Incident Response (IR) Manager

About The Position

Requirements

• Bachelor's degree or CISSP / CISM or GCIH.
• 7+ years hands-on incident response and cyber operations experience.
• Demonstrated expertise in: Evidence preservation Malware analysis Forensics Root cause analysis Artifact collection Forensic imaging
• Strong understanding of NIST, ISO 27001, and CIS Controls.
• Experience performing federal incident reporting and writing after-action reviews.

Nice To Haves

• GIAC-level advanced IR certifications (GCFA, GREM, GNFA).
• Experience leading red/blue/purple team operations.
• Experience developing enterprise IR automation or SOAR workflows.
• Experience coordinating IR across multi-vendor or multi-agency environments.

Responsibilities

• Lead end-to-end incident detection, containment, remediation, and recovery.
• Manage teams responsible for evidence preservation, root-cause analysis, malware analysis, and forensics.
• Direct and coordinate incident response across technical, security, and business teams.
• Lead federal incident reporting, after-action reviews, and continuous improvement processes.
• Ensure adherence to federal cybersecurity frameworks (NIST, ISO, CIS Controls).
• Communicate incident impact and risk to senior leadership.
• Maintain enterprise-wide IR playbooks and operational readiness.

Benefits

• Competitive compensation
• Comprehensive insurance options
• Matching contributions through the 401(k) plan and the share purchase plan
• Paid time off for vacation, holidays, and sick time
• Paid parental leave
• Learning opportunities and tuition assistance
• Wellness and Well-being programs