I’m an incident responder. This means I’m responsible for identifying, containing, and mitigating cybersecurity incidents for the customers of Airbus Protect’s CSIRT. This might include responding to security breaches, investigating cyber-attacks to establish a timeline of malicious actions or finding the modus operandi of threat actors.
Each incident responder has a diverse and different set of skills and responsibilities. These might include reverse-engineering malware or conducting forensics in cloud-based or mobile environments.
As an incident responder, I find the field both challenging and rewarding. I enjoy solving complex problems and helping to protect organisations from cyber threats. It’s important to constantly learn and adapt – the same applies to all CSIRT jobs.
I also get an enormous sense of satisfaction in knowing that I’m helping to keep organisations and individuals safe from cyber-attacks.
Previously, I was an apprentice within Airbus Protect’s SOC, where my area of expertise was implementing attacks in order to participate in their detection. At the end of this apprenticeship, I decided that I wanted to increase my skills in digital forensics and reverse engineering – hence moving to the CSIRT!
What are the qualities required to be an incident responder?
As an incident responder, you obviously need to have robust technical knowledge and analytical skills. But it’s equally important to have strong communication skills, as these enable you to work efficiently with different teams and stakeholders. Last but not least, having great attention to detail is crucial in incidents which involve malicious actors with high stealth capabilities.
Interested in CSIRT jobs at Airbus Protect? Check out our current job openings.
Cybersecurity Today, we asked Felix, Penetration Tester and Philipp, Cyber Security Incident Responder, to talk about their job and how they interact in their day-to-day jobs.
Read more
Cybersecurity To outsiders, the security operations centre (SOC) can seem like an impenetrable black box. To lift the lid on what really goes on inside Airbus Protect’s SOC, we interviewed Pauline and Valentin, two of our analysts.
Read more
Cybersecurity Ever wondered what it takes to become an incident responder? We asked Chaïma, an incident responder based in our Paris office, to tell us about her career trajectory so far.
Read more