The Security Incident Responder is responsible for detecting, analyzing, and responding to cybersecurity incidents in real time to minimize business impact and ensure compliance
Job Summary
The Security Incident Responder is responsible for detecting, analyzing, and responding to cybersecurity incidents in real time to minimize business impact and ensure compliance.
The role involves collaboration with SOC analysts, engineering teams, and cross-functional stakeholders to execute incident response playbooks and improve organizational resilience.
WPP offers a culture of creativity, belonging, and continuous learning with opportunities to work on challenging and stimulating projects at a global scale.
Matching Summary
The Security Incident Responder is responsible for detecting, analyzing, and responding to cybersecurity incidents in real time to minimize business impact and ensure compliance.
Skills & Requirements
Must-have
SIEM, SOAR, and EDR platform monitoring
Incident response playbook execution
Forensic analysis and evidence collection
Scripting and automation with Python and PowerShell
Threat intelligence integration using MITRE ATT&CK
Collaboration with IT, Legal, and Risk teams
Nice-to-have
Calm and decisive under pressure
Strong analytical and problem-solving skills
Automation-first mindset
Inclusive and collaborative culture
Creative and optimistic approach
Hybrid work environment with office presence
Key Requirements
Knowledge of incident response frameworks NIST and ISO27035
Proficiency in scripting and automation
Preferred GIAC GCIH, GCFA, or equivalent certifications