IT Manager, Cybersecurity Incident Response

Role and Scope of Position:
Eversource is seeking a dynamic and experienced IT Manager, Cybersecurity Incident Response to lead our Security Operations Center (SOC) and Incident Response (IR) functions. This role is critical in safeguarding Eversource’s digital infrastructure by detecting, analyzing, and responding to cybersecurity threats and incidents. The successful candidate will be responsible for owning and continuously improving the Cybersecurity Incident Response Plan and will serve as a frontline leader in managing enterprise-wide cybersecurity incidents.

Essential Functions: 

• Lead and manage the Security Operations Center (SOC) and Incident Response (IR) teams, including the IT Supervisor and a team of cybersecurity analysts.
• Develop, maintain, and continuously improve Eversource’s Cybersecurity Incident Response Plan.
• Oversee the detection, triage, containment, eradication, and recovery of cybersecurity incidents.
• Coordinate cross-functional incident response efforts, ensuring timely communication and resolution.
• Serve as the primary escalation point for major cybersecurity incidents and lead post-incident reviews and reporting.
• Collaborate with internal stakeholders, including IT, Legal, Compliance, and Communications, to ensure effective incident response and reporting.
• Monitor threat intelligence sources and ensure the SOC is equipped to respond to emerging threats.
• Ensure compliance with regulatory requirements and industry best practices related to incident response.
• Provide leadership, coaching, and professional development opportunities to SOC and IR team members.
• Develop and deliver incident response training and tabletop exercises across the organization.

Technical Knowledge/Skill/Education/Licenses/Certifications:

Technical Knowledge/Skill: 

•     Proficient with SIEM, EDR, SOAR, and other security technologies.

•     Expertise in log collection, analysis, and digital forensics.

•     Ability to conduct network traffic analysis and identify anomalies.

•     Proficient in both on-premise and cloud based systems.

•     Proven ability to lead during high-pressure situations and manage complex incidents.

Education: 

• Bachelor’s degree in computer science, information security, or a related field.
• Master’s degree preferred.                         

Experience:  

• Minimum of ten years of experience in cybersecurity, with at least 3 years in a leadership role focused on incident response or SOC operations.                          

Licenses & Certifications: 

• Relevant certifications such as CISSP, CEH, GCIH, or GCIA are highly desirable.

Working Conditions:

• Must be available to work emergency restoration assignment as required.
• Must be available to travel between MA/CT/NH as necessary.

Mental Aspects:

• Excellent communication, leadership, and organizational skills.

#LI-KS1

#corpajd

Compensation and Benefits:

Eversource offers a competitive total rewards program. Check out our careers site for an overview of our benefits programs. Salary is commensurate with your experience. This position is eligible for a potential incentive. The annual salary range for this position is:

$154,710.00-$171,900.00

Worker Type:

Regular

Number of Openings:

1

Emergency Response:

Responding to emergency situations to meet customers’ needs is part of every employee’s role. If employed, you will be given an Emergency Restoration assignment.  This means you may be called to assist during an emergency outside of your normal responsibilities, work hours and location. 

EEO Statement:

Eversource Energy is an Equal Opportunity and Affirmative Action Employer.  All qualified applicants will receive consideration for employment without regard to age, race, color, sex, sexual orientation, gender identity, national origin, religion, disability status, or protected veteran status.

VEVRRA Federal Contractor