Home › Companies › B321146b 2946 4cb6 B259 7f781d798cf3 19000101 000001 › INCIDENT RESPONSE CONSULTANT L1
INCIDENT RESPONSE CONSULTANT L1
B321146b 2946 4cb6 B259 7f781d798cf3 19000101 000001 · Plano, Texas, Plano, TX, US, Plano, TX · Remote · Active · ADP Workforce Now Recruiting
Job facts
| Field | Value |
|---|---|
| Company | B321146b 2946 4cb6 B259 7f781d798cf3 19000101 000001 |
| Title | INCIDENT RESPONSE CONSULTANT L1 |
| Normalized title | - |
| Department / team | - |
| Location | Plano, TX, United States |
| Work model | Remote / Remote |
| Employment type | Full Time |
| Salary | - |
| Status | active |
| ATS provider | ADP Workforce Now Recruiting |
| Posted / first seen | 2026-04-01 / 2026-05-31 |
| Changed / last seen | 2026-06-06 / 2026-06-06 |
Related slices
| Page | What it contains | Open |
|---|---|---|
| Company jobs | Active postings from B321146b 2946 4cb6 B259 7f781d798cf3 19000101 000001. | Open |
| Company breakdowns | Role, location, ATS, and work model facets for this company. | Open |
| ATS provider jobs | Active postings observed through ADP Workforce Now Recruiting. | Open |
| Provider filtered search | The same provider as a filtered job collection. | Open |
| City jobs | Active postings in Plano. | Open |
| Work model jobs | Active Remote postings. | Open |
| Lifecycle events | Open, update, close, and reopen events for this posting. | Open |
| Original posting | Canonical source or apply URL captured from the ATS. | Open |
Linked records
| Company | B321146b 2946 4cb6 B259 7f781d798cf3 19000101 000001 |
| Source | 50d6c1e8-937e-4a52-830b-0c53c5ab3a80 |
| ATS provider | ADP Workforce Now Recruiting |
Description
At Armor, we are committed to making a meaningful difference in securing cyberspace. Our vision is to be the trusted protector and de facto standard that cloud-centric customers entrust with their risk. We strive to continuously evolve to be the best partner of choice, breaking norms and tirelessly innovating to stay ahead of evolving cyber threats and reshaping how we deliver customer outcomes. We are passionate about making a positive impact in the world, and we’re looking for a highly skilled and experienced talent to join our dynamic team.
Armor has unique offerings to the market so customers can a) understand their risk b) leverage Armor to co-manage their risk or c) completely outsource their risk to Armor.
Learn more at: https://www.armor.com
WORK LOCATION & SCHEDULE:
Plano, Texas: Hybrid schedule with mandatory in-office days on Tuesday, Wednesday, and Thursday. Summary
Armor is seeking an Incident Response Consultant to provide security consultation and incident response services to our managed security customers. This is an in-office position based at one of our SOC locations. This position consults with customers on security events, analyzes threats using professional judgment, and provides recommendations on detection, response, and remediation strategies. Working directly with customers across diverse environments, this role delivers expert guidance through the incident response lifecycle.
Essential Duties and Responsibilities (Additional duties may be assigned as required)
Consult with customers on security events, providing analysis and recommendations for response actions tailored to their environment. Analyze security data across SIEM, EDR, and cloud platforms to identify threats and advise on appropriate countermeasures. Provide guidance to customers through the incident response lifecycle based on NIST 800-53 and SANS best practices. Investigate potential compromises and recommend remediation strategies appropriate to customer risk tolerance and business requirements. Advise customers on security best practices, control improvements, and risk mitigation approaches. Analyze emerging threats and vulnerabilities; provide recommendations on defensive measures. Document findings, recommendations, and consultation outcomes for customer delivery. Collaborate with senior consultants on complex engagements and escalate as appropriate. REQUIRED SKILLS
Linux and Windows Server administration fundamentals. Familiarity with cloud platforms (Azure, AWS, GCP) and their security services. Working knowledge of security tools: EDR, SIEM (Sentinel, Splunk, etc.), SOAR, and threat intelligence platforms. Understanding of networking fundamentals, TCP/IP, and common attack techniques. Ability to read and modify code (Python, PowerShell, KQL) for analysis and automation. Working knowledge of git version control including branching, commits, and pull request workflows. Proficiency with AI-assisted tools (Claude Code, GitHub Copilot, or equivalent) for accelerating security analysis and task automation. Understanding of AI/LLM security risks including prompt injection, data leakage, and model limitations. Ability to critically evaluate AI-generated outputs for accuracy and security implications. Willingness to adopt agentic AI workflows and AI-augmented tooling as part of daily security operations. Analytical mindset with ability to identify indicators of compromise and correlate events across data sources. Strong communication skills with ability to convey technical concepts to diverse audiences. Customer-focused with professional consulting demeanor.
