Incident Response Planning and Operations, Assistant Vice President

About The Position

Requirements

• Bachelor's degree in Cybersecurity, Information Technology, or related field.
• 5+ years or more in cybersecurity, with experience in incident response or threat management.
• Excellent communication, facilitation, writing and analytical skills.
• Experience designing and facilitating tabletop exercises or cyber simulations.
• Ability to document and explain technical details in a concise, understandable manner
• Relevant technical and industry certifications in cybersecurity
• Experience with information security risk management, including information security audits, reviews, and risk assessments
• Strong understanding of NIST, MITRE ATT&CK, and other cybersecurity frameworks.
• Ability to work cross-functionally and influence without direct authority.
• Prior work experience in a global company preferred.

Nice To Haves

• Knowledge in one or more security domains including Incident Response and Forensics, Security Governance and Oversight, Security Risk Management, Network Security, or Threat and Vulnerability Management.
• Knowledge of cloud security, AI security, networks, databases, and applications
• Knowledge of the various types of cyber-attacks and their implementations
• Experience in operational processes such as security monitoring, data correlation, troubleshooting, security operations, etc.

Responsibilities

• Develop and manage a comprehensive cyber wargaming and incident readiness program.
• Align tabletop exercises with enterprise risk management and incident response strategies.
• Coordinate with internal and external stakeholders to ensure exercises reflect realistic threat scenarios.
• Design and facilitate cyber incident tabletop exercises, red/blue team simulations, and strategic wargames.
• Develop injects, scripts, and after-action review processes.
• Incorporate threat intelligence and emerging risks into exercise scenarios.
• Evaluate organizational response capabilities and identify gaps in incident response plans.
• Produce detailed reports and recommendations for improvement.
• Track remediation efforts and maturity over time.
• Work closely within Enterprise Information Security teams to identify areas of improvement.
• Collaborate with IT, security operations, legal, communications, and executive leadership.
• Present findings and strategic recommendations to senior leadership.
• Monitor trends in cyber threats and incident response best practices.
• Integrate lessons learned from real incidents and exercises into future planning.

Benefits

• comprehensive health and wellness benefits
• retirement plans
• educational assistance and training programs
• income replacement for qualified employees with disabilities
• paid maternity and parental bonding leave
• paid vacation, sick days, and holidays