Incident Response Manager

About The Position

Requirements

• 5+ years of cybersecurity experience, including hands-on experience in threat hunting, detection engineering, incident response, or adversary emulation.
• 2+ years of experience as a people manager, program manager, or team lead, with a proven ability to develop technical talent.
• Experience building, operating, or maturing a structured cyber threat hunt capability.
• Strong understanding of adversary tactics, techniques, and procedures (e.g., MITRE ATT&CK).
• Demonstrated ability to lead teams in executing complex technical investigations and analysis.
• Ability to translate high-level objectives into actionable plans, tasks, and measurable outcomes.
• Excellent written communication skills, including the ability to produce detailed analysis, findings, and recommendations.
• Strong verbal communication and presentation skills, with the ability to brief stakeholders at multiple levels.
• Ability to convey complex technical concepts clearly to both technical and non-technical audiences.
• Proven ability to manage competing priorities and respond effectively in time-sensitive situations.
• High emotional intelligence, sound judgment, and a collaborative leadership style.
• Strong personal drive to contribute to and sustain a high-performing cyber security team.

Responsibilities

• Be accountable for the operational performance and effectiveness of the Cyber Threat Hunt team.
• Lead, mentor, and develop a team of cyber threat hunters, fostering a culture of curiosity, rigor, and continuous improvement.
• Plan, prioritize, and oversee hypothesis-driven threat hunts based on adversary TTPs, threat intelligence, risk signals, and environmental changes.
• Translate high-level threat intelligence and organizational risk into actionable hunt objectives and execution plans.
• Ensure consistent use of defined hunt methodologies, documentation standards, and quality review processes.
• Partner with Cyber Monitoring & Incident Response to transition hunt findings into detections, investigations, or incident response activities.
• Identify visibility gaps, control weaknesses, and tooling limitations; collaborate with stakeholders to remediate issues.
• Develop, track, and report key threat hunt metrics, including coverage, outcomes, and impact, to leadership and stakeholders.
• Communicate hunt findings clearly through high-quality written reports and presentations tailored to technical and non-technical audiences.
• Support regulatory, audit, and risk management inquiries related to threat hunting activities.
• Act as an escalation point for complex hunts, investigative questions, or urgent threat activity.
• Promote and evangelize the value of proactive threat hunting across the organization.
• Participate in on-call escalation and perform emergency after-hours work when required.
• Travel to conferences, training, and other company offices as needed (up to ~30%).

Benefits

• Competitive compensation, including base pay and annual incentive
• Comprehensive health and life insurance and well-being benefits, based on location
• Pension / Retirement benefits
• Paid Time Off and Personal/Family Care, and other leaves of absence when needed to support your physical, financial, and emotional well-being.
• DTCC offers a flexible/hybrid model of 3 days onsite and 2 days remote (onsite Tuesdays, Wednesdays and a third day unique to each team or employee).