EDUCATION AND/OR EXPERIENCE
1-3 years of experience in security operations, incident response, or security consulting. Prior SOC analyst or IR experience preferred. Required certifications within 12 months: Microsoft Azure Security Technologies (AZ-500), Microsoft Security Operations Analyst (SC-200), Microsoft Identity and Access Administrator (SC-300). Certifications preferred: Security+, CySA+, CEH. Associate’s or Bachelor’s Degree in Information Technology, Cybersecurity, or related field preferred. WHY ARMOR
Join Armor if you want to be part of a company that is redefining cybersecurity. Here, you will have the opportunity to shape the future, disrupt the status quo, and be a part of a team that celebrates energy, passion, and fresh thinking. We are not looking for someone who simply fills a role – we want talent who will help us write the next chapter of our growth story.
ARMOR CORE VALUES
Commitment to Growth: A growth mindset that encourages continuous learning and improvement with adaptability in the face of challenges. Integrity Always: Sustain trust through transparency + honesty in all actions and interactions regardless of circumstances. Empathy In Action: Active understanding, compassion and support to the needs of others through genuine connection. Immediate Impact: Taking initiative with swift, informed actions to deliver positive outcomes. Follow-Through: Dedication to delivering finished results with attention to quality and detail to achieve the desired outcomes. BENEFITS OVERVIEW
Armor Offers A Strong Total Rewards Package Designed To Support Employees’ Health, Well-Being, And Financial Future. U.S. Team Members Enjoy Comprehensive Benefits Including Medical, Dental, And Vision Insurance, Life And Disability Coverage, Paid Time Off, And Professional Development Support. The Company’s Retirement Plan Includes A 401(K) With Employer Matching Contributions, Helping Employees Build Long-Term Savings As Part Of Their Financial Planning. Many Roles Also Offer Tuition Reimbursement And Work-Life Balance Perks Like Flexible Schedules And Remote Work Options.
WORK ENVIRONMENT
The work environment characteristics described here are representative of those an employee encounters while performing the essential functions of this job. The noise level in the work environment is usually low to moderate. The work environment can be either in an office setting or remotely from anywhere.
Equal opportunity employer - it is the policy of the company to comply with all employment laws and to afford equal employment opportunity to individuals in all aspects of employment, including in selection for job opportunities, without regard to race, color, religion, sex, national origin, age, disability, genetic information, veteran status, or any other consideration protected by federal, state or local laws.
