The Successful Security Incident Responder

As the security industry continues to grow, so does the demand for top talent. Luckily, schools and academies are really pumping out a lot of people to fill these roles, but just like in any field, you have to ask "Are they the right fit?".

Top traits of a successful security Incident Responder:

Let's outline some top traits that a successful IR team member should have, followed by a question to ask yourself. This is obviously my opinion and I'd love to hear your thoughts as well!

1. Passionate About Security

There are a lot of smart people in the world. A lot of people who can study text books and ace exams. However, being book smart has never translated directly to success and this is especially the case in Incident Response. Some days, things go to hell and the good Incident Responder continues to press on because it's what they love doing. I wouldn't count getting certification as passion, though it is sometimes extracurricular. People who make a move toward bettering the security of others will often put more effort into protecting an organization at work.

What have you done outside of work that relates to Information Security?

2. Cool Headed

Anyone who is Incident Response, or incident management at all, will tell you that things get crazy from time to time. It's usually not if, but when will the next big issue happen. It is extremely detrimental to a team to have someone who can't keep a cool head when facing an intense situation. Having a cool head and even temper allows the entire team to work as efficiently as possible to get the job done. Whether it's setting up new monitoring or finding an intrusion, this is a great trait to have.

Do you panic when things don't go as planned?

3. Team Oriented

I don't know any organization who has trusted a single person with the security of their valuable networks and data. Therefor, I can guarentee any Incident Response candidate that you will be interacting with others on a daily basis. This is even more important when crisis arises. If someone tries to fix large scale problems themselves, it may be too late. Working with others can often lead to new insights and quicker results.

Do you enjoy working with others to solve problems?

Summary:

Listed above are just a few traits that I believe create a successful Incident Responder. There are many people out there that fit this bill, and I've had the pleasure to work with some of them. Obviously there are more traits that you will want to look for to fit your organization. Feel free to comment below with your thought or ideas!

Being in Security Incident Response is challenging and always changing, but I can say it is truly a rewarding career for those who love it!