Incident Response Associate

As an Incident Response Security Analyst, you will play a crucial role in assisting with the detection, investigation, and response to security incidents. Under the guidance of senior team members, you will gain hands-on experience in cybersecurity operations and develop your skills in threat analysis, digital forensics, and incident management.

Key Responsibilities:

• Monitoring and Detection:
• Assist in monitoring security alerts and events using security tools and technologies.
• Identify potential security incidents by analyzing logs, alerts, and other security data.
• Escalate suspicious activities to senior team members for further investigation.
• Creation of Playbooks / Runbooks
• Monitor and configure various Security solutions as needed under the program
• Incident Response Support:
• Participate in the initial response to security incidents, including containment, eradication, and recovery efforts.
• Assist in the documentation and reporting of security incidents, including post-incident analysis.
• Collaborate with team members to improve incident response procedures and playbooks.
• Threat Analysis and Intelligence:
• Support threat hunting activities to identify potential risks and vulnerabilities within the organization.
• Assist in analyzing security threat intelligence to understand emerging threats and attack vectors.
• Stay informed about the latest cybersecurity trends, threats, and best practices.
• Learning and Development:
• Actively participate in training sessions and mentorship programs to build your cybersecurity knowledge and skills.
• Work closely with senior analysts to learn about digital forensics, threat detection, and incident response methodologies.
• Contribute to the development and refinement of incident response processes.
• Collaboration and Communication:
• Collaborate with IT, network, and security teams to ensure effective incident response and remediation.
• Communicate findings and observations to senior team members and other stakeholders.
• Assist in preparing security awareness materials for employees.
• Reporting and Dashboarding to key stakeholders

Qualifications:

• Masters / Bachelors degree in Cybersecurity, Computer Science, Information Technology, or a related field.
• Strong understanding of cybersecurity principles, including systems / network / cloud security, threat detection, and incident response.
• Familiarity with security tools and technologies such as Firewalls, WAF, SIEM, IDS/IPS, CTEM / EASM and EDR / XDR etc.
• Strong analytical and problem-solving skills with a keen attention to detail.
• Excellent communication skills, both written and verbal.

Qualifications and Skills:

Experience : 2-4 Years

Qualification : Bachelor's or Master's degree

Language : Good written and communication skills (English)

Competencies : CompTIA Security+, CEH, ECIH, CHFI

Preferred Skills:

• Basic knowledge of scripting languages (e.g., Python, PowerShell) is beneficial.
• Understanding of regulatory requirements and compliance frameworks (e.g., ISO 27001, NIST, GDPR, HIPAA, PCI-DSS) is a plus.