Senior Cyber Defense Manager - Incident Response
Las Vegas, United States
USD 120K-155K (estimate) Senior-level Full Time
Tasks
- Align contracts and SLAs for MSSP
- Align incident response with NIST ISO 27001 and MITRE ATTACK
- Conduct tabletop exercises and red team blue team simulations
- Configure EDR and XDR systems
- Coordinate forensic investigations
- Develop incident response playbooks and runbooks
- Drive incident response metrics and maturity assessments
- Establish MSSP governance and incident handoff protocols
- Improve mean time to detect and mean time to respond
- Integrate threat intelligence
- Lead incident response lifecycle
- Lead threat hunting collaborations
- Manage Incident Response Team
- Manage incident response operations
- Perform MSSP due diligence and risk mitigation
- Produce executive incident reporting
- Provide performance management and technical coaching
- Serve as primary incident point of contact
- Support blue team maturity
- Support vulnerability management and security awareness
- Transition MSSP services end to end
- Tune SIEM detection rules
Perks/Benefits
- N/A
Skills/Tech-stack
Blue Team | Blue Team Simulations | Cause analysis | Cloud Security | Digital forensics | EDR | Email Security | Governance | Governance Risk | Governance Risk and Compliance | ISO 27001 | Identity Security | Incident Response | MSSP Transition | MTTD | MTTR | Mitre Attack | NIST SP | NIST SP 800 | NIST SP 800-61 | Network Security | Operations Center | Red team | Risk and Compliance | Root Cause Analysis | Root cause | SIEM | SOAR | Security Operations Center | Security operations | Service Level | Service Level Agreement | Tabletop Exercises | Threat Intelligence | Threat hunting | Vulnerability Management | XDR
Education
Bachelor of Engineering | Bachelor of Science | Master of Science
Related jobs
-
Manager Information Security Programs USD 160K-175KCompliance | Contract Management | DLP | Executive reporting | GRC401k match | Dental insurance | Flexible spending account | Health savings account | Life insuranceSenior-level Full TimeLos Angeles, CA15h ago
-
Security Operations Manager USD 90K-104KAccess reviews | Azure | Cybersecurity | DLP | Data Loss Prevention401k match | Company paid life insurance | Company-paid disability insurance | Dental insurance | Health insuranceMid-level Full TimePhoenix, AZ17h ago
-
Security Operations Manager USD 150K-180KAutomation | CrowdStrike Falcon | Defender for Endpoint | EDR | Incident Response401k match | Birthday treat | Discretionary bonuses | Free premium dental insurance | Free premium life insuranceMid-level Full TimeRemote, US (PST) R18h ago
-
Red Team Manager USD 165K-195KAdversary Emulation | After-action reporting | Application Testing | Blue Team | Blue team collaborationRemote workSenior-level Full TimeWork from home, VA, United States R1d ago
-
Information Security Manager USD 140K-170K800-53 | AWS | Audit management | Azure | Cybersecurity Framework401k match | Company swag | Dental insurance | Family planning stipend | Health insuranceMid-level Full TimeDurham, NC or Washington, DC R1d ago
-
Head of Security Engineering USD 250K-300KAI Security | Application Security | Blue Team | Bug Bounty | Code review401k match | Company offsite | Employee wellness | Equipment reimbursement | Free therapyExecutive-level Full TimeUS - Remote R1d ago
-
Lead Info Sec Engineer USD 151K-252KAccess Management | Active Directory | Asset Management | Change governance | Configuration ManagementDay shift | Full-time employment | Remote workSenior-level Full TimeDistrict of Columbia-Washington1d ago
-
ARM Templates | Authorization to Operate | Azure ARM | Azure ARM templates | Backup and Recovery4 days per week onsite | On-call rotation | On-site workMid-level Full TimeArlington/Rosslyn, Virginia, United States1d ago
-
Security Engineer II, Policy Lead (TS/SCI, Onsite) USD 97K-171KBehavior Analysis | Incident Response | Insider Threat | Policy Development | Risk MitigationCompetitive benefits package | Mentorship | Onsite work | Professional development opportunitiesSenior-level Full TimeArlington/Rosslyn, Virginia, United States1d ago
-
Lead Cyber Security Engineer | $140K-$175K + Remote + Equity | Exciting High growth AI Operational Intelligence Startup A USD 140K-175KAPI Security | Cloud Security | Governance | ISO 27001 | ISO 42001Equity | Health medical and vision coverage | PTO | Paid Holidays | Remote workExecutive-level Full TimePhiladelphia, PA, United States R1d ago
-
Cybersecurity Lead USD 156K-174KApplication Security | Assessment and Authorization | Code Analysis | Cybersecurity | Cybersecurity compliance401k matching | Paid parental leaveSenior-level Full TimeDC, United States1d ago
-
Authorization | Continuous Monitoring | Control Assessment | Incident Response | NISTSenior-level Full TimeWashington, DC, United States1d ago
-
ACAS | Assessment and Authorization | Audit Reduction | Configuration Management | Continuous MonitoringSenior-level Full TimeUSA - Kent, WA, United States1d ago
-
Information Security Architect - CSIRT USD 148K-223KAWS | Azure | Best practices | Cause analysis | Cloud SecuritySenior-level Full TimeWashington - Seattle, United States1d ago
-
Lead information Security Engineer USD 143K-224KAccess Management | Authentication | Business Continuity | Content Filtering | Cryptography24x7x365 Operations Center Exposure | Hybrid work schedule | Rotational on-call supportSenior-level Full Time141278-NC-CIC Customer Information Ctr, United States1d ago
-
Lead Information Security Engineer USD 119K-224KAI ethics | AI for security | APIs | AWS | AzureHybrid work scheduleSenior-level Full Time142019-NC-300 South Brevard, Charlotte, United States1d ago
-
Lead Info Security Architect USD 136K-165KAgile | Automation | