Incident Response Analyst II

Job Requirements

Core Description Parameters:

Phenom People is seeking a highly skilled and experienced Incident Response Analyst to join our growing team in Hyderabad, Telangana, India. As a leading provider of talent experience management solutions, we are committed to protecting our clients' data and systems from cyber threats. We are looking for a talented individual who is passionate about cybersecurity and has a strong understanding of incident response procedures.

What We Offer:

· Monitor and analyze security events and incidents to identify potential threats and vulnerabilities

· Develop and maintain incident response plans and procedures

· Conduct regular security assessments and audits to identify potential risks and vulnerabilities

· Investigate and respond to security incidents, including containment, eradication, and recovery

· Collaborate with cross-functional teams to implement security controls and measures to prevent future incidents

· Stay up to date with the latest cybersecurity trends and best practices

· Provide training and guidance to employees on cybersecurity awareness and best practices

Education and Qualifications:

· Bachelor’s degree in computer science, Information Technology, or a related field

· Minimum of 3 to 6years of experience in incident response

· Strong understanding of incident response procedures and tools

· Experience with security monitoring and analysis tools

· Knowledge of network and system security, including firewalls, intrusion detection systems, and vulnerability management

· Excellent problem-solving and analytical skills

· Ability to work under pressure and handle multiple incidents simultaneously

· Strong communication and interpersonal skills

· Relevant certifications such as CISSP, CISM, or GIAC are a plus

At Phenom , we value diversity and are committed to creating an inclusive and supportive work environment. We offer competitive salaries, benefits, and opportunities for growth and development. If you are passionate about cybersecurity and want to be part of a dynamic and innovative team, we encourage you to apply for this exciting opportunity.

Work Experience

What You’ve Done:

● Analytical and investigative abilities with hands-on experience on cyber security incident response and response automation strategies, and ability to work to tight guidelines and under high pressure in the context of cyber incidents

● Experience working with Threat modeling (e.g., STRIDE, PASTA, FAIR, Security Cards), operational threat intelligence, and attack framework standards (e.g., MITRE ATT&CK) with a good understanding of the Cyber Kill Chain and pervasive threat attack methods and remediation.

● Good understanding and hands-on experience with common security systems, including WAF, IPS/IDS, EDR, DLP, authentication systems, content filtering, etc.

● Experience developing detection logic for enterprise SIEM systems and with exploitation techniques and use case development.

● Experience in the detection and response to malicious activity using log data and alerts from cybersecurity solutions, systems and network devices.

● Experience extracting and analyzing forensic artifacts across Windows, Mac, and Linux operating systems.

● Coding Experience in Scripting & programming languages (such as Java, Bash, Python, PowerShell etc.) to use these skills to aid in responding to incidents involving Windows, Linux, and Mac hosts, as well as automate common analytical processes to reduce analyst time and avoid repetitive incident response tasks.

● Experience supporting an Incident Response Program through the development of procedural documentation (playbooks and runbooks).

● Understanding of Amazon Web Services cloud environments and its security controls and their corresponding challenges.

● Understanding of microservices architecture & distributed Platforms especially in the SaaS businesses

● Understanding of global frameworks and standards like NIST, ISO 27001/27002/27017/27018, GDPR, etc.

● An Information Security qualification or evidence of starting to work toward SANS GCIH, GCIA, GREM, GCFA, OSCP or similar certification.

● Thought leadership, critical thinking & problem solver, strong organizational skills, report writing skills to senior level, ability to prioritize and multitask.

Benefits

Benefits

· We want you to be your best self and to pursue your passions!

· Health and wellness benefits/programs to support holistic employee health

· Flexible hours and working schedules, as well as parental leave for new parents

· Growing organization with career pathing and development opportunities

· Tons of perks and extras in every location for all Phenoms!

Diversity, Equity, & Inclusion:

Our commitment to diversity runs deep! Diversity is essential to building phenomenal teams, products, and customer experiences. Phenom is proud to be an equal opportunity employer taking collective action to build a more inclusive environment where every candidate and employee feels welcomed. We recognize there is more to be done. Our teams are committed to continuous improvement until these powerful ideas are ingrained in our culture for Phenom and employers everywhere