Senior Incident Response Lead, Cybersecurity Infosec

IT accelerates the success of IDEXX employees and customers by providing scalable and innovative solutions and leadership. We are a global organization that supports all technology needed to deliver products and solutions to customers enabling them to focus on delivering high quality patient care.  We strive to provide exceptional customer service and experience in the most efficient means possible, requiring alignment and cross-functional communication.

Within Cybersecurity at IDEXX, the Senior Incident Response Lead serves as the organization's primary technical escalation point for security incidents and leads the enterprise-wide incident response strategy. This role combines advanced incident response capabilities, threat detection expertise, and team leadership to protect organizational assets and maintain security resilience.

In this role, you will be responsible for…

Incident Response Leadership:

• Serve as top-tier technical escalation resource for Security Operations during incident investigation and response
• Direct complex forensic investigations and evidence collection according to forensically sound procedures
• Coordinate with Legal and Privacy teams on regulatory compliance reporting requirements
• Perform damage assessments and guide mitigation strategies
• Manage relationships with the Security Operations Center (SOC) provider, ensuring comprehensive logging and alerting coverage across the IDEXX environment.

Threat Detection & Analysis: 

• Lead proactive threat hunting program development and execution with quarterly reporting to the CISO on emerging threats, identified detection and response gaps, and proposed remediation options.

• Monitor external threat intelligence sources to maintain current threat landscape awareness
• Coordinate purple team exercises to evaluate threat vectors and response capabilities
• Analyze network alerts and security events to determine root causes and attack patterns

Process & Program Development: 

• Develop and maintain IR playbooks and standard operating procedures.   Create and lead IR tabletop exercises based on NIST SP 800-61 guidelines.  Define incident categories, response procedures, and timeline requirements. Support business continuity and disaster recovery planning

Documentation & Reporting: 

• Write and publish after-action reviews and incident reports.  Present IR metrics and KPIs to executive leadership.  Maintain current documentation of IR procedures and playbooks

Leadership & Communication: 

• Mentor and guide security team members.  Coordinate with enterprise-wide cyber defense technicians.  Drive risk mitigation strategies across business units.  Build and maintain relationships with key security partners

What you will need to succeed:

• 7+ years of hands-on incident response experience
• 3+ years leading IR teams and/or programs
• Demonstrated expertise with IR tools and frameworks
• Strong forensics and malware analysis capabilities
• Experience with enterprise security technologies
• Relevant security certifications (e.g., GCIH, GCFA, CISSP)
• Deep understanding of network security architecture and protocols (TCP/IP, DNS, etc.)
• Communicate effectively with technical and non-technical stakeholders

• Expertise in intrusion detection methodologies and techniques
• This position requires availability for on-call incident response duties and the ability to work extended hours during active security incidents.
• Knowledge of system administration and hardening techniques
• Strong background in malware analysis and containment
• Understanding of cloud service models and their IR implications
• Proficiency with security event correlation tools
• Expertise in various attack classes, stages, and methodologies
• Knowledge of vulnerability types and associated attacks
• Core Competencies: Incident Management, Computer Forensics, Threat Analysis, Business Continuity, Computer Network Defense, Infrastructure Design, Vulnerability Assessment, System Administration, Information Systems/Network Security

Why IDEXX?

We’re proud of the work we do, because our work matters. An innovation leader in every industry we serve, we follow our Purpose and Guiding Principles to help pet owners worldwide keep their companion animals healthy and happy, to ensure safe drinking water for billions, and to help farmers protect livestock and poultry from diseases. We have customers in over 175 countries and a global workforce of over 10,000 talented people.

So, what does that mean for you? We enrich the livelihoods of our employees with a positive and respectful work culture that embraces challenges and encourages learning and discovery.   At IDEXX, you will be supported by competitive compensation, incentives, and benefits while enjoying purposeful work that drives improvement. 

Let’s pursue what matters together.

IDEXX values a diverse workforce and workplace and strongly encourages women, people of color, LGBTQ+ individuals, people with disabilities, members of ethnic minorities, foreign-born residents, and veterans to apply.

IDEXX is an equal opportunity employer. Applicants will not be discriminated against because of race, color, creed, sex, sexual orientation, gender identity or expression, age, religion, national origin, citizenship status, disability, ancestry, marital status, veteran status, medical condition, or any protected category prohibited by local, state, or federal laws.

#LI-REMOTE