Cyber Crisis/Incident Response Manager (HYBRID)

About The Position

Requirements

• Bachelor’s degree in Cybersecurity, Information Technology, or related field OR 8+ years of equivalent experience.
• 5+ years of experience in incident response, cyber crisis management, or related cybersecurity roles.
• Demonstrated understanding of threat landscapes, attack vectors, and mitigation strategies.
• Familiarity with frameworks such as NIST CSF, ISO 27001, and FFIEC guidelines.
• Established communication and stakeholder management skills.
• Ability to work under pressure and make critical decisions during high-impact events.
• Knowledge of concept and principles of agile methodology; ability to apply appropriate agile approaches in the processes of software development and delivery.
• Knowledge of practices and policies governing disclosure of information about the organization, its business activities, and employees; ability to apply this knowledge appropriately to diverse situations.
• Knowledge of the processes, tools and techniques of information security management; ability to deploy and monitor information security systems, while detecting, controlling and preventing violations of IT security.
• Knowledge of the accountability framework and processes used to encourage proper behavior in IT activities and operations; ability to implement IT systems and controls to meet business needs and requirements.

Nice To Haves

• Experience in financial services or other highly regulated industries.
• Certifications such as CISSP, CISM, or GIAC (GCIH, GCFA).
• Knowledge of SIEM tools, forensic analysis, and threat intelligence platforms.

Responsibilities

• Lead and coordinate the response to cyber incidents, ensuring timely containment, eradication, and recovery.
• Serve as the primary point of escalation during major cyber events, providing guidance and decision-making support.
• Maintain detailed documentation of incidents and lessons learned for continuous improvement.
• Develop, update, and optimize incident response runbooks and playbooks to align with evolving threats and regulatory requirements.
• Ensure runbooks are actionable, tested, and accessible to relevant stakeholders.
• Interface with Lines of Business (LOBs) to ensure alignment of incident response processes with operational needs.
• Act as a liaison between technical teams, business units, and executive leadership during crisis situations.
• Design, develop, and deliver annual cyber crisis tabletop exercises to validate organizational readiness.
• Coordinate post-exercise reviews and implement improvements based on findings.
• Track and report on incident metrics, trends, and response effectiveness to senior leadership.
• Ensure compliance with internal policies, industry standards, and regulatory requirements.
• Stay informed on evolving threats and continuously monitor the threat landscape relevant to the firm, ensuring the team is updated on emerging risks.

Benefits

• Equitable provides compensation to reward performance with base salary increases, spot bonuses, and short-term incentive compensation opportunities.
• For eligible employees, Equitable provides a full range of benefits. This includes medical, dental, vision, a 401(k) plan, and paid time off.