Cyber Incident Response Lead

Job Summary

A company is looking for an Incident Response Lead to manage cybersecurity incident responses.

Key Responsibilities

• Lead end-to-end incident response activities, including triage, containment, eradication, recovery, and post-incident review
• Develop and improve incident response playbooks and coordinate communication among technical teams and stakeholders during incidents
• Conduct threat hunting exercises, mentor junior analysts, and manage relationships with external forensics firms and law enforcement

Required Qualifications

• 7+ years of experience in cybersecurity, with at least 5 years in incident response or SOC lead roles
• Deep hands-on experience with SIEM platforms, EDR tools, and network forensics
• Strong understanding of attacker tactics, techniques, and procedures (TTPs) as per the MITRE ATT&CK framework
• Proficiency in digital forensics, malware triage, and log analysis across various environments
• Relevant certifications such as GCIH, GCFE, GCFA, CISSP, or equivalent