Talent.com
This job offer is not available in your country.
Incident Response Analyst (Remote, ROU)

Incident Response Analyst (Remote, ROU)

CrowdStrikeRemote, Romania
30+ days ago
Job description

As a global leader in cybersecurity, CrowdStrike protects the people, processes and technologies that drive modern organizations. Since 2011, our mission hasn't changed - we're here to stop breaches, and we've redefined modern security with the world's most advanced AI-native platform. Our customers span all industries, and they count on CrowdStrike to keep their businesses running, their communities safe and their lives moving forward. We're also a mission-driven company. We cultivate a culture that gives every CrowdStriker both the flexibility and autonomy to own their careers. We're always looking to add talented CrowdStrikers to the team who have limitless passion, a relentless focus on innovation and a fanatical commitment to our customers, our community and each other. Ready to join a mission that matters? The future of cybersecurity starts with you.

About the Role

CrowdStrike is looking for a highly motivated, self-driven Incident Response Analyst to support the incident-response lifecycle-serving as the first line of defense within the CSIRT. In this role, you'll triage incoming detections, enrich and investigate alerts, and take rapid action-live response, containment, or escalation-to keep adversaries at bay. You'll work shoulder-to-shoulder with seasoned Incident Responders to drive continuous improvement across our world-class security team.

  • Do you find yourself interested in putting your hands-on technical skills to the test in detecting, containing, and remediating incidents?
  • Are you self-motivated and looking for an opportunity to rapidly accelerate your skills?
  • Are you ready to dive into logs, endpoint telemetry, and more to uncover the scope and severity of an event?
  • Do you enjoy working around like-minded security professionals in a world class team who you can both learn from and mentor on a daily basis?
  • Are you looking for a role where the detections you fine-tune today will block tomorrow's attacks?
  • Do you enjoy collaborating with a diverse, high-performing team and explaining technical risk to stakeholders who depend on your insights?

What You'll Do :

  • Provide continuous coverage for SIEM / SOAR, EDR, network, cloud, and email-security consoles; rapidly validate alerts, enrich with context, suppress false positives, and act on confirmed threats.
  • Gather evidence from logs, host telemetry, and threat-intel feeds to determine scope, severity, and business impact.
  • Execute pre-approved playbook actions (host isolation, account disablement, phishing-email purge, firewall block, etc.) and confirm containment success.
  • Escalate high-severity or complex incidents to senior analysts / IR leadership, providing concise incident summaries and proposed mitigation steps while staying engaged through resolution.
  • Consistently meet or exceed response-time targets for critical and high-urgency tickets.
  • Record investigative steps, evidence, and decisions in the ticketing system; deliver clear shift-handoff notes to support 24x7 operations.
  • Identify noisy rules, false-positive trends, blind spots, or missing log sources; collaborate on custom detections and log-source onboarding to improve alert fidelity.
  • Participate in the refinement of existing runbooks, draft new ones, and champion automation opportunities that reduce analyst toil.

    • What You'll Need :

  • 1-3 years of hands-on SOC experience performing alert triage, incident handling, and first-responder containment while working daily with SIEM / SOAR, EDR, IDS / IPS, firewalls / proxies, email-security tools, and deep log analysis.
  • Practical knowledge of Windows, macOS, and Linux internals and logging (Event Logs, Sysmon, auditd, etc.).
  • Solid grasp of TCP / IP, OSI layers, and common protocols (HTTP / S, DNS, SMTP); able to interpret packet captures and network logs.
  • Proficiency with search / query languages (LQL, SPL, KQL, SQL etc.) to enrich alerts and investigate indicators, mapping findings to MITRE ATT&CK techniques.
  • Demonstrated experience responding to hacktivist, cyber-crime, or APT activity-triage, containment, escalation, and thorough documentation.
  • Capable of completing technical tasks independently, maintaining composure during incident response actions, and fostering a positive, collaborative work environment.
  • Strong verbal and written communication, analytical problem-solving, time-management, and project-management skills; desire to grow and continuously improve both technical and soft skills.

