Senior Security Incident Responder
Hybrid · Chennai, Tamil Nadu, India
Job Summary
Senior Security Incident Responder is a lead technical authority for incident response execution, responsible for handling the most complex, high-impact security incidents across WPP. Responsibilities include leading investigations for high-severity incidents, performing deep technical analysis with SIEM/SOAR/EDR-XDR, overseeing containment, eradication, and recovery, acting as technical incident commander when delegated, serving as primary escalation point for complex incidents, coordinating with Legal/Privacy/Risk/Technology Operations, providing clear updates to senior stakeholders, leading forensic evidence collection and ensuring audit-ready artefacts, supporting external forensic or law-enforcement engagement, reviewing and improving incident handling playbooks and SOPs, mentoring responders, and identifying opportunities for automation. Desirable: familiarity with MITRE ATT&CK and relevant certifications (GCIH, GCFA, GCED, CISSP). The role is described as Hybrid with a four-days-a-week office pattern in Chennai, India.
Required Qualifications
- Extensive hands-on experience responding to enterprise-scale security incidents
- Deep technical expertise across SIEM, SOAR, EDR/XDR, identity, email, and cloud platforms
- Strong forensic, investigation, and root cause analysis skills
- Ability to operate calmly under pressure and communicate clearly
Apply with one swipe on Sorce. We auto-fill applications and apply on your behalf — no cover letters, no 40-minute forms.
Hiring someone like this?
Get your role in front of qualified candidates on Sorce.