The role involves leading incident response activities including triage, containment, eradication, and recovery while conducting thorough breach investigations
Job Summary
The role involves leading incident response activities including triage, containment, eradication, and recovery while conducting thorough breach investigations.
Candidates will develop and maintain SOC compliance policies, conduct regular audits, and utilize SIEM solutions for continuous threat monitoring.
The position requires strong analytical skills to leverage DFIR tools for digital evidence analysis and effective communication with technical and non-technical stakeholders.
Matching Summary
The role involves leading incident response activities including triage, containment, eradication, and recovery while conducting thorough breach investigations.
Skills & Requirements
Must-have
2-5 years SOC environment experience
Incident response and breach investigations
DFIR tools proficiency (EnCase, FTK, Autopsy)
SIEM solutions expertise (Splunk, QRadar)
SOC compliance policy development
Nice-to-have
Scripting languages for automation
GRC tools familiarity (RSA Archer)
Training program delivery skills
Continuous improvement initiatives
Cross-functional collaboration abilities
Key Requirements
Bachelor's degree in Information Security or Computer Science
2-5 years of hands-on SOC and incident response experience
Relevant certifications such as CISA, CISSP, or GCIH preferred