    • Bonus Points :

  • Experience in scripting languages such as in Python, PowerShell, Bash, Perl, etc.; experience contributing to SOAR playbooks.
  • Experienced SIEM power user comfortable with conducting complex searches, creating dashboards, and providing alert tuning recommendations.
  • Experience assisting senior responders with coordinated IR functions, root-cause analysis, and tactical / strategic remediation planning.
  • Prior experience presenting technical findings and risk to non-technical stakeholders and executive leadership; project-management experience is a plus.

    • Education :

  • A bachelor's or master's degree in Computer Science, Cybersecurity, or a related field is welcome -but not required. Candidates who can demonstrate equivalent, hands-on experience in security operations will receive full consideration.
  • Applicable security certifications (e.g., GCIA, GCIH, GCFA, GNFA).

    • LI-Remote

    LI-EV1

    LI-AL1

    Benefits of Working at CrowdStrike :

  • Remote-friendly and flexible work culture
  • Market leader in compensation and equity awards
  • Comprehensive physical and mental wellness programs
  • Competitive vacation and holidays for recharge
  • Paid parental and adoption leaves
  • Professional development opportunities for all employees regardless of level or role
  • Employee Resource Groups, geographic neighbourhood groups and volunteer opportunities to build connections
  • Vibrant office culture with world class amenities
  • Great Place to Work Certified™ across the globe

    • CrowdStrike is proud to be an equal opportunity employer. We are committed to fostering a culture of belonging where everyone is valued for who they are and empowered to succeed. We support veterans and individuals with disabilities through our affirmative action program.

    CrowdStrike is committed to providing equal employment opportunity for all employees and applicants for employment. The Company does not discriminate in employment opportunities or practices on the basis of race, color, creed, ethnicity, religion, sex (including pregnancy or pregnancy-related medical conditions), sexual orientation, gender identity, marital or family status, veteran status, age, national origin, ancestry, physical disability (including HIV and AIDS), mental disability, medical condition, genetic information, membership or activity in a local human rights commission, status with regard to public assistance, or any other characteristic protected by law. We base all employment decisions including recruitment, selection, training, compensation, benefits, discipline, promotions, transfers, lay-offs, return from lay-off, terminations and social / recreational programs on valid job requirements.

    If you need assistance accessing or reviewing the information on this website or need help submitting an application for employment or requesting an accommodation, please contact us at recruiting@crowdstrike.com for further assistance.

    Create a job alert for this search

    Analyst • Remote, Romania

    Related jobs
    Incident Support Analyst / Business Analyst / IT Project implementation

    Incident Support Analyst / Business Analyst / IT Project implementation

    SIX Payment ServicesRomania
    Incident Support Analyst / Business Analyst / IT Project implementation.Date posted 03 / 01 / Location Bucuresti | Romania Company Worldline. Incident Support Analyst / Business Analyst / IT Project implemen...Show moreLast updated: 30+ days ago
    Lead - Cyber Defense Center & Security Platform

    Lead - Cyber Defense Center & Security Platform

    SAP FioneerRO
    Quick Apply
    Innovation is and will always be the core of SAP Fioneer, and it is the promise of why we were spun out of SAP : agility, innovation, and delivery. SAP Fioneer builds on a heritage of outstanding tec...Show moreLast updated: 30+ days ago
    Job in Germany : Team Leader IT Infrastructure & IT Operations (m / f / d)

    Job in Germany : Team Leader IT Infrastructure & IT Operations (m / f / d)

    BlueMetering GmbHromania
    Our goal is to digitize every meter that is installed anywhere - no ifs, ands or buts.Whether we achieve this goal through the traditional use of the smart meter gateway or by breaking completely n...Show moreLast updated: 30+ days ago
    Senior Performance Ad Creative Strategist – Direct Response Ads

    Senior Performance Ad Creative Strategist – Direct Response Ads

    STERRYRO
    Quick Apply
    Senior Performance Ad Creative Strategist – Direct Response Ads Who We Are At STERRY , we’re not your average Growth Marketing Agency—we’re the rocket fuel behind crowdfundi...Show moreLast updated: 30+ days ago
    CHL Analyst

    CHL Analyst

    STADA M&DRO
    STADA ne urmărim scopul „Grija pentru sănătatea oamenilor ca partener de încredere” la nivel mondial.Fondat inițial de farmaciști, suntem un producător de frunte al produselor farmaceutice de înalt...Show moreLast updated: 30+ days ago
    Support Analyst FPR

