Principal / Partner Incident Response

This is a leadership role to create and grow Cyber Incident Response (CIR) in the Americas, specifically:  To be an exceptional leader with the ambition, ability and commercial acumen to build a market leading CIR capability in the United States.  To win a significant increase in retained and panel work, transforming our client traction and market penetration.  To lead on the delivery of complex cyber incident response cases in the Americas, and elsewhere as appropriate.  To oversee all aspects of regional commercial, financial, and operational management for CIR in the Americas.  To recruit, develop, and manage high quality crisis management, technical forensics and client -facing resources.  To work seamlessly with our global lead for CIR in London to ensure our go -to - market positioning and operational delivery is coordinated.  To work side -by -side with our Threat Intelligence, Advisory, and Assurance teams to drive deeper market penetration across all parts of Digital Risks in the US.  To work with the Digital Risks leadership team in the region and globally and to actively contribute to global initiatives. Leadership and enablement:  Provide clear, visible, and energetic leadership, generating a significant step change in a growing business.  Recruit, motivate and lead an America - -based team on strategy, operations, people and learning and development.  Ensure the regional plan is aligned to the global strategy and fully integrated into the Digital Risks and wider business.  Foster a culture of collaboration and One Firm behaviour. Brand and market:  Execute an ambitious US and regional market strategy, ensuring it is anchored in global priorities and focused on retained and panel channels to market.  Actively promote as a trusted cyber responder and enhance our broader credentials as a strategic advisor on cyber and technology risk.  Secure and expand critical corporate, legal, insurer, and underwriter relationships in the US as a key priority, as well as through more strategic, C -suite Tier -1 buyer relationships.  Execute business development initiatives supported up by clear account, sales and marking plan.  Act as a brand ambassador and thought leader for Digital Risks, both internally and in the market. Delivery:  Achieve major origination, with a focus on achieving a significant increase in corporate retainer and insurance/law firm panel work.  Lead on the delivery of complex cyber incident response cases in the Americas, and elsewhere as appropriate.  Co -develop with the global team technical response Standard Operating Procedures (SOPs), ensuring they kept up to date with the latest threats.  Identify Partnership opportunities regionally/globally to drive business growth.  Work with the global CIR team to identify technologies which improve efficiencies and client services. Response -specific expertise:  Have led the lifecycle of a cyber incident including identification, containment, eradication and recovery and senior stakeholders through key decisions during a major incident or crisis.  Expertise in threat hunting using EDR tooling to evaluate an attacker's spread through a system and network, anticipating and thwarting further attacker activity, and in live compromise assessments for organisations who suspect a compromise.  Demonstratable understanding of existing and emerging threat actors, as well as experience in identifying rapidly changing tools, tactics and procedures of attackers.  Deep experience in advising on the safe technical recovery of an organisations IT systems balancing the need to understand what has happened but speed up recovery.