Cyber Incident Response Lead

Job Summary

A company is looking for an Incident Response Lead to manage cybersecurity incident responses and improve security protocols.

Key Responsibilities

• Lead end-to-end incident response activities, including triage, containment, eradication, and recovery
• Develop and enhance incident response playbooks and coordinate efforts among technical teams and stakeholders during incidents
• Conduct threat hunting and mentor junior analysts while managing relationships with external partners

Required Qualifications

• 7+ years of experience in cybersecurity, with at least 5 years in incident response or SOC lead roles
• Deep hands-on experience with SIEM platforms, EDR tools, and network forensics
• Strong understanding of attacker tactics, techniques, and procedures (TTPs) as per the MITRE ATT&CK framework
• Proficiency in digital forensics and malware triage across various environments
• Relevant certifications such as GCIH, GCFE, GCFA, CISSP, or equivalent