    Support Analyst FPR

    Société Générale AssurancesRomania
    IT (Information Technology) Permanent contract Bucuresti, Romania Hybrid Reference 24000S78 Start date 2025 / 06 / 02 Publication date 2025 / 02 / 14. Societe Generale Global Solution Centre (SG GSC) acts a...Show moreLast updated: 30+ days ago
    Workspace Analyst

    Workspace Analyst

    GetronicsRomania , Romania
    Full Time – Permanent Position.Getronics is a global leader in technology solutions with a team of over 4,000 colleagues in 22 centres, providing comprehensive end-to-end services across the globe....Show moreLast updated: 16 days ago
    Technical Support Engineer, Linux & Mobile Telecom – Bucharest

    Technical Support Engineer, Linux & Mobile Telecom – Bucharest

    Chronos ConsultingRomania
    Our client is a global provider of intelligent mobile Internet solutions that enable operators to improve quality, reduce network operational expenses and manage and monetize the mobile Internet.Th...Show moreLast updated: 30+ days ago
    Logistics Analyst

    Logistics Analyst

    Prepared HeroRO
    Quick Apply
    Prepared Hero is an innovative DTC e-commerce brand dedicated to equipping individuals with high-quality, reliable products for unexpected situations. Our range extends across various categories, en...Show moreLast updated: 26 days ago
    Cybersecurity Analyst (Romania)

    Cybersecurity Analyst (Romania)

    SophosRomania
    Sophos is a global leader and innovator of advanced security solutions for defeating cyberattacks.The company acquired Secureworks in February 2025, bringing together two pioneers that have redefin...Show moreLast updated: 30+ days ago
    Senior Site Reliability Engineer

    Senior Site Reliability Engineer

    OracleRomania
    OCI Incident Response is the first line of defense for maintaining the high availability of Oracle’s cloud.We make customer-impacting events shorter, less frequent, and less impactful by providing ...Show moreLast updated: 16 days ago
    Premier Helpdesk Analyst (GE)

    Premier Helpdesk Analyst (GE)

    Infotree Global SolutionsRomania, Romania
    Premier Helpdesk Analyst with German.Our client is a worldwide travel retail platform, that powers bookings for hundreds of thousands of travel suppliers worldwide. Provide Helpdesk support on both ...Show moreLast updated: 23 days ago
    Job in Germany : IT Business Analyst - Cards (f / m / d)

    Job in Germany : IT Business Analyst - Cards (f / m / d)

    ING Deutschlandromania
    IT Business Analyst - Maps (f / m / d).IT Business Analyst - Maps (f / m / d).Do you feel at home in IT landscapes? Translating between business and IT is one of your easiest exercises? And do you value a ...Show moreLast updated: 30+ days ago
    Technical Service Manager

    Technical Service Manager

    StefaniniRemote, Romania
    Help mature internal processes, break down work into logical function groupings to enable the team to deliver early and often. .Manage customer expectations while establishing and maintaining clear ...Show moreLast updated: 5 days ago
    Medior IT Business Analyst_GDS - BankInsurance Solutions_Hybrid / Full remote

    Medior IT Business Analyst_GDS - BankInsurance Solutions_Hybrid / Full remote

    UniCreditRomania
    Show moreLast updated: 16 days ago
    Remote Accountant

    Remote Accountant

    SnaphuntRomania
    Opportunity within a company with a solid track record of performance.Manage daily bookkeeping and general ledger entries. Prepare monthly, quarterly, and annual financial reports.Reconcile bank sta...Show moreLast updated: 30+ days ago
    Freelance Accounting - Quality Assurance / AI Trainer

    Freelance Accounting - Quality Assurance / AI Trainer

    MindriftRO
    Quick Apply
    We believe in using the power of collective intelligence to ethically shape the future of AI.The Mindrift platform connects specialists with AI projects from major tech innovators.Our mission is to...Show moreLast updated: 30+ days ago
    Senior Cyber Security Analyst

    Senior Cyber Security Analyst

    Sigma SoftwareRomania
    SQL / strong Cybersecurity / strong Data analysis / good BI tools / good.We are seeking a Senior Cyber Security Analyst to work with a highly dynamic AdTech ecosystem, aiming to protect the digital...Show moreLast updated: 16 days ago