Senior Cybersecurity Incident Response Engineer

Position Overview

Join our dynamic team as a Senior Cybersecurity Incident Response Engineer, where you will lead critical incident response initiatives for enterprise networks and vital systems. In this influential role, you will leverage your expertise in ITIL-aligned incident management to efficiently handle major incidents while focusing on robust threat containment and eradication strategies. Be at the forefront of our proactive cybersecurity measures, driving automation and advanced engineering efforts to enhance our defenses against sophisticated threats.

Your responsibilities will include developing scalable countermeasures, enhancing SOC tools and integrations, and implementing advanced detection programs against intricate cyber attacks. You will also play a key role in mentoring junior responders, shaping incident response governance, and advising on security architecture based on emerging threat landscapes.

Key Responsibilities

• Lead major incident response efforts, coordinating technical teams, tracking actions, and making swift decisions to minimize downtime and safeguard business interests.
• Integrate ITIL best practices for incident management into technical workflows to ensure streamlined prioritization, effective communication, and thorough incident closure.
• Design and refine incident detection and response protocols, including developing playbooks and automation solutions to enhance response efficiency.
• Create automation and custom scripts to alleviate manual tasks, optimizing triage processes and expediting containment and eradication efforts.
• Conduct in-depth threat and forensic analysis of various data sources to understand attack dynamics and mitigate risks.
• Collaborate with problem management and change management teams to translate incident insights into long-lasting corrective actions and risk reduction initiatives.
• Establish and monitor key incident metrics, using data to identify vulnerabilities and provide leadership with briefings on operational risks.
• Deliver technical mentorship to incident handlers and SOC analysts, fostering improved investigative techniques, documentation, and stakeholder communication.

Required Qualifications

• 8+ years of progressive experience in IT and cybersecurity, specializing in incident response and major incident leadership.
• Bachelor's degree in IT, Cybersecurity, Computer Science, Business Administration, or a related field, or equivalent practical experience.
• Strong knowledge of ITIL principles and incident management best practices, with experience in major incident processes.
• Proficiency in incident management and service management tools integrated with security operations.
• Excellent problem-solving, analytical, communication, and interpersonal skills, with a proven record of managing multiple incidents simultaneously.

Preferred Qualifications

• Demonstrated leadership in managing ITIL-based major incident processes within large organizations, including effective executive communications.
• Extensive experience with enterprise-level incident management tools and service management platforms in a security context.
• Certifications such as ITIL Foundation along with advanced cybersecurity or incident response credentials that demonstrate both service management and technical depth.
• At least one relevant cybersecurity certification (or willingness to obtain one within the first year), such as Security+, CySA+, GSEC, CEH, GCIA, GCIH, CISM, or equivalent.

Compensation Ranges

Compensation ranges for this position vary based on multiple factors, including location, skillset, education, certifications, client needs, and years of experience. The provided compensation is a general guideline tailored to this role.

EEO Requirements

ASM is committed to equality in employment. We ensure that an individual's race, color, religion, sex, disability, age, gender identity, veteran status, sexual orientation, or national origin will not influence any personnel decisions. Our recruiting, hiring, training, and promotion processes are conducted without regard for these factors.

Physical Requirements

The physical requirements outlined in this description represent necessary functions of the role. Reasonable accommodations may be made for individuals with qualifying disabilities to perform these primary functions.

Disclaimer

This job description is designed to provide insight into the general nature and level of work performed, but is not intended to be a comprehensive inventory of all duties and responsibilities.

$80,200 - 111,300