Full job record
| Job ID | a6407c1c37591bbef7cfa571cfe0cf2830a7c1a6 |
| Org ID | a943fc2e-e2af-47bf-92f2-f744ab6a5661 |
| Source ID | 50d6c1e8-937e-4a52-830b-0c53c5ab3a80 |
| Board ID | 50d6c1e8-937e-4a52-830b-0c53c5ab3a80 |
| Provider | adp_workforcenow |
| Provider Job Key | 606040 |
| Title | INCIDENT RESPONSE CONSULTANT L1 |
| Normalized Title | — |
| Status | active |
| Active | yes |
| Location Text | Plano, Texas, Plano, TX, US, Plano, TX |
| Department | — |
| Team | — |
| Employment Type | full_time |
| Workplace Type | remote |
| Remote Policy | remote |
| Country | United States |
| Region | TX |
| City | Plano |
| Salary Raw | — |
| Salary Min | — |
| Salary Max | — |
| Salary Currency | — |
| Salary Period | — |
| Source URL | https://workforcenow.adp.com/mascsr/default/mdf/recruitment/recruitment.html?cid=b321146b-2946-4cb6-b259-7f781d798cf3&ccId=19000101_000001&lang=en_US&type=JS&jobId=606040&jwId=9201808710539_1 |
| Apply URL | https://workforcenow.adp.com/mascsr/default/mdf/recruitment/recruitment.html?cid=b321146b-2946-4cb6-b259-7f781d798cf3&ccId=19000101_000001&lang=en_US&type=JS&jobId=606040&jwId=9201808710539_1 |
| First Seen At | 2026-05-31 18:28:38Z |
| Last Seen At | 2026-06-06 12:09:28Z |
| Last Checked At | 2026-06-06 12:09:28Z |
| Last Changed At | 2026-06-06 12:09:28Z |
| Inactive At | — |
| Source Posted At | 2026-04-01 16:45:00Z |
| Source Updated At | — |
| Raw Payload Uri | s3://job-postings-prod-raw-590183727216/raw/provider=adp_workforcenow/board=b321146b-2946-4cb6-b259-7f781d798cf3|19000101_000001/date=2026-06-06/2026-06-06T12-09-28-222Z-f7ae2d3f0f1b98a2a86240622f85e6afe71884e68ac24cca0d07fe812d93a0e0.json |
Event Fields
{
"content_hash": "a00ea0765bf1f254258ebb99dd06a11a234704885142fa84f854510ccf86cc59",
"source_hash": "cbae7363bcfd3dd4f49288cf13e30d39785d9e69bb450c0e654ac0f057f8a881",
"last_changed_at": "2026-06-06T12:09:28.569Z",
"active_status": "active"
}Parsed Structured
{
"language": "en",
"location": {
"raw": "Plano, Texas, Plano, TX, US, Plano, TX",
"city": "Plano",
"region": "TX",
"country": "United States",
"is_remote": false,
"confidence": 0.95
},
"salary_max": null,
"salary_min": null,
"inferred_at": "2026-06-06T12:09:28.569Z",
"launch_scope": {
"reason": "english_us_canada",
"included": true,
"language": "en",
"location": {
"raw": "Plano, Texas, Plano, TX, US, Plano, TX",
"city": "Plano",
"region": "TX",
"country": "United States",
"is_remote": false,
"confidence": 0.95
},
"countries": [
"United States"
]
},
"remote_policy": "remote",
"salary_period": null,
"workplace_type": "remote",
"salary_currency": null
}Extensions
{}Native Structured
{
"detail": {
"links": [],
"itemID": "9201808710539_1",
"postDate": "2026-04-01T12:45:00.000-04:00",
"workLevelCode": {
"shortName": "Regular Full-Time"
},
"customFieldGroup": {
"dateFields": [
{
"nameCode": {
"codeValue": "PostingDate"
},
"dateValue": "2026-04-01T12:45Z"
},
{
"nameCode": {
"codeValue": "CurrentServerDateTime"
},
"dateValue": "2026-06-06T08:09Z"
}
],
"numberFields": [
{
"numberValue": 0,
"categoryCode": {
"codeValue": "ApplicantCount"
}
},
{
"categoryCode": {
"codeValue": "AwardAmount"
}
}
],
"stringFields": [
{
"nameCode": {
"codeValue": "ExternalJobID"
},
"stringValue": "606040"
},
{
"nameCode": {
"codeValue": "CareerCenterRefId"
}
},
{
"nameCode": {
"codeValue": "GuidelineOid"
}
},
{
"nameCode": {
"codeValue": "CurrencySymbolOrCode"
}
},
{
"nameCode": {
"codeValue": "HomeDepartment"
},
"stringValue": ""
},
{
"nameCode": {
"codeValue": "JobClass"
},
"stringValue": "Security"
}
],
"indicatorFields": [
{
"nameCode": {
"codeValue": "PriortyStatusFlag"
},
"indicatorValue": false
},
{
"nameCode": {
"codeValue": "InternalPostingFlag"
},
"indicatorValue": false
