Discuss the roles and responsibilities within an incident response team for an AWS environment. How would these roles adapt to handle a potential DDoS attack? Specifically, what actions would the Security Operations Center (SOC) take, and how would AWS Shield be utilized in this scenario?