SR CSIRT Responder

About The Position

Requirements

• Foundational understanding of cybersecurity concepts, principles, and best practices
• Familiarity with security technologies such as SIEM platforms, IDS/IPS, and endpoint detection and response (EDR) tools
• Strong digital forensics and log analysis skills
• Knowledge of common cyber threats, attack vectors, and adversary tactics
• Excellent analytical, critical thinking, and problem-solving abilities
• Strong written and verbal communication skills, with the ability to document findings clearly and concisely
• Ability to work both independently and collaboratively within a team environment
• A relationship-oriented mindset with a commitment to cross-functional partnership
• Demonstrable ability to prioritize in a fast-paced, dynamic environment
• Intellectual curiosity and a passion for continuous learning in the cybersecurity field
• Flexibility to support critical incidents outside of standard business hours as needed

Responsibilities

• Investigate and assess the severity of security incidents, classifying them according to established processes.
• Develop and present comprehensive and accurate reports, training, and presentations for both technical and non-technical audiences .
• Work closely with the Threat Hunting Team to conduct proactive and iterative hunts through cloud and enterprise networks, endpoints, or datasets to detect malicious, suspicious, or risky activities that have evaded detection by existing tools .
• Conduct log analysis and digital forensics in support of incident response investigations .
• Maintain detailed records of incident response activities, including timelines, actions taken, and evidence collected.
• Assist in implementing mitigation strategies and countermeasures to contain and eradicate security threats.
• Stay up to date with the latest security threats and trends, sharing knowledge with the team.