},
{
"nameCode": {
"codeValue": "MinValue"
},
"indicatorValue": true
},
{
"nameCode": {
"codeValue": "IsVsidApplicable"
},
"indicatorValue": true
},
{
"nameCode": {
"codeValue": "IsSassDlReqForExtPostFlag"
},
"indicatorValue": false
},
{
"nameCode": {
"codeValue": "IsSassDlReqForIntPostFlag"
},
"indicatorValue": false
},
{
"nameCode": {
"codeValue": "IsMonetaryFlag"
},
"indicatorValue": false
},
{
"nameCode": {
"codeValue": "IsNonMonetaryFlag"
},
"indicatorValue": false
}
]
},
"requisitionTitle": "INCIDENT RESPONSE CONSULTANT L1",
"clientRequisitionID": "1231",
"organizationalUnits": [],
"postingInstructions": [],
"additionalProperties": {},
"requisitionLocations": [
{
"address": {
"cityName": "Plano",
"postalCode": "75024",
"countrySubdivisionLevel1": {
"codeValue": "TX"
}
},
"nameCode": {
"shortName": "Plano, Texas, Plano, TX, US"
},
"aliasNames": []
}
],
"screeningRequirements": [],
"requisitionDescription": "<div><div><div><div><p data-pasted=\"true\">At Armor, we are committed to making a meaningful difference in securing cyberspace. Our vision is to be the trusted protector and de facto standard that cloud-centric customers entrust with their risk. We strive to continuously evolve to be the best partner of choice, breaking norms and tirelessly innovating to stay ahead of evolving cyber threats and reshaping how we deliver customer outcomes. We are passionate about making a positive impact in the world, and we’re looking for a highly skilled and experienced talent to join our dynamic team.</p><p>Armor has unique offerings to the market so customers can a) understand their risk b) leverage Armor to co-manage their risk or c) completely outsource their risk to Armor.</p><p>Learn more at: <a href=\"https://www.armor.com\" target=\"_blank\">https://www.armor.com</a> </p><p><strong>WORK LOCATION & SCHEDULE:</strong></p><ul><li>Plano, Texas: Hybrid schedule with mandatory in-office days on Tuesday, Wednesday, and Thursday.</li></ul><p><strong>Summary</strong></p><p>Armor is seeking an Incident Response Consultant to provide security consultation and incident response services to our managed security customers. This is an in-office position based at one of our SOC locations. This position consults with customers on security events, analyzes threats using professional judgment, and provides recommendations on detection, response, and remediation strategies. Working directly with customers across diverse environments, this role delivers expert guidance through the incident response lifecycle.<strong><br> <br></strong><strong>Essential Duties and Responsibilities</strong><strong> </strong>(Additional duties may be assigned as required)</p><ul><li>Consult with customers on security events, providing analysis and recommendations for response actions tailored to their environment.</li><li>Analyze security data across SIEM, EDR, and cloud platforms to identify threats and advise on appropriate countermeasures.</li><li>Provide guidance to customers through the incident response lifecycle based on NIST 800-53 and SANS best practices.</li><li>Investigate potential compromises and recommend remediation strategies appropriate to customer risk tolerance and business requirements.</li><li>Advise customers on security best practices, control improvements, and risk mitigation approaches.</li><li>Analyze emerging threats and vulnerabilities; provide recommendations on defensive measures.</li><li>Document findings, recommendations, and consultation outcomes for customer delivery.</li><li>Collaborate with senior consultants on complex engagements and escalate as appropriate.<strong> </strong></li></ul><p><strong>REQUIRED SKILLS</strong></p><ul><li>Linux and Windows Server administration fundamentals.