Incident Responder

• Primary responder to critical incidents, threats, vulnerabilities and bring these issues to resolution

• Primary communicator/coordinator with internal and 3rd party teams during critical severity incidents.

• Primary communicator/coordinator for annual table-top exercises.

• Develop new, repeatable methods/procedures for finding malicious activity across Blackbaud networks and assist in the creation of alert content as needed from findings.

• Design, document, and implement incident response processes, procedures, guidelines, and solutions. Responsible for technical and executive level reports on incident response issues.

• Able to perform case management duties

• Lead and work hand-in-hand with the threat detection team on executing threat hunting and threat intel activities.

• Provide mentoring and training sessions for the Security Operations team.

• Perform basic programming and develop scripts in support of/as needed for Incident Response and Security Operations.

Requirements:

• 4+ years of experience in Information Security.

• Experience in a Security Operations Center environment conducting network, host, or threat analysis.

• Leading or coordinating high to critical level cyber security incidents.

• Knowledge of the cyber threat landscape, including actors, TTPs, targets, etc.

• Knowledge of system security vulnerabilities and remediation techniques

• Certifications are a plus (CEH, GCIH, OSCP etc.)