P3P3 — Mid-Level Professional
Proficient/Career
Manages incidents of diverse scope from start to finish independently.
What this level means
Fully competent professional; works independently on standard projects
- Scope
- Features or a sub-system end-to-end
- Autonomy
- Works independently on standard work; reviewed on the non-standard
- Complexity
- Diverse problems; adapts existing approaches
- Impact
- Project / team outcomes
- Decision rights
- Owns implementation decisions for own scope
- Leadership
- Mentors juniors informally
- Typical experience
- 3–5 yrs
What you'd do
- Determine investigation approach for complex incidents
- Lead conference calls during an incident
- Write comprehensive incident reports
- Develop incident response plans
- Mentor junior incident response staff
- Coordinate with external partners during incidents
- Ensure compliance with incident response policies
- Evaluate and improve incident response processes
- Manage complex incidents
- Lead incident calls
- Write detailed reports
Skills, knowledge & tools
- Incident management
- Conference call leadership
- Report writing
- Plan development
- Mentoring
- External collaboration
- Policy compliance
- Process evaluation
- Incident management strategies
- Communication techniques
- Report writing standards
- Response planning
- Mentorship principles
- External collaboration
- Compliance requirements
- Process improvement methodologies
- Leadership
- Mentorship
- Strategic Thinking
- Analytical skills
- Communication
- Process improvement
- Compliance
- Collaboration
What good looks like
- 5+ years of relevant experience in cybersecurity
- CISSP certification preferred
- Strong leadership and mentoring skills
Common titles
Proficient/Career
Where it sits & what it pays
O*NET / SOC: 15-0000 — Computer & Mathematical Occupations(inferred · under review)
Market-pay benchmarks for this family × level are coming — JobFrame anchors pay to the family/level structure rather than the raw title.