Senior Security Engineer, Incident Responder

We are seeking a highly skilled Senior Incident Response Engineer to join our Security Engineering team. This role is crucial in ensuring the rapid and effective response to digital security incidents across our organization. You will lead incident investigations, implement response strategies, and influence our overall incident management approach. Your expertise in digital forensics, threat hunting, malware analysis, and incident response tools will be essential in identifying and mitigating potential security threats. You will also structure complex incidents, diagnose root causes independently, and clearly explain the mechanics and significance of security breaches, including their impact and recommended remediation steps.

You will:

• Lead digital incident investigations to identify and contain security breaches. 
• Evaluate and enhance our incident response capabilities through process improvements and tool implementations. 
• Implement and maintain incident response playbooks and workflows. 
• Perform digital forensics and malware analysis to understand attack vectors and methodologies. 
• Utilize threat intelligence platforms to enhance our detection and response capabilities. 
• Guide IT and security teams in implementing robust long-term solutions that improve incident prevention and response, including hunting logging or forensics gaps. 
• Clearly explain the mechanics and significance of security incidents, including their potential impact and recommended remediation steps. 
• Influence the incident response strategy and direction of the team, advocating for best practices and continuous improvement.

Ideally, you’d have:

• Proven experience as an Incident Response Engineer with a focus on digital security. 
• Proficiency in digital forensics tools and techniques. 
• Strong understanding of modern cyber threats and attack methodologies. 
• Production experience with SIEM and EDR tools. 
• Hands-on experience with malware analysis and reverse engineering. 
• Familiarity with threat intelligence platforms and their integration into incident response processes. 
• You can structure complex incidents and diagnose root causes independently, providing actionable insights without requiring manager input. 
• Excellent communication skills, with the ability to clearly present technical findings and their implications to both technical and non-technical stakeholders. 
• Demonstrated ability to influence incident response strategies and drive improvements within a team. 
• Relevant security certifications (e.g., GCFA, GCIA, GCIH, CISSP) are a plus. 
• Experience in a senior or lead incident response role is preferred.