5 of 5 Permanent Incident Response Jobs in Windsor

security alerts from various sources like SIEM, EDR, and other tools. Investigate and respond to security incidents, ensuring effective containment, remediation, and recovery while considering business requirements. Follow defined incident response processes and escalate to the Cyber Security Incident Response team when necessary. Develop and fine-tune detection rules, create and maintain detection playbooks, and collaborate … your technical expertise to analyse telemetry related to incidents and identify appropriate investigation pathways. Identify techniques used by attackers and support investigations with relevant intelligence. Record actions within an incident in a coherent and concise manner, ensuring all relevant data is secured and presented in the incident record. About You Hands-on experience in a Security Operations Centre … SOC). Deep understanding of incident response processes and the Cyber Kill Chain. Proficient with Microsoft Azure and AWS cloud technologies. Relevant certifications such as Microsoft SC-200, AWS Certified Cloud Practitioner, Microsoft AZ-900, GIAC Certified Forensic Analyst (GCFA), and GIAC Certified Incident Handler (GCIH). Skilled in network and application protocols, and familiar with Windows More ❯

security alerts from various sources like SIEM, EDR, and other tools. Investigate and respond to security incidents, ensuring effective containment, remediation, and recovery while considering business requirements. Follow defined incident response processes and escalate to the Cyber Security Incident Response team when necessary. Develop and fine-tune detection rules, create and maintain detection playbooks, and collaborate … your technical expertise to analyse telemetry related to incidents and identify appropriate investigation pathways. Identify techniques used by attackers and support investigations with relevant intelligence. Record actions within an incident in a coherent and concise manner, ensuring all relevant data is secured and presented in the incident record. About You Hands-on experience in a Security Operations Centre … SOC). Deep understanding of incident response processes and the Cyber Kill Chain. Proficient with Microsoft Azure and AWS cloud technologies. Relevant certifications such as Microsoft SC-200, AWS Certified Cloud Practitioner, Microsoft AZ-900, GIAC Certified Forensic Analyst (GCFA), and GIAC Certified Incident Handler (GCIH). Skilled in network and application protocols, and familiar with Windows More ❯

in security coverage. Apply GitOps and CI/CD principles to automate detection engineering workflows, boosting operational efficiency. Build and optimize security playbooks to streamline detection, threat hunting, and incident response activities. Develop, automate, and enhance our threat detection and response capabilities. Work closely with security analysts and other stakeholders to identify and address gaps in incident response capabilities. Keep up with current threat intelligence, emerging trends, TTPs, and vulnerabilities to adapt our detection strategies and effectively respond to evolving threats. About You Strong understanding of AWS cloud platforms with proficiency in a wide range of AWS services (e.g., EC2, S3, RDS, Lambda, IAM, VPC, CloudFormation). Experience in developing and maintaining detection rules to More ❯

Records of Processing Activities (ROPA) using the One Trust privacy tool Support the handling of Data Subject Access Requests (DSARs) and ensure timely responses Help track data breach and incident reports, supporting incident response processes as needed Coordinate with internal teams to collect privacy-related documentation and evidence (e.g. Standard Operating Procedures) Assist with annual policy and More ❯

Records of Processing Activities (ROPA) using the One Trust privacy tool Support the handling of Data Subject Access Requests (DSARs) and ensure timely responses Help track data breach and incident reports, supporting incident response processes as needed Coordinate with internal teams to collect privacy-related documentation and evidence (e.g. Standard Operating Procedures) Assist with annual policy and More ❯