Sr. Security and Incident Response

Blue Yonder is seeking a Sr. Security & Incident Response to join its Security Operations team. This role involves assisting with Tier 2 incident response efforts, developing and maintaining incident response plans, conducting investigations, and providing technical guidance during security breaches. The successful candidate will be responsible for detecting, investigating, containing, and remediating security incidents, leading high-priority efforts, and coordinating with cross-functional teams to protect the organization's systems, data, customers, and reputation. A deep passion for cybersecurity and proactive threat mitigation is essential.

Must Have

• Assist with the organization's Tier 2 incident response efforts.
• Develop and maintain incident response plans.
• Conduct investigations and provide technical guidance during incident response activities.
• Lead high-priority incident response efforts.
• Coordinate with cross-functional teams such as IT, legal, and compliance to mitigate threats.
• Monitor and analyze security alerts generated by security systems, appliances, and logs.
• Quickly assess, prioritize, and respond to security incidents.
• Investigate security incidents to determine root causes, attack vectors, and vulnerabilities.
• Conduct proactive threat-hunting activities based on intelligence, anomalies, and adversary tactics.
• Collaborate with IT, engineering, legal, compliance, and other teams to coordinate incident response efforts.
• Maintain detailed documentation of security incidents, response actions, and lessons learned.
• Enhance and maintain incident response procedures.
• Provide guidance, training, and mentorship to SOC analysts and IT staff on security threats.
• Leverage threat intelligence sources to stay informed on evolving cyber threats.
• Strong familiarity with cloud security technologies and frameworks across major cloud providers (AWS, Azure, Google Cloud).
• Experience with cloud-native security monitoring, incident response in cloud environments, and threat detection techniques.
• Bachelor’s degree in computer science, information security, or related degree (or additional professional work experience).
• 5+ years of professional work experience in a security team within a global enterprise environment.
• Experience with incident response methodologies and tools (e.g., SANS IR, Threat Intelligence).
• Knowledge of security frameworks such as NIST and ISO 27001.
• Familiarity with security regulations and standards (e.g., PCI DSS, HIPAA).
• Knowledge of various operating systems, networks, and security technologies.

Good to Have

• Security+ or Certified Incident Handler (GCIH) or equivalent certification preferred.

Perks & Benefits

• Comprehensive Medical, Dental and Vision
• 401K with Matching
• Flexible Time Off
• Corporate Fitness Program
• A variety of voluntary benefits such as; Legal Plans, Accident and Hospital Indemnity, Pet Insurance and much more

Overview:

Blue Yonder, a leading supply chain software company, is seeking a Sr Security & Incident Response to join its Security Operations team. The successful candidate will be responsible for assisting with the organization's Tier 2 incident response efforts in the event of a security breach or cyber-attack. This role requires strong technical skills, attention to detail, and the ability to work under pressure. The Sr Incident Response will work closely with the Security team to develop and maintain incident response plans, conduct investigations, and provide technical guidance and support during incident response activities.

Blue Yonder is seeking a candidate with a deep passion for cybersecurity, eager to stay ahead of emerging threats and continuously enhance our security posture. The ideal candidate is driven, proactive, and committed to protecting the enterprise through effective threat detection, response, and mitigation strategies.

Scope/Responsibilities:

This role is responsible for assisting with the detection, investigation, containment, and remediation of security incidents to protect an organization's systems, data, customers and reputation. They lead high-priority incident response efforts, coordinating with cross-functional teams such as IT, legal, and compliance to mitigate threats effectively.

Technical Environment: (Candidate should be very familiar with all the below)

• Security Information and Event Management (SIEM)
• Endpoint Detection and Response (EDR) / Extended Detection and Response (XDR)
• Network Security Monitoring & Intrusion Detection/Prevention Systems (IDS/IPS)
• Threat Intelligence Platforms (TIP)
• Security Orchestration, Automation, and Response (SOAR)
• Digital Forensics and Incident Response (DFIR) Tools
• Malware Analysis & Reverse Engineering Tools
• Vulnerability Management & Assessment
• Web Application Security Testing Tools
• Cloud Security Monitoring & Protection
• Email Security & Phishing Protection
• Deception & Honeypot Technologies
• Data Loss Prevention (DLP)
• Privileged Access Management (PAM) & Identity Security
• Firewall & Next-Generation Firewall (NGFW) Solutions

What You’ll Do:

