Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Join our team to tackle cybersecurity threats and manage incidents from start to finish.
- Company: Crypto.com is a leading platform in the cryptocurrency space, committed to security and innovation.
- Benefits: Enjoy flexible work options, competitive pay, and opportunities for professional growth.
- Why this job: Be part of a global team making a real impact in cybersecurity while developing your skills.
- Qualifications: 5+ years in Cyber Security, strong analytical skills, and familiarity with incident response processes required.
- Other info: Ideal for fast learners who thrive in collaborative environments and are eager to tackle challenges.
The predicted salary is between 36000 - 60000 £ per year.
As a member of the ETMSA team at Crypto.com , you will be integral to responding to and managing cybersecurity threats and incidents throughout their lifecycle – from Preparation to Identification, Containment, Eradication, Recovery, and Lessons Learned – collaborating with a global team of incident responders.
You will apply your comprehensive skills in cyber defense, digital forensics, log analysis, and intrusion analysis to address security incidents across our endpoints, network, and cloud infrastructure. In this role, you will be responsible for prevention, detection, response, and remediation activities, ensuring that information assets and technologies are adequately protected by leveraging various technologies such as Next-Generation Firewalls (NGFW), Endpoint Detection and Response (EDR), Intrusion Detection/Prevention Systems (IDS/IPS), Data Loss Prevention (DLP), and more.
You will also leverage your collaboration and communication skills to work effectively with all relevant stakeholders in multicultural and global environments.
Responsibilities
– Report to Director to facilitate all phases in the incident response lifecycle
– Be involved in various incident prevention projects to improve Security posture
Preparation:
– Understand different regulatory and compliance requirements like critical time to report, escalation flows, etc.
– Take part in self-assessment exercises like Tabletop Exercises, Attack Simulations, Red/Purple Team exercises to make sure the incident response process is working smoothly
Develop incident response runbooks, playbooks and SOPs with reference to different regulatory requirements
– Evaluate the incident response readiness of different layers – people, process, technology
Detection & Analysis:
– Respond to the cyber security incidents escalated from various channels including the 24/7 SOC team.
– Respond to cyber security incidents in compliance with the local authority / regulatory requirements.
– Assess the risk, impact and scope of the identified security threats
– Perform deep-dive incident analysis of various data sources by analysing and investigating security related logs against medium-term threats and IOCs
Containment, Eradication and Recovery:
– Communicate with the stakeholders and provide guidance, recommendations to contain and eradicate the security incident
– Participate in root cause analysis using forensic and other custom tools to identify any sources of compromise and/or malicious activities taking place.
– Document and present investigative findings for high profile events and other incidents of interest.
Post incident activities:
– Provide lessons learnt meeting to the stakeholders
– Lead and keep track on the follow-up activities
– Document the incident in the case management system and provide incident reports
Always ready to jump in, in the event of security incidents.
Requirements
- At least 5 years experience in the Cyber Security industry
- Strong technical and analytical skills
- Familiar with the cyber security incident response process
- Familiarity with AI tools and their application in automating security tasks and processes.
- Hands-on experience on performing incident response activities
- Have scripting experience like Bash, PowerShell, Python, Go, etc, and the ability to use these skills to aid in responding to incidents involving Windows, Linux, macOS, as well as cloud environment
- Have knowledge of cybersecurity tools and software like NGFW, EDR, IDS/IPS, EDR, DLP, SIEM, other log management platforms, etc.
- Be familiar with the MITRE ATT&CK Framework and/or Cyber Kill Chain
- Be passionate on exploring new technologies and having creative initiative to boost the team capabilities
- Holders of security related certifications is a plus (e.g.Azure , AWS, CISSP, GCIH, GCIA, GCFA, GNFA, GREM, or other equivalent)
- Awareness of regulatory and compliance requirements like GDPR, MAS, PSD2 etc is a plus.
Preferably
- Fast learner with can do attitude and ready to get the hands dirty
- A strong team player who can collaborate with compassion
- Passionate to learn and willing to put in the extra effort
- Understand the concept of ownership and accountability coupled with sense of urgency and prioritisation
- Confidence in handling incidents and managing relevant senior and technical stakeholders
- Possess business acumen/mindset (not only technical) when making critical decisions
#J-18808-Ljbffr
Incident Response Engineer employer: P2P
Contact Detail:
P2P Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Incident Response Engineer
✨Tip Number 1
Familiarise yourself with the MITRE ATT&CK Framework and Cyber Kill Chain. Understanding these concepts will not only help you in interviews but also demonstrate your knowledge of incident response processes, which is crucial for the role.
✨Tip Number 2
Engage in hands-on practice with cybersecurity tools like NGFW, EDR, and IDS/IPS. Being able to discuss your practical experience with these technologies during interviews can set you apart from other candidates.
✨Tip Number 3
Showcase your scripting skills by working on small projects or contributing to open-source initiatives. This will not only enhance your technical abilities but also provide concrete examples to discuss in interviews.
✨Tip Number 4
Network with professionals in the cybersecurity field through forums, webinars, or local meetups. Building connections can lead to valuable insights about the company culture at Crypto.com and may even result in referrals.
We think you need these skills to ace Incident Response Engineer
Some tips for your application 🫡
Tailor Your CV: Make sure your CV highlights relevant experience in cybersecurity, particularly in incident response. Emphasise your technical skills, such as familiarity with NGFW, EDR, and scripting languages like Python or PowerShell.
Craft a Compelling Cover Letter: In your cover letter, express your passion for cybersecurity and detail how your experience aligns with the responsibilities outlined in the job description. Mention specific projects or incidents you've managed that demonstrate your capabilities.
Showcase Your Skills: Include a section in your application that showcases your technical skills and certifications. Highlight any hands-on experience with incident response tools and your understanding of regulatory requirements like GDPR.
Prepare for Technical Questions: Anticipate technical questions related to incident response processes and tools. Be ready to discuss your approach to containment, eradication, and recovery during an incident, as well as your experience with forensic analysis.
How to prepare for a job interview at P2P
✨Showcase Your Technical Skills
Be prepared to discuss your hands-on experience with cybersecurity tools and scripting languages. Highlight specific incidents where you applied your skills in incident response, log analysis, or digital forensics.
✨Understand the Incident Response Lifecycle
Familiarise yourself with each phase of the incident response lifecycle. Be ready to explain how you would approach preparation, detection, containment, eradication, recovery, and lessons learned in a real-world scenario.
✨Demonstrate Collaboration and Communication Skills
Since this role involves working with a global team, be prepared to share examples of how you've effectively communicated and collaborated with diverse stakeholders in previous roles.
✨Stay Updated on Regulatory Requirements
Research relevant regulatory and compliance requirements such as GDPR or MAS. Be ready to discuss how these regulations impact incident response and how you ensure compliance in your work.
