The Security Incident Responder is responsible for detecting, analyzing, and responding to cybersecurity incidents in real time to minimize business impact and ensure compliance
Job Summary
The Security Incident Responder is responsible for detecting, analyzing, and responding to cybersecurity incidents in real time to minimize business impact and ensure compliance.
The role involves collaboration with SOC analysts, engineering teams, and cross-functional stakeholders to execute incident response playbooks and improve organizational resilience.
WPP offers a culture of creativity, belonging, continuous learning, and a hybrid work approach with teams in the office around four days a week.
Matching Summary
The Security Incident Responder is responsible for detecting, analyzing, and responding to cybersecurity incidents in real time to minimize business impact and ensure compliance.
Skills & Requirements
Must-have
SIEM, SOAR, and EDR platforms
Incident response playbooks execution
Forensic analysis and evidence collection
Scripting and automation with Python and PowerShell
MITRE ATT&CK and threat intelligence integration
Nice-to-have
Calm and decisive under pressure
Strong analytical and problem-solving skills
Automation-first mindset
Collaborative and inclusive culture
Effective stakeholder communication
Key Requirements
Familiarity with NIST and ISO27035 frameworks
GIAC GCIH, GCFA, or equivalent certifications preferred
Ability to manage multiple incidents simultaneously
Experience with post-incident reviews and root cause analysis