The Security Incident Responder is responsible for detecting, analyzing, and responding to cybersecurity incidents in real time to minimize business impact and ensure compliance
Job Summary
The Security Incident Responder is responsible for detecting, analyzing, and responding to cybersecurity incidents in real time to minimize business impact and ensure compliance.
The role offers the opportunity to work with passionate, inspired people in a culture that fosters creativity, collaboration, and continuous learning.
WPP provides a hybrid work approach with teams in the office around four days a week and is committed to equal opportunity and fostering a culture of respect and belonging.
Matching Summary
The Security Incident Responder is responsible for detecting, analyzing, and responding to cybersecurity incidents in real time to minimize business impact and ensure compliance.
Skills & Requirements
Must-have
SIEM, SOAR, and EDR platforms monitoring
Incident response playbook execution
Forensic analysis and evidence collection
Scripting and automation with Python and PowerShell
Incident detection and analysis
Collaboration with IT, Legal, and Risk teams
Nice-to-have
Calm and decisive under pressure
Strong analytical and problem-solving skills
Automation-first mindset
Inclusive and collaborative culture
Creative and optimistic approach
Hybrid work environment
Key Requirements
Familiarity with NIST and ISO27035 frameworks
GIAC GCIH, GCFA, or equivalent certifications preferred
Proficiency in MITRE ATT&CK framework
Experience in forensic tools and threat intelligence integration