Lead global incident response end-to-end, providing strategic direction and hands-on support
Own the full incident lifecycle – preparation, detection, triage, containment, eradication, recovery
Serve as Incident Response Commander for major incidents, directing the Cyber Security Incident Response Team
Develop and run regular tabletop exercises and simulations to validate readiness
Design, implement, and tune detections across technology stack
Analyze existing and emerging threats and drive proactive threat hunting programs
Continuously improve automation and orchestration using scripting and AI-assisted approaches
Review and draft security policies, standards, and standard operating procedures for incident response
Collaborate with Product Security and Corporate Security on security initiatives
Own the incident communication plan for internal and external audiences

Requirements

8+ years in information security
5+ years focused on incident response
3+ years leading major programs
Subject matter expertise in incident response and intrusion analysis
Strong background in security operations and forensics
Practical scripting or coding experience (Python, shell, regex, APIs)
Hands-on Linux systems experience
Experience in cloud environments (AWS, GCP, Azure)
Familiarity with technologies like SIEM, EDR, SOAR, IDS/IPS
Understanding of governance, risk, and compliance frameworks (ISO 27001, SOC 2, PCI DSS)

Benefits

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools

incident responseintrusion analysisscriptingPythonshellregexAPIsLinuxcloud environmentssecurity operations

Soft Skills

leadershipstrategic directioncommunicationcollaborationproblem-solvinganalytical thinkingproactive mindsetteam managementincident commandtraining

Certifications

ISO 27001SOC 2PCI DSS