CSIRT Incident Responder

Tasks

• Assess threat scope and severity
• Assist in incident containment and recovery
• Collaborate with security, IT, and business teams
• Correlate logs to identify incidents
• Document incident details and lessons
• Identify operational improvements
• Investigate cybersecurity incidents
• Leverage automation tools
• Perform security alert triage and analysis
• Proactively hunt threats
• Provide incident updates and analysis
• Refine threat detection and alert rules
• Stay informed on emerging threats
• Support digital forensics and evidence gathering
• Support on-call incident response
• Utilize SIEM and SOAR platforms

Perks/Benefits

• Hybrid work

Skills/Tech-stack

Apache Spark | Automation | Big Data | C/C++ | Cloud Security | Cybersecurity Principles | Digital forensics | End Point Security | Evidence handling | Incident Response | Kafka | Log Correlation | Malware analysis | Powershell | Python | QRadar | SIEM | SOAR | Security operations | Sentinel | Splunk | Threat Intelligence | Threat detection | Threat hunting