Share this Job

Senior Cyber Incident Responder

Date: Oct 7, 2021

Location: JACKSON, MI, US

Company: Consumers Energy

Join the diverse and dynamic team that powers Michigan's largest energy provider and one of the nation's largest gas and electric combination utilities.  Consumers Energy services 6.7 million of Michigan's 10 million residents - caring for our friends and neighbors in all 68 Lower Peninsula counties.  We embrace a cleaner and leaner utility vision focused on eliminating energy waste and adding renewable energy from sources such as wind and solar.

At Consumers Energy, we offer more than just a place to work. We foster a culture that supports career development, growth, and stability, and we take pride in offering our co-workers excellent benefits and compensation packages. We are deliberately creating an inclusive culture that makes our diverse team of co-workers feel valued, supported, and empowered every day. We're a company made up of thousands of people, all with different stories to share and work to do, but we stand united in our company purpose: world class performance delivering hometown service.


Consumers Energy is seeking a Senior Cyber Incident Responder professional to work on the Cyber Security Incident Response Team (CSIRT). CSIRT's primary function is to provide continuous security monitoring, triage, investigative response, threat containment and remediation for Consumers Energy. 

  • Responsible for identifying and responding to security threats.
  • Maintain responsibility for incident confirmation, response, data collection, investigation, and analysis.
  • Leverage knowledge of computer and network architecture to provide analysis during investigations, identifying adversarial activity and methods for future detection and prevention.
  • Use a combination of open source research, network and host-based forensic analysis, log review and correlation, and pcap analysis to complete investigations.
  • Compose and present reports on findings to leadership for intrusion incidents.
  • Manage incident life cycle, ensuring that all investigations are kept current and are completed.



  • Monitor and respond to security events by taking the necessary course of actions such as identifying containing, eradicating, remediating, extracting indicators, disseminating IOCs to supporting teams
  • Utilize security technologies and tools, such as SIEM, IDS/IPS, Malware Analysis platforms, logical access controls, packet capture, endpoint detection and response (EDR), and security operations management systems, in order to support security across the enterprise
  • Automate manual tasks through technology integrations via scripting and orchestration of playbooks
  • Perform Incident Handling duties and coordinate with business and application owners to contain and remediate security incidents



  • A minimum of 4 years of experience working in a Security role with hands on experience with the following:
    • Security Incident Response
    • Digital Forensics
  • Bachelor’s degree preferably in an Information Technology field or equivalent combination of education & experience



The IT Technical Job Family is utilized in Information Technology. Typically, employees in this job family are required to design or maintain technology systems, to utilize various computer software programs, and to design, develop and/or provide advice and counsel on the operation of equipment, processes and procedures.  They are responsible for ensuring adherence to laws and regulations applicable to Company employees. This job family includes Application Development, Infrastructure, Information Security, and Architecture.


Nature of Work

Duties can include network management, software development and database administration. May also provide technical support to a business or an organization's employees and train non-technical workers on the business' information systems. May design systems and assess the effectiveness of technology resources already in use or new systems that are being implemented. Determines the practicality of changes and modification of systems. Works with external partners, including consultants, agencies and vendors, to arrive at the most appropriate system or integration of multiple systems. With information technology constantly changing, must stay up-to-date on emerging technologies and the potential effectiveness of these advancements in their current system.


Essential Functions

Works closely with department managers and users to define and analyze business and operational problems, process improvement opportunities and requirements; analyzes operational and business mandates and legal requirements; identifies and analyzes complex, ambiguous and/or conflicting business process issues; advises department managers on applications development, enhancement and maintenance issues; explains technology and process options and assists managers in analysis and decision making; analyzes management information needs and recommends data and reporting processes; coordinates the development of department priorities and works within IT to align initiatives to these priorities; facilitates user meetings and joint development sessions.  Develops and refines business models and relationship diagrams; evaluates methods of improving efficiency and cost effectiveness of business, technical and operational processes; works with users to reengineer work processes; analyzes functional business requirements and translates user expectations into detailed business requirements, specifications and success criteria; works with Information Systems to develop conceptual proposals for business process automation initiatives; recommends work process and/or operational changes to complement system functionalities; serves as an advocate for department needs with IT; stays abreast of developments in departmental processes to anticipate emerging technology needs.  Participates in the development of statements of work for RFPs/RFIs; participates in evaluating vendor applications and solutions; coordinates department review of vendor deliverables for accuracy and completeness, ensuring that department needs and requirements have been met.  Develops significant application/hardware solutions to problems and addresses change request issues that require assignment of resources.  Analyzes and troubleshoots complex and sometimes urgent applications problems and errors; takes action or communicates solutions to problems; answers technical questions and provides guidance to users on system functionalities and methods for correcting problems.  Develops training materials and handouts; conducts user applications training classes and one-on-one training sessions; develops and maintains user and system documentation.  Designs and generates custom reports to meet user needs; uses reporting tools to extract user-required data.  Plans and coordinates the deployment of new technologies for client solutions; coordinates user acceptance testing and the resolution of problems identified.  Regular attendance is expected.

All qualified applicants will not be discriminated against and will receive consideration for employment without regard to protected veteran status, disability, race, color, religion, sex, sexual orientation, gender identity or national origin.

Nearest Major Market: Jackson Michigan
Nearest Secondary Market: Ann Arbor

Job Segment: Information Systems, Database, Testing, Application Developer, Technology, Research