Lead, Cybersecurity Incident Response

Job Description

Job Title

Lead, Cybersecurity Incident Response

Job Description & Requirements

Key Responsibilities

Lead the response to cybersecurity incidents, including malware infections, data breaches, and insider threats.

Minimum of 5 years of experience in lead Cybersecurity incident response

• Strong expertise in incident response, threat hunting, and forensic analysis.
• Experience with SIEM tools (e.g., Elastic, Splunk).
• Proficiency in network security, malware analysis, and log analysis.
• Familiarity with cloud security (AWS, Azure, GCP) and container security.
• Experience with cloud security tools and AI-powered security analytics (AWS Guard Duty, Azure Sentinel, Google Chronicle).
• Familiarity with AI / ML-driven anomaly detection and behavioral analysis techniques.
• Knowledge of security solutions (EDR, XDR, NDR, WAF, Proxy, Firewall, Email Security).
• Scripting and automation skills (Python, PowerShell, Bash).
• Deep understanding of the MITRE ATT&CK framework, cyber kill chain, and machine learning models for cybersecurity applications.
• Excellent communication and report-writing skills and the ability to work under pressure scenarios.