Key Responsibilities
- Lead incident response efforts for security breaches and system outages
- Develop and maintain incident response playbooks and procedures
- Investigate security incidents using forensic analysis and threat intelligence
- Collaborate with engineering teams to implement remediation strategies
- Monitor and analyze security alerts using SIEM tools
- Conduct post-incident reviews to improve detection and response capabilities
Requirements
- 5+ years of experience in security operations or incident response
- Expertise in forensic analysis, threat detection, and incident handling
- Proficiency in scripting (Python, Bash) and security tools (SIEM, EDR)
- Strong understanding of network protocols, malware analysis, and attack vectors
- Experience with compliance frameworks (NIST, ISO 27001) and risk assessment