Montana Veteran Jobs

facebook youtube linkedin
Mobile Montana Labor & Industry Mobile Logo

Job Information

Xerox Cybersecurity Incident Response Lead in Helena, Montana

Cybersecurity Incident Response Lead

General Information

Press space or enter keys to toggle section visibility


United States


Information Management


Thursday, May 25, 2023

Working time




Job Level

Individual Contributor

Job Type


Job Field

Information Management

Seniority Level

Mid-Senior Level

Description & Requirement

Press space or enter keys to toggle section visibility

About Xerox Holdings Corporation

For more than 100 years, Xerox has continually redefined the workplace experience. Harnessing our leadership position in office and production print technology, we’ve expanded into software and services to sustainably power today’s workforce. From the office to industrial environments, our differentiated business solutions and financial services are designed to make everyday work better for clients — no matter where that work is being done. Today, Xerox scientists and engineers are continuing our legacy of innovation with disruptive technologies in digital transformation, augmented reality, robotic process automation, additive manufacturing, Industrial Internet of Things and cleantech. Learn more at and explore our commitment to diversity and inclusion.


The Incident Response Lead supports the incident response process within the Xerox Cyber Defense team. The qualified candidate will analyze, contain, and recover from any detected or reported issue in accordance with cyber security incident management process.


This is a leadership opportunity, as the Incident Response Lead will technically guide a team of 4 IR Analysts.

Primary Responsibilities:

  • Analyzing, triaging and managing incidents end-to-end based on business impact and applicable privacy/legal/regulatory requirements

  • Collaborating with the managed security services supplier in designing rules/alerts within the security information & event management system (SIEM) and/or other security technologies employed by Xerox to swiftly detect and/or prevent compromise to systems and/or information

  • Analyze data from various sources to identify possible risk indicators, determine possible root cause and identify preventative actions

  • Perform eDiscovery assignments and forensic analysis in accordance with standard legal hold policies, procedures, and in alignment with record retention guidelines as required by the Office of General Counsel

  • Act on behalf of the incident response management if/when necessary to maintain target service delivery levels and mitigation of incidents on Xerox network and/or against Xerox resources

  • Own end to end incident response process and lead a team of highly technical incident response analysts


  • At least 4+ years of professional experience in an incident response role

  • Knowledge of common security vulnerabilities including OWASP Top 10 and SANS 25

  • Understanding of IDS/ IPS, SIEM, email security, EDR and end point protection technologies

  • Strong understanding of network, application layer and OS fundamentals

  • Experience analyzing and responding to incidents in cloud environments

  • Strong attention to detail, time management and analytical skills

  • Strong written and communication skills

  • Uncompromising personal and professional integrity and ethics

  • Associates or Bachelor's Degree in Cybersecurity, Computer Science, Information Systems, or related field

  • Preferred – A technical certification such as ECIH, CCFP, GCFE, GCFA, or equivalent is desired

  • Experienced in offensive security

  • Experienced in performing disk/ memory forensics and/or malware analysis

  • Experienced in Splunk and QRadar

#LI-KC1 #LI-Remote

Xerox is an Equal Opportunity Employer and considers applicants for all positions without regard to race, color, creed, religion, ancestry, national origin, age, gender identity, sex, marital status, sexual orientation, physical or mental disability, use of a guide dog or service animal, military/veteran status, citizenship status, basis of genetic information, or any other group protected by law. Learn more at and explore our commitment to diversity and inclusion: People with disabilities who need a reasonable accommodation to apply or compete for employment with Xerox may request such accommodation(s) by sending an e-mail to Be sure to include your name, the job you are interested in, and the accommodation you are seeking.