Incident Response Analyst at State Farm Mutual Automobile Insurance Company – Bloomington, Illinois

Location US-IL-Bloomington;US-TX-Richardson
Job Category Technology and UX
Position Type Regular Full Time
Req ID 44173
Overview

Being good neighbors – helping people, investing in our communities, and making the world a better place – is who we are at State Farm. It is at the core of how we operate and the reason for our success. Come join a #1 team and do some good!

HYBRID Qualified candidates must live within a 180-mile radius of a hub location listed below and should plan to spend time working from home and some time working in the office as part of our hybrid work environment.
HUB LOCATIONS: Bloomington, IL; Richardson

SPONSORSHIP: Applicants for this position are required to be eligible to lawfully work in the U.S. immediately; employer will not sponsor applicants for U.S. work authorization (e.g. H-1B visa) for this opportunity.

Responsibilities

Join our dynamic cybersecurity team as an Information Security Incident Responder and play a critical role in defending our organization against complex cyber threats. You will leverage cutting-edge Security Information and Event Management (SIEM) tools to investigate and mitigate security events across diverse technologies, applying deep expertise in threat tactics, techniques, and procedures. This role offers the opportunity to lead incident response efforts, conduct cyber forensics, reverse engineer malware, and design simulated security exercises to enhance enterprise readiness. Collaborate with internal teams and external partners to continuously improve our cyber resiliency posture while staying ahead of evolving threats. If you’re passionate about protecting critical assets and driving strategic security initiatives in a fast-paced environment, we want to hear from you!

Qualifications

Key Responsibilities:

• Perform endpoint incident detection, triage, and in-depth investigation on Linux, Windows, and MacOS platforms.
• Analyze endpoint telemetry and logs to identify indicators of compromise (IoCs) and attacker tactics, techniques, and procedures (TTPs).
• Conduct forensic analysis using endpoint detection and response (EDR) tools and native OS utilities.
• Lead containment, eradication, and recovery efforts for endpoint security incidents.
• Collaborate with threat intelligence and SOC teams to improve detection and response capabilities.
• Develop and maintain incident response playbooks, runbooks, and automation scripts.
• Support proactive threat hunting initiatives focused on endpoint environments.
• Document investigations and prepare detailed incident reports for technical teams and leadership.
• Stay current on emerging endpoint threats and vulnerabilities across all supported OS platforms.

Required Qualifications:

• Minimum 3+ years of experience in endpoint incident response or digital forensics in an enterprise environment.
• Strong hands-on experience with Windows, Linux, and MacOS endpoint architectures and security features.
• Proficiency with EDR platforms (e.g., CrowdStrike, Carbon Black, SentinelOne, Microsoft Defender ATP, or similar).
• Solid understanding of OS internals, including file systems, processes, registry (Windows), system logs, and security mechanisms.
• Experience using forensic tools and techniques for memory analysis, disk imaging, and log correlation.
• Familiarity with scripting languages (e.g., Python, PowerShell, Bash) to develop automation and response tools.
• Knowledge of common attack vectors and malware behaviors targeting endpoint systems.
• Ability to work under pressure in a fast-paced incident response environment.
• Strong analytical, problem-solving, and communication skills.
• Relevant certifications preferred (e.g., GIAC, GCFA, GCIH, EnCE, OSCP, or similar).

Desired Skills:

• Experience with threat hunting and anomaly detection on endpoint data.
• Strong hands-on experience with Linux, Windows, and MacOS endpoint architectures and security features.
• Knowledge of cloud infrastructure and endpoint security in cloud environments (AWS, Azure, GCP).
• Familiarity with SIEM and SOAR platforms and their integration with endpoint data.
• Understanding of network fundamentals and how endpoint activity correlates with network events.

Our Benefits

Because work-life balance is a priority at State Farm, compensation is based on our standard 38:45-hour work week!

• Potential starting salary range: $126,000 - $150,000
• Starting salary will be based on skills, background, and experience
• High end of the range limited to applicants with significant relevant experience
• Potential yearly incentive pay up to 15% of base salary

At State Farm, we offer more than just a paycheck. Check out our suite of benefits designed to give you the flexibility you need to take care of you and your family!

• Get Paid! On top of our competitive pay, you are eligible for an annual raise and bonus.
• Stay Well! Focus on you and your family’s health with our robust health and wellbeing programs. State Farm pays most of your healthcare premium, and we offer multiple healthcare plan options, including a high deductible plan. All medical plans provide 100% coverage for in-network preventative care, AND you and your family have access to vision, dental, telemedicine, 24/7 mental health professionals, and much more!
• Develop and Grow! Take advantage of educational benefits like industry leading training programs, top-notch tuition assistance programs, employee resource groups, and mentoring.
• Plan Ahead! Plan for those big moments in life with benefits like fertility/IVF/adoption assistance, college coaching, national discount programs, interactive monthly financial workshops, free financial coaching, and more. You can also start a savings account or consider financing through our State Farm Federal Credit Union!
• Take a Little “You” Time! You will have access to our generous time off policies designed so you can plan around holidays, family events, volunteering, or just to take a relaxing day off. With the opportunity to initially earn up to 20 days annually plus parental leave, paid holidays, celebration day, life leave (40 hours/year), bereavement leave, and community service/education support days, there will be plenty of time for you!
• Give Back! We offer several ways to give back through our Matching Gift Program, Good Neighbor Grant Program, and the Employee Assistance Fund.
• Finish Strong! Plan for retirement using free financial advisors and a 401(k) plan with company contributions of up to 7% of your salary.

Visit our State Farm Careers page for more information on our benefits, locations, and the hiring process of joining the State Farm team!