The Security Incident Responder is responsible for detecting, analyzing, and responding to cybersecurity incidents in real time to minimize business impact and maintain compliance
Job Summary
The Security Incident Responder is responsible for detecting, analyzing, and responding to cybersecurity incidents in real time to minimize business impact and maintain compliance.
This role involves collaboration with SOC analysts, engineering teams, and cross-functional stakeholders to execute incident response playbooks and improve organizational resilience.
WPP offers a culture of creativity, belonging, continuous learning, and a hybrid work approach with exciting career opportunities and a commitment to diversity and inclusion.
Matching Summary
The Security Incident Responder is responsible for detecting, analyzing, and responding to cybersecurity incidents in real time to minimize business impact and maintain compliance.
Skills & Requirements
Must-have
SIEM, SOAR, and EDR platform monitoring
Incident response playbook execution
Forensic analysis and evidence collection
Scripting and automation with Python and PowerShell
Threat intelligence and MITRE ATT&CK integration
Collaboration with IT, Legal, and Risk teams
Nice-to-have
Calm and decisive under pressure
Strong analytical and problem-solving skills
Automation-first mindset
Knowledge sharing and training
AI/ML-driven analytics utilization
Hybrid work environment with office presence
Key Requirements
Familiarity with NIST and ISO27035 frameworks
GIAC GCIH, GCFA, or equivalent certifications preferred
Experience with forensic tools
Ability to manage multiple incidents simultaneously