• Monitor and Analyze Security Alerts – Review alerts generated by security systems, appliances, and logs to determine the appropriate course of action to protect the enterprise and reduce overall risk.
• Incident Triage and Response – Quickly assess, prioritize, and respond to security incidents, ensuring timely containment, eradication, and recovery to minimize business impact.
• Root Cause Analysis (RCA) – Investigate security incidents to determine root causes, attack vectors, and vulnerabilities, providing recommendations to reduce the attack surface and prevent recurrence.
• Threat Hunting and Proactive Defense – Conduct proactive threat-hunting activities based on intelligence, anomalies, and adversary tactics to identify and mitigate threats before they escalate.
• Collaboration with Cross-Functional Teams – Work closely with IT, engineering, legal, compliance, and other teams to coordinate incident response efforts and ensure an effective security posture.
• Incident Documentation and Reporting – Maintain detailed documentation of security incidents, response actions, and lessons learned, ensuring continuous improvement in security processes.
• Develop and Improve Incident Response Playbooks – Enhance and maintain incident response procedures, ensuring alignment with industry best practices and emerging threats.
• Security Awareness and Training – Provide guidance, training, and mentorship to SOC analysts and IT staff on security threats, incident handling, and response best practices.
• Threat Intelligence Integration – Leverage threat intelligence sources to stay informed on evolving cyber threats and proactively adjust security strategies to defend against them.
• Strong familiarity with cloud security technologies and frameworks across major cloud providers (AWS, Azure, Google Cloud) is essential. The candidate should have experience with cloud-native security monitoring, incident response in cloud environments, and threat detection techniques to protect workloads, data, and identities in hybrid and multi-cloud architectures.

What We're Looking for:

• Bachelor’s degree in computer science, information security, or related degree (additional professional work experience will be considered in lieu of degree).
• 5+ years of professional work experience in a security team within a global enterprise environment.
• Must have experience with incident response methodologies and tools (e.g. SANS IR, Threat Intelligence, etc.)
• Strong technical skills and attention to detail
• Excellent verbal and written communication skills
• Ability to work independently and as part of a team
• Ability to work under pressure and in a fast-paced environment
• Strong problem-solving skills and a proactive approach to work
• Knowledge of security frameworks such as NIST and ISO 27001
• Familiarity with security regulations and standards (e.g. PCI DSS, HIPAA, etc.)
• Knowledge of various operating systems, networks, and security technologies.
• Security+ or Certified Incident Handler (GCIH) or equivalent certification preferred.

#LI-MH1

#LI-Remote

The annual salary range for this position is USD $114,103.81 - $130,000.00

The salary range information provided, reflects the anticipated base salary range for this position based on current national data. Minimums and maximums may vary based on location. Individual salary will be commensurate with skills, experience, certifications or licenses and other relevant factors. In addition, this role will be eligible to participate in either the annual performance bonus or commission program, determined by the nature of the position.

At Blue Yonder, we care about the wellbeing of our employees and those most important to them. This is reflected in our robust benefits package and options that includes:

• Comprehensive Medical, Dental and Vision
• 401K with Matching
• Flexible Time Off
• Corporate Fitness Program
• A variety of voluntary benefits such as; Legal Plans, Accident and Hospital Indemnity, Pet Insurance and much more

At Blue Yonder, we are committed to a workplace that genuinely fosters inclusion and belonging in which everyone can share their unique voices and talents in a safe space. We continue to be guided by our core values and are proud of our diverse culture as an equal opportunity employer. We understand that your career search may look different than others, and embrace the professional, personal, educational, and volunteer opportunities through which people gain experience.

Our Values

If you want to know the heart of a company, take a look at their values. Ours unite us. They are what drive our success – and the success of our customers. Does your heart beat like ours? Find out here: Core Values

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or protected veteran status.

About Us

Who are we?

We are a proven, passionate bunch of disruptors. Our work is all about tapping into your potential so we can deliver the best solutions and customer experiences on the planet. Collaboration, respect, and a great work-life balance earned us the title of "Best Place to Work- Employees' Choice" by Glassdoor. Our people are smart, creative, rock stars with over 400 patents and 10,000 people years of domain expertise.

What do we do?

Blue Yonder is the world leader in digital supply chain and omni-channel commerce fulfillment. Our intelligent, end-to-end platform enables retailers, manufacturers and logistics providers to seamlessly predict, pivot and fulfill customer demand. With Blue Yonder, you can make more automated, profitable business decisions that deliver greater growth and re-imagined customer experiences. Blue Yonder - Fulfill your Potential. ™ blueyonder.com

“Blue Yonder” is a trademark or registered trademark of Blue Yonder, Inc. Any trade, product or service name referenced in this document using the name “Blue Yonder” is a trademark and/or property of Blue Yonder, Inc.

Inc.

15059 N Scottsdale Rd, Ste 400

Scottsdale, AZ 85254

Read More

Follow Us

• [](https://www.youtube.com/c/BlueYonderAI "YouTube")
• [](https://twitter.com/BlueYonder_AI "X")
• [](https://www.linkedin.com/company/blueyonderai "LinkedIn")
• [](https://www.facebook.com/BlueYonderAI/ "Facebook")

© 2025 Workday, Inc. All rights reserved.