The Security Incident Responder is responsible for detecting, analyzing, and responding to cybersecurity incidents in real time to minimize business impact and maintain compliance
Job Summary
The Security Incident Responder is responsible for detecting, analyzing, and responding to cybersecurity incidents in real time to minimize business impact and maintain compliance.
The role involves collaboration with SOC analysts, engineering teams, and cross-functional stakeholders to execute incident response playbooks and continuously improve organizational resilience.
WPP offers a culture of creativity, belonging, continuous learning, and a hybrid work approach with opportunities to work on challenging and stimulating projects at scale.
Matching Summary
The Security Incident Responder is responsible for detecting, analyzing, and responding to cybersecurity incidents in real time to minimize business impact and maintain compliance.
Skills & Requirements
Must-have
SIEM, SOAR, and EDR platform monitoring
Incident response playbook execution
Forensic analysis and evidence collection
Scripting and automation with Python and PowerShell
Incident response frameworks familiarity
Threat intelligence integration using MITRE ATT&CK
Nice-to-have
Calm and decisive under pressure
Strong analytical and problem-solving skills
Automation-first mindset
Effective stakeholder communication
Collaboration with cross-functional teams
Knowledge sharing and training
Key Requirements
GIAC GCIH, GCFA, or equivalent certifications
Familiarity with NIST and ISO27035 frameworks
Ability to manage multiple incidents simultaneously
Experience with forensic tools and evidence handling