Director of Incident Response - Tokyo

About Us:

Cybereason is a leading cybersecurity company dedicated to providing comprehensive solutions to protect against the most sophisticated cyber threats. Our mission is to outthink and outpace adversaries by leveraging advanced technology, threat intelligence, and exceptional consulting talent. We are expanding our operations in the Asia Pacific Region of the Globe, specifically in the Japan market, and are seeking a highly experienced Asia Pacific Regional leader to join our global Consulting team.

Job Summary:

The applicant will lead and manage the existing Digital Forensics & Incident Response (DFIR) team in Tokyo, Japan in addition to the Asia Pacific (APAC) region reporting to the Global Digital Forensics & Incident Response (DFIR) leader in the US. This role is pivotal in guiding our clients through cyber crises, developing advanced response strategies, and ensuring the highest standards of security are maintained. The ideal candidate will have extensive experience in managing large-scale incident response operations, client-facing skills, an understanding of resourcing planning, a deep understanding of the threat landscape, and a proven ability to lead and mentor a team of cybersecurity professionals.

This role will also deliver incident response services to customers, manage all engagements in the Asia Pacific region, including Japan, and coach and mentor the regional delivery team.

Key Responsibilities:

Leadership, Strategy & Management:

• Leading and managing the Digital Forensics & Incident Response (DFIR) Cybereason employees, providing strategic direction and operational oversight.
• Responsible for managing and oversight of utilization of the team members, balancing billable priorities and administrative, non-billable priorities.
• Responsible for timecard management of direct reports and ensuring on-time entry, completeness, and accuracy of submission.
• As generated by Finance, responsible for invoice management and follow-through with clients for past-due invoicing.
• Responsible for sensible problem-solving and de-escalation during stressful situations, both internal and external.
• Serve as a trusted partner and point of escalation for clients, ensuring clear, consistent communication and expert guidance throughout the lifecycle of engagements.
• Collaborate with the Global Digital Forensics & Incident Response (DFIR) services to align incident response delivery and initiatives to meet customer business objectives.

Digital Forensics & Incident Response (DFIR):

• Oversee the end-to-end incident response process, including detection, analysis, containment, eradication, recovery, and post-incident activities.
• Coordinate and lead incident response efforts, ensuring timely and effective resolution.
• As the Engagement Manager (EM), responsible for quality control of Digital Forensic and Incident Response (DFIR) findings provided by assigned forensic examiners and incident responders and be able to deliver and articulate findings to Cybereason’s Clients in both technical and lay/executive levels of understanding and vernacular.
• Conduct root cause analysis and develop recommendations to prevent future incidents.
• Manage and deliver incident response services to customers, ensuring high-quality and timely support during cyber crises.

Threat Intelligence and Analysis:

• Stay abreast of the latest cyber threats, vulnerabilities, and attack vectors to proactively defend against emerging threats.
• Collaborate with threat intelligence teams to integrate threat data into incident response operations.
• Analyze and assess the impact of new threats and provide actionable insights to stakeholders.

Team Development and Training:

• Recruit, train, and mentor a high-performing team of incident response analysts and engineers.
• Foster a culture of continuous learning and professional development within the team.
• Develop and deliver training programs to enhance the skills and capabilities of the incident response team.
• Coach and mentor the team in Japan to ensure they are equipped to handle complex incident response engagements.

Collaboration and Communication:

• Serve as a primary point of contact (Engagement Manager) for client incident response activities with client executives and technical stakeholders.
• Communicate incident status, impacts, and resolutions to the client’s key stakeholders concisely and effectively.
• Establish and maintain strong relationships with industry peers, law firms, insurance carriers, insurance brokers, law enforcement, and regulatory agencies.

Qualifications:

• Bachelor's degree in Computer Science, Information Security, or a related field; advanced degree preferred.
• Minimum of 10 years of experience in cybersecurity, with at least 5 years in a senior incident response role.
• Proven track record of managing large-scale, complex incident response operations.
• In-depth knowledge of the cyber threat landscape, attack vectors, and defense mechanisms.
• Strong leadership skills with the ability to inspire and motivate a team.
• Excellent analytical, problem-solving, and decision-making abilities.
• Client-facing skills and maturity in speaking to clients in person or via video conferencing.
• Exceptional communication and interpersonal skills, with the ability to convey complex technical information to non-technical stakeholders.
• Relevant certifications such as GREM, GCFA, GCFE, CISSP, CISM, or equivalent are highly desirable.
• Bilingual reading, writing, and translation fluency in Japanese and English are required. 
• Other APAC region language fluencies are desired, but not required. 

#LI-Remote

More About Cybereason:

Our culture and how we operate reflects in our shared values. Our #Defenders are individuals with diverse skill sets and backgrounds who are driven to innovate and scale with our growing organization. We are a team that strives to learn from each other, solve challenging problems, and work collaboratively toward our goal of reversing the adversary advantage.

Core Values:

• Win As One: The power of an individual is less than the power of a team.
• Ever Evolving: Change keeps us at the forefront, so we encourage it.
• Daring: To achieve the impossible, we must dare to be different.
• Obsessed with Customers: We believe gaining our customers’ trust is the most important part of what we do.
• Never Give Up: We are tenacious and resilient, and we never stop.
• UbU: We believe people can only unlock their full potential when they work somewhere that accepts who they are.

If these values resonate with you and our vision excites you, join us today and help us end cyber attacks from the endpoint to everywhere! #Defenders

Don’t meet every single requirement? Studies have shown that women and people of color are less likely to apply to jobs unless they meet every single qualification. At Cybereason we are dedicated to building a diverse, inclusive, and authentic workplace (#uBu), so if you’re excited about this role but your past experience doesn’t align perfectly with every qualification in the job description, we encourage you to apply anyways. You may be just the right candidate for this or other roles.