Senior Incident Response Commander
Lehi, UT
UltraViolet Cyber
Evolve your security operations into your proactive risk reducing superpower through the combination of MDR with Red Teams that validate every alert.
UltraViolet Cyber is seeking a - Senior Incident Response Commander to join our team! With your extensive experience in incident response, digital forensics, investigative skills, and process improvement, you'll play a key role in minimizing damage, protecting sensitive data, and ensuring business continuity. You'll manage and investigate complex incidents, drive investigations to successful conclusions, and enhance our processes. Collaborate with senior staff to execute strategies and elevate our Incident Response program.
Are you ready to leverage your expertise and make a significant impact?
No third-party candidates will be considered
This position is will require travel to the Lehi, UT area 3x a year, preference will be given to those who are local.
Are you ready to leverage your expertise and make a significant impact?
No third-party candidates will be considered
This position is will require travel to the Lehi, UT area 3x a year, preference will be given to those who are local.
Skills and Responsibilities
- Incident Response: Confidently lead incident response activities, ensuring stakeholder alignment for efficient responses. Collaborate with leadership to implement strategic initiatives and foster continuous learning to enhance incident response capabilities organization-wide.
- Investigations: Analyze data points from past or current cases using critical thinking and investigative skills. Identify indicators of compromise, potential attack vectors, and root causes to guide effective resolution steps and discover new connections.
- Reporting: Keep detailed incident records and provide clear, concise reports to leadership. Ensure timely updates and communicate critical information effectively to stakeholders.
- Technical Expert: Provide technical support for incidents, guide team members, and offer technical direction. Use your expertise to troubleshoot and resolve issues, assisting in the technical aspects of incident response.
- Continuous Improvement: Enhance incident response through post-incident retrospectives and security, engineering, and partner team feedback.
- Training and Presentations: Develop and present comprehensive reports, training sessions, and presentations for both technical and non-technical audiences.
- Process Development: Assist in designing, documenting, and reporting on incident response processes, procedures, and metrics to optimize efficiency and effectiveness.
- Threat Awareness: Stay updated on emerging threats and attack vectors to maintain expertise in the evolving cyber landscape.
Required Experience:
- Incident Response Expertise: Bring at least 8+ years of hands-on experience managing the end-to-end incident response lifecycle, including detection, analysis, and post-incident activities. Demonstrate proficiency in incident response and digital forensics, particularly in responding at scale.
- Technical Proficiency: Possessing a robust understanding of threat intelligence, malware analysis, and network security concepts, complemented by practical expertise in digital forensics across operating systems, memory analysis, and handling malicious files. Experienced in utilizing EDR (Endpoint Detection and Response) tooling for effective incident response and management at scale. Knowledge of reverse engineering or scripting or programming languages is a plus.
- Investigation Background: Strong investigative skills and incident response expertise to effectively manage and resolve complex cases. Previous government or law enforcement experience with large-scale investigations is a plus.
- Analytical Skills: Excellent at analyzing large data sets under pressure, with strong multitasking abilities to address complex challenges and prioritize tasks effectively.
- Communication Skills: Clear and effective communication with diverse stakeholders and engineering teams. Strong in both written and verbal communication to deliver reports and updates and present technical findings to leadership.
- Curiosity and Learning: Stay updated on emerging technologies and evolving attack methods. Actively explore and master new tools to enhance investigative capabilities, proactively sharing knowledge to strengthen incident response effectiveness.
- Security and Compliance Knowledge: Solid understanding of security fundamentals and familiarity with regulatory frameworks such as FedRAMP, ISO 27001, SOC2, HIPAA, FERPA, GDPR, and PCI-DSS.
- Collaborative Mindset: Embrace collaboration, building team relationships to drive projects and provide incident support. Encourage innovative problem-solving and solutions-driven thinking.
- US Citizenship is required
Benefits at UltraViolet Cyber!
- 401(k), including an employer match of 100% of the first 3% contributed and 50% of the next 2% contributed
- Medical, Dental, and Vision Insurance (available on the 1st day of the month following your first day of employment)
- Group Term Life, Short-Term Disability, Long-Term Disability
- Voluntary Life, Hospital Indemnity, Accident, and/or Critical Illness
- Participation in the Discretionary Time Off (DTO) Program
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Job stats:
1
0
0
Category:
Incident Response Jobs
Tags: Compliance EDR FedRAMP Forensics GDPR HIPAA Incident response ISO 27001 Malware Network security Reverse engineering Scripting SOC 2 Threat intelligence
Perks/benefits: 401(k) matching Career development Health care Insurance Team events
Region:
North America
Country:
United States
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.
Information Security Specialist jobsPenetration Tester jobsSenior Cyber Security Engineer jobsSenior Cybersecurity Engineer jobsInformation Security Officer jobsInformation Systems Security Officer jobsPrincipal Security Engineer jobsSenior Network Security Engineer jobsInformation System Security Officer jobsCloud Security Architect jobsChief Information Security Officer jobsSenior Penetration Tester jobsStaff Security Engineer jobsSecurity Specialist jobsSecurity Consultant jobsCyber Security Specialist jobsIT Security Engineer jobsSenior Information Security Analyst jobsCyber Security Architect jobsSecurity Operations Analyst jobsSenior Product Security Engineer jobsCybersecurity Consultant jobsSenior Information Security Engineer jobsInformation System Security Officer (ISSO) jobsThreat Intelligence Analyst jobs
SaaS jobsSDLC jobsMalware jobsEncryption jobsRMF jobsForensics jobsSQL jobsGDPR jobsIPS jobsSplunk jobsIDS jobsTop Secret jobsEDR jobsFinance jobsDoDD 8570 jobsTerraform jobsBash jobsITIL jobsOWASP jobsCRISC jobsUNIX jobsGIAC jobsDocker jobsCompTIA jobsIntrusion detection jobs
TCP/IP jobsBanking jobsSANS jobsThreat detection jobsData Analytics jobsActive Directory jobsPolygraph jobsCCSP jobsOSCP jobsClearance Required jobsCyber defense jobsVPN jobsIT infrastructure jobsJavaScript jobsSOC 2 jobsAnsible jobsSOX jobsDNS jobsSOAR jobsJira jobsGCIH jobsSecurity strategy jobsOracle jobsNIST 800-53 jobsCryptography jobs