Sr Cybersecurity Incident Response Manager

About The Position

Requirements

• Bachelor's degree in cybersecurity, computer science, information technology, or a related field (master's degree preferred).
• Ten or more years of progressive experience in information technology.
• Eight or more years of experience in cybersecurity incidence response, vulnerability management and/or offensive security.
• Experience with SIEM, EDR, Security Orchestration Automation & Response (SOAR), Cloud Security Posture Management (CSPM), and Data Loss Prevention (DLP) technologies.
• Relevant certifications (e.g., CISSP, CISM, GIAC, OSCP, CRISC) preferred.
• Proven experience managing incident response, threat intelligence, and vulnerability management programs.
• Excellent problem-solving and analytical skills.
• Effective communication and interpersonal skills.
• Ability to convey complex technical concepts to both technical and non-technical audiences.
• Strong stakeholder management skills, with the ability to influence at all levels of the organization.
• Ability to work independently and as part of a team in a fast-paced environment.
• Ability to read, write, and understand English at a level sufficient to perform job-related tasks effectively and safely.

Nice To Haves

• Teamwork oriented
• Organized
• Problem solver
• Detailed

Responsibilities

• Lead the development and operationalization of threat intelligence capabilities.
• Monitor and analyze threat actor behaviors, TTPs, and emerging risks.
• Translate intelligence into actionable insights for detection and response teams.
• Leverage artificial intelligence and machine learning capabilities to enhance cybersecurity operations, threat detection, and decision-making.
• Oversee the design, tuning, and operation of detection rules and use cases across Security Information and Event Management (SIEM), Endpoint Detection and Response (EDR), and other platforms.
• Manage the end-to-end threat response lifecycle, from triage to containment and remediation.
• Collaborate with SOC, IT, and business units to ensure timely and coordinated incident handling.
• Direct forensic investigations to support incident response, legal, and compliance needs.
• Maintain forensic readiness and ensure proper evidence handling and chain of custody.
• Provide detailed post-incident analysis and reporting.
• Lead the DLP program to monitor, detect, and prevent unauthorized data movement.
• Collaborate with data owners and compliance teams to define and enforce data protection policies.
• Continuously improve DLP coverage and effectiveness across endpoints, email, and cloud.
• Build and lead a high-performance team of analysts and responders.
• Develop playbooks, runbooks, and training to enhance team readiness.
• Partner with the Director of Respond & Recover and other cybersecurity leaders to align strategy and priorities.
• Perform other duties as assigned.

Benefits

• Day 1 Benefits: medical, dental, and vision insurance, FSA/HSA, and company-paid life insurance
• Paid time off begins day one.
• 401(k) Profit Sharing Plan after 90 days.
• Additional benefits: pet insurance, maternity/paternity leave, employee assistance programs, discount programs, tuition reimbursement program, and more!