Incident Responder (IT CyberSec)

We are seeking an experienced and highly skilled Incident Responder to join our Security and Compliance team. The Incident Responder will play a critical role in protecting our organization by detecting, responding to, and mitigating cybersecurity threats.

This role requires a keen understanding of security incident response protocols and experience in handling a wide range of cybersecurity incidents, from phishing attacks to advanced persistent threats (APTs). 

What You'll Do:

• Incident Detection and Response
• Gather, analyze, and disseminate threat intelligence to improve the organization’s security posture and prepare for potential attacks. 
• Perform digital forensics on compromised systems to identify the root cause of security incidents, document findings, and provide recommendations.
• Work closely with the vulnerability management team to identify, prioritize, and remediate security vulnerabilities that may be exploited by attackers.
• Assist in developing automation scripts and playbooks for common incidents to streamline response efforts and reduce incident resolution time.
• Conduct incident response tabletop exercises and training for staff to improve readiness and ensure all stakeholders are familiar with incident response protocols.
• Document all phases of incident response activities, ensuring detailed records of actions taken and evidence gathered, and provide reports to senior management.

What You Need To Have:

• 3+ years of experience in incident response, security operations, or digital forensics. 
• Strong knowledge of cybersecurity frameworks, incident response methodologies, and forensic investigation techniques. 
• Hands-on experience with SIEM, IDS/IPS, and EDR platforms. 
• Understanding of network protocols, operating systems (Windows, Linux), and cloud environments (Azure, AWS). 
• Excellent problem-solving skills and the ability to remain calm under pressure.
• Strong documentation and communication skills for clear reporting to technical and non-technical stakeholders.

Note: This is a permanent remote role. You will be supporting our US-based client who value their people.