Incident Response Team Leader

Responsibilities

• Lead cybersecurity incident response engagements from identification through recovery, acting as the primary incident commander during major security events.
• Direct technical response teams during ransomware attacks, data breaches, and major security incidents.
• Oversee complex investigations involving malware outbreaks, insider threats, and targeted attacks.
• Lead, mentor, and develop Incident Response Analysts through technical coaching and performance management.
• Serve as the primary customer-facing lead during major incidents, providing executive briefings and status updates.
• Develop and maintain incident response frameworks, playbooks, and runbooks.
• Conduct post-incident reviews and tabletop exercises to drive continuous improvement in cyber resilience.

Requirements

• Bachelor's degree in Information Technology or a related field.
• Minimum of 5 years in cybersecurity, with at least 3 years specifically focused on incident response.
• Valid NCSC-approved IR certification (e.g., ECIH, CCIM, or Blue Team Level 2).
• Hands-on expertise in incident triage, forensics-aware investigation, containment, and recovery across endpoint, network, and cloud environments.
• Proven leadership experience with the ability to manage an analyst team under high-pressure situations.

Preferred Qualifications

• Advanced degree in cybersecurity or a related discipline.
• Additional industry credentials such as GCIH, GCFA, or vendor-specific EDR/SOAR certifications.
• Experience working within an MSSP, telco-affiliated SOC, or national CERT/CSIRT environment.

About the Company

ZainTECH is a leading technology provider committed to a culture of collaboration, innovation, and uncompromising integrity. We focus on delivering customer-centric solutions and maintaining ethical excellence across all global client and partner engagements.