solutions to select place and manage all its employees without discrimination based on race color national origin gender age religion actual or perceived disability veteran status actual or perceived sexual orientation genetic information or any other protected status.
If you are a qualified individual w ith a disability or a disabled veteran you have the right to request a reasonable accommodation if you are unable or limited in your ability to use or access jobs.dfinsolutions.com as a result of your disability. You can request a reasonable accommodation by sending an email to [email protected] .
At DFIN protecting your identity is a top priority. Please be aware of scammers impersonating DFIN recruiters. DFIN recruiters will never request personal information via email or text. You will only receive a text from us if you've already been in contact. All automated messages will come from [email protected] . If you ever have doubts about the legitimacy of any communication from us please do not hesitate to reach out for verification via [email protected] (this email is for general TA questions and is not used for updates on your application status). #BI-Remote
Skills Required
- Bachelor's degree with 8+ years of relevant experience or 10+ years of equivalent experience
- 8+ years of cybersecurity investigation and incident response experience
- Strong understanding of operating systems: Windows macOS Linux Unix mobile
- Experience investigating incidents in cloud environments
What the Team is Saying
Am I A Good Fit?
beta
Get Personalized Job Insights.
Our AI-powered fit analysis compares your resume with a job listing so you know if your skills & experience align.
The Company
HQ: Chicago IL
1750 Employees
Year Founded: 2016
What We Do
DFIN is a leading global risk and compliance solutions company. We provide domain expertise software and data analytics for every stage of our clients’ business and investment lifecycles. Markets fluctuate regulations evolve technology advances and through it all DFIN delivers confidence with the right solutions in moments that matter.
Why Work With Us
DFIN is shaping global markets and is an environment where you can bring your whole self to work and do your best work every day. We are a values-based culture in which you can build a rewarding career.
Gallery
DFIN Offices
Hybrid Workspace
Employees engage in a combination of remote and on-site work.
We operate in a fully flexible work environment. Our employees can continue to work remotely our offices remain open and available for collaboration.
Typical time on-site: Flexible
HQChicago IL
Located in the heart of downtown Chicago’s financial district we are steps from all Metra stations good eats and entertainment.
Explore More
Apply Now
Back to Job Listings
Add To Job List
Company Profile
View Company Reviews
Date Posted
05/28/2026
Views
0
Neutral
Subjectivity Score: 0
Similar Jobs
Bilingual Physician - Virtual Health Assessment (Part-time) - Oscar
Views in the last 30 days - 0
View Details