SR Manager, Cyber Incident Response & Threat Management

About The Position

Requirements

• 8+ years relevant experience.
• Bachelor’s degree OR Any equivalent combination of education and experience.
• Experience leading others.
• 8+ years of experience in cybersecurity, with 4+ years focused on incident response, digital forensics, or security operations.
• 2+ years in a team lead or management role.
• Proven experience leading and developing high-performing DFIR teams in a SOC or equivalent high-tempo security operations environment.
• Strong hands-on knowledge of SIEM platforms EDR/XDR solutions and forensic tools.
• Demonstrated ability to manage high-severity incidents under pressure, with executive-quality communication to CISO, Legal, and regulatory audiences.
• Experience building or significantly maturing an incident response plan and supporting playbook library aligned to NIST, ISO/IEC 27035, and MITRE ATT&CK.
• Working knowledge of regulatory and compliance requirements in financial services (PCI DSS, GLBA, GDPR, SEC, CISA CIRCIA).
• Proficiency in scripting and command-line analysis (Python, Bash, PowerShell) and log correlation across SIEM, EDR, network, VPN, and proxy data sources.
• Exceptional written and verbal communication skills — capable of translating complex forensic findings into clear narratives for executive and non-technical audiences.
• Bachelor’s degree in Computer Science, Information Security, or a related field, or equivalent practical experience.

Nice To Haves

• Industry certifications: GCFA, GCFE, GCIH, GCTI, CISSP, or equivalent.
• Experience with cloud forensics and incident response in AWS, Azure, or GCP environments.
• Background in threat hunting, red team, or adversary simulation operations.
• Experience supporting regulatory examinations, external audits, or legal discovery and litigation-support proceedings.
• Familiarity with financial services threat actor profiles and associated TTPs.
• Experience with malware analysis beyond basic triage (static and dynamic analysis).

Responsibilities

• Recognized as a cyber threat management expert, independently resolving the most complex challenges, and providing strategic direction on problem resolution across the security domain.
• Define methods and procedures for new or special assignments, collaborating with cross-functional teams to drive security initiatives that align with business needs and objectives.
• Lead complex, high-impact security projects of diverse scope, applying an in-depth understanding of business trends and security challenges to develop innovative solutions that strengthen threat management and overall security posture.
• Possess a keen awareness of the broader impact of decisions, with initiatives often leading to enterprise-wide improvements that enhance security practices, operational efficiency and organizational resilience.
• Lead a cyber threat management team; set clear priorities and define actionable plans, ensuring alignment with organizational goals.
• Guide team members through complex challenges, fostering their growth and development while maintaining a focus on high-impact results.
• Act as incident commander for critical events.
• Ensure investigations meet regulatory and evidentiary standards.
• Translate threats into executive-level risk insights.
• Drive post-incident improvements.
• Help PayPal stay ahead of evolving threats.
• Provide hands-on forensic oversight.
• Engage in board-level communication and regulatory engagement.

Benefits

• Comprehensive, choice-based programs, to support all aspects of personal wellbeing—physical, emotional, and financial.
• Flexible, balanced work culture.
• Holistic approach to benefits.
• Generous paid time off.
• Healthcare coverage for you and your family.
• Resources to create financial security.
• Resources to support your mental health.