Principal Incident Response Engineer

Job Title: Principal Incident Response Engineer

Department: Information Security

Location: Grand Rapids, Michigan (4 days onsite, 1 day remote)   

Why Choose Acrisure?

In record time, Acrisure has become the fastest-growing insurance broker globally. A top 20 player a few years ago, we are now in the top 10 insurance broker globally, with ambitious plans to continue growing at pace. Beyond our growth, our dedication to client service, as fueled by our business model and culture, means that Acrisure’s opportunity is to be the most relevant and successful privately held insurance broker in the industry.

Our model is unique. Through a network of agency partners that provide local service with global reach, we work in service of two core objectives: create value and be a good partner.

Our culture is strong. We are a collaborative company of entrepreneurial, innovative, and talented people who believe in our future. We outthink and out work the competition. We look outside our walls and are energized by our fast-paced trajectory.

Our vision for the future is clear. We have limitless potential to achieve unprecedented success in the insurance industry. To achieve our opportunity, a best-in-class Information Security Team must support us.

This is an exciting opportunity to join this growing team and immediately impact on the company's overall success. If you are interested in collaborating with good people who celebrate entrepreneurialism and work with the commonality of purpose, Acrisure is the place for you.

Essential Duties and Responsibilities:

• Team: Train, and mentor incident response team members. Provide guidance and support to team members during incident response activities.

• Security Incident Response: Develop and implement incident response plans, including threat detection, investigation, containment, eradication, and recovery. Act as the primary point of contact for security incidents and ensure timely response and resolution.

• Security Incident Reporting and Metrics: Generate reports on security incidents, trends, and metrics for senior management. Analyze data to identify patterns, potential risks, and areas for improvement. Present findings and recommendations to relevant stakeholders.

• Post-Incident Analysis: Conduct post-incident analysis to identify root causes and recommend improvements to prevent future incidents. Implement corrective actions and improvements based on post-incident findings.

• Vendor and Tool Management: Manage relationships with third-party incident response service providers and vendors. - Evaluate and select appropriate cybersecurity tools and technologies to support incident response efforts.

• Tabletop Exercises and Training: Organize and conduct regular tabletop exercises to test the incident response plan and team's readiness. - Provide training and awareness programs to educate employees on incident response best practices.

• Continuous Improvement: Continuously assess and enhance the incident response program to adapt to evolving threats and technologies. - Stay updated on emerging cybersecurity threats and trends.

• On-Call Availability: Be available for on-call duty to respond to security incidents outside of regular business hours, as necessary.

This description is not meant to be all-inclusive and may be modified at the discretion of management.

Competencies:                                                       

To perform this job successfully, an individual must be able to perform each essential duty satisfactorily. The requirements listed below are representative of the knowledge, skill, and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

Education and/or Experience:

• A seasoned professional with 5+ years of progressive experience in Security Operations and Incident Response.

• Deep understanding of the latest security technologies and best practices

• Track record of successful collaboration with network, datacenter, and systems teams

• Proven expertise in managing timelines and deliverables effectively

• Practical experience in risk assessments, vulnerability testing, and incident response

• Exceptional communication and collaboration skills for streamlined operations

• Certifications such as GREM, GCIH, GCFA are a plus.

Other Qualifications:

• Able to work independently and enjoy a high degree of interaction with team members

• Ability to contribute to a collaborative environment by consistently demonstrating teamwork, high motivation, positive behavior and effort to achieve goals and objectives

• Self-motivated and driven

• Maintain a sense of urgency and ability to work with and meet deadlines

• Demonstrate effective written and verbal communication, including the ability actively listen, and problem solve with minimal assistance

• Demonstrates excellent time management and prioritization skills

• Attention to detail and commitment to a high level of accuracy

• The ability to multitask, prioritize, work independently, and use discretion surrounding sensitive information

• Ability to maintain a professional demeanor and positive attitude

Physical Demands: The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

• Moderate stress due to regular deadlines and daily challenges.

• High finger dexterity while typing documents and forms

• Occasionally lift up to 20lbs.

Work Environment:  The work environment characteristics described here are representative of those an employee encounters while performing the essential functions of this job, and reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

• Work is done in a temperature-controlled, non-smoking office.

• Workstations are cubicles with moderately high sides.

• The noise level in the work environment is usually moderate.

Together with our Agency Partners, Acrisure is reshaping the insurance industry. Be a part of that evolution and join the Acrisure community, either as part of our Home Office support teams or within one of our Agency Partners. Visit our website to see available job openings in insurance, accounting, account management, and more. https://acrisure.com/about-acrisure/careers/

To Executive Search Firms & Staffing Agencies:  Acrisure does not accept unsolicited resumes from any agencies that have not signed a mutual service agreement.  All unsolicited resumes will be considered Acrisure’s property, and Acrisure will not be obligated to pay a referral fee.  This includes resumes submitted directly to hiring managers without contacting Acrisure’s Human Resources Talent Department.

Acrisure is committed to employing a diverse workforce. All applicants will be considered for employment without attention to race, color, religion, age, sex, sexual orientation, gender identity, national origin, veteran, or disability status.  California residents can learn more about our privacy practices for applicants by visiting the Acrisure California Applicant Privacy Policy available at www.Acrisure.com/privacy/caapplicant.
 

To Executive Search Firms & Staffing Agencies: Acrisure does not accept unsolicited resumes from any agencies that have not signed a mutual service agreement. All unsolicited resumes will be considered Acrisure’s property, and Acrisure will not be obligated to pay a referral fee. This includes resumes submitted directly to Hiring Managers without contacting Acrisure’s Human Resources Talent Department.