</li><li>Familiarity with cloud platforms (Azure, AWS, GCP) and their security services.</li><li>Working knowledge of security tools: EDR, SIEM (Sentinel, Splunk, etc.), SOAR, and threat intelligence platforms.</li><li>Understanding of networking fundamentals, TCP/IP, and common attack techniques.</li><li>Ability to read and modify code (Python, PowerShell, KQL) for analysis and automation.</li><li>Working knowledge of git version control including branching, commits, and pull request workflows.</li><li>Proficiency with AI-assisted tools (Claude Code, GitHub Copilot, or equivalent) for accelerating security analysis and task automation.</li><li>Understanding of AI/LLM security risks including prompt injection, data leakage, and model limitations.</li><li>Ability to critically evaluate AI-generated outputs for accuracy and security implications.</li><li>Willingness to adopt agentic AI workflows and AI-augmented tooling as part of daily security operations.</li><li>Analytical mindset with ability to identify indicators of compromise and correlate events across data sources.</li><li>Strong communication skills with ability to convey technical concepts to diverse audiences.</li><li>Customer-focused with professional consulting demeanor.</li></ul><p><br></p><p><strong>EDUCATION AND/OR EXPERIENCE</strong></p><ul><li>1-3 years of experience in security operations, incident response, or security consulting. Prior SOC analyst or IR experience preferred.</li><li>Required certifications within 12 months: Microsoft Azure Security Technologies (AZ-500), Microsoft Security Operations Analyst (SC-200), Microsoft Identity and Access Administrator (SC-300).</li><li>Certifications preferred: Security+, CySA+, CEH.</li><li>Associate’s or Bachelor’s Degree in Information Technology, Cybersecurity, or related field preferred.</li></ul><p><strong>WHY ARMOR</strong><strong><br></strong>Join Armor if you want to be part of a company that is redefining cybersecurity. Here, you will have the opportunity to shape the future, disrupt the status quo, and be a part of a team that celebrates energy, passion, and fresh thinking. We are not looking for someone who simply fills a role – we want talent who will help us write the next chapter of our growth story.</p><p><br><strong>ARMOR CORE VALUES</strong></p><ul><li><strong>Commitment to Growth:</strong> A growth mindset that encourages continuous learning and improvement with adaptability in the face of challenges.</li><li><strong>Integrity Always:</strong> Sustain trust through transparency + honesty in all actions and interactions regardless of circumstances.</li><li><strong>Empathy In Action:</strong> Active understanding, compassion and support to the needs of others through genuine connection.</li><li><strong>Immediate Impact:</strong> Taking initiative with swift, informed actions to deliver positive outcomes.</li><li><strong>Follow-Through:</strong> Dedication to delivering finished results with attention to quality and detail to achieve the desired outcomes.</li></ul><p data-pasted=\"true\"><strong>BENEFITS OVERVIEW</strong></p><p>Armor Offers A Strong Total Rewards Package Designed To Support Employees’ Health, Well-Being, And Financial Future. U.S. Team Members Enjoy Comprehensive Benefits Including Medical, Dental, And Vision Insurance, Life And Disability Coverage, Paid Time Off, And Professional Development Support. The Company’s Retirement Plan Includes A 401(K) With Employer Matching Contributions, Helping Employees Build Long-Term Savings As Part Of Their Financial Planning. Many Roles Also Offer Tuition Reimbursement And Work-Life Balance Perks Like Flexible Schedules And Remote Work Options.