The Security Incident Responder is responsible for detecting, analyzing, and responding to cybersecurity incidents in real time to minimize business impact and maintain compliance
Job Summary
The Security Incident Responder is responsible for detecting, analyzing, and responding to cybersecurity incidents in real time to minimize business impact and maintain compliance.
The role involves collaboration with SOC analysts, engineering teams, and cross-functional stakeholders to execute incident response playbooks and improve organizational resilience.
WPP offers a culture of creativity, belonging, continuous learning, and a hybrid work approach with teams in the office around four days a week.
Matching Summary
The Security Incident Responder is responsible for detecting, analyzing, and responding to cybersecurity incidents in real time to minimize business impact and maintain compliance.
Skills & Requirements
Must-have
SIEM, SOAR, and EDR platforms
Incident response playbooks execution
Forensic analysis and evidence collection
Scripting and automation with Python and PowerShell
Threat intelligence integration using MITRE ATT&CK
Collaboration with IT, Legal, and Risk teams
Nice-to-have
Calm and decisive under pressure
Strong analytical and problem-solving skills
Automation-first mindset
Knowledge sharing and training
AI/ML-driven analytics utilization
Hybrid work environment
Key Requirements
Familiarity with NIST and ISO27035 frameworks
GIAC GCIH, GCFA, or equivalent advanced security certifications preferred
Experience with forensic tools
Ability to manage multiple incidents simultaneously