</p><p><strong>WORK ENVIRONMENT</strong></p><p>The work environment characteristics described here are representative of those an employee encounters while performing the essential functions of this job. The noise level in the work environment is usually low to moderate. The work environment can be either in an office setting or remotely from anywhere.</p><p><strong>Equal opportunity employer</strong> - it is the policy of the company to comply with all employment laws and to afford equal employment opportunity to individuals in all aspects of employment, including in selection for job opportunities, without regard to race, color, religion, sex, national origin, age, disability, genetic information, veteran status, or any other consideration protected by federal, state or local laws.</p><p><br></p><p> </p></div></div></div></div>\n",
"sponsoredVisaTypeCodes": []
},
"list_job": {
"links": [],
"itemID": "9201808710539_1",
"postDate": "2026-04-01T12:45:00.000-04:00",
"workLevelCode": {
"shortName": "Regular Full-Time"
},
"customFieldGroup": {
"dateFields": [
{
"nameCode": {
"codeValue": "PostingDate"
},
"dateValue": "2026-04-01T12:45Z"
},
{
"nameCode": {
"codeValue": "CurrentServerDateTime"
},
"dateValue": "2026-06-06T08:09Z"
}
],
"numberFields": [
{
"numberValue": 0,
"categoryCode": {
"codeValue": "ApplicantCount"
}
},
{
"categoryCode": {
"codeValue": "AwardAmount"
}
}
],
"stringFields": [
{
"nameCode": {
"codeValue": "ExternalJobID"
},
"stringValue": "606040"
},
{
"nameCode": {
"codeValue": "CareerCenterRefId"
}
},
{
"nameCode": {
"codeValue": "GuidelineOid"
}
},
{
"nameCode": {
"codeValue": "CurrencySymbolOrCode"
}
},
{
"nameCode": {
"codeValue": "HomeDepartment"
},
"stringValue": ""
},
{
"nameCode": {
"codeValue": "JobClass"
},
"stringValue": "Security"
}
],
"indicatorFields": [
{
"nameCode": {
"codeValue": "PriortyStatusFlag"
},
"indicatorValue": false
},
{
"nameCode": {
"codeValue": "InternalPostingFlag"
},
"indicatorValue": false
},
{
"nameCode": {
"codeValue": "MinValue"
},
"indicatorValue": true
},
{
"nameCode": {
"codeValue": "IsVsidApplicable"
},
"indicatorValue": true
},
{
"nameCode": {
"codeValue": "IsSassDlReqForExtPostFlag"
},
"indicatorValue": false
},
{
"nameCode": {
"codeValue": "IsSassDlReqForIntPostFlag"
},
"indicatorValue": false
},
{
"nameCode": {
"codeValue": "IsMonetaryFlag"
},
"indicatorValue": false
},
{
"nameCode": {
"codeValue": "IsNonMonetaryFlag"
},
"indicatorValue": false
}
]
},
"requisitionTitle": "INCIDENT RESPONSE CONSULTANT L1",
"clientRequisitionID": "1231",
"organizationalUnits": [],
"postingInstructions": [],
"additionalProperties": {},
"requisitionLocations": [
{
"address": {
"cityName": "Plano",
"postalCode": "75024",
"countrySubdivisionLevel1": {
"codeValue": "TX"
}
},
"nameCode": {
"shortName": "Plano, Texas, Plano, TX, US"
},
"aliasNames": []
}
],
"screeningRequirements": [],
"sponsoredVisaTypeCodes": []
},
"detail_meta": {
"url": "https://workforcenow.adp.com/mascsr/default/careercenter/public/events/staffing/v1/job-requisitions/606040?cid=b321146b-2946-4cb6-b259-7f781d798cf3&ccId=19000101_000001&lang=en_US&locale=en_US",
"http_status": 200,
"content_type": "application/json;charset=UTF-8",
"response_bytes": 10942
},
"detail_errors": []
}Get this page with API
Rendered from the bluedoor Job Postings API. Reproduce it:
GET https://api.bluedoor.sh/job-postings/v1/jobs/a6407c1c37591bbef7cfa571cfe0cf2830a7c1a6?include=descriptionJSONGET https://api.bluedoor.sh/job-postings/v1/orgs/a943fc2e-e2af-47bf-92f2-f744ab6a5661JSONGET https://api.bluedoor.sh/job-postings/v1/sources/50d6c1e8-937e-4a52-830b-0c53c5ab3a80JSONGET https://api.bluedoor.sh/job-postings/v1/jobs/a6407c1c37591bbef7cfa571cfe0cf2830a7c1a6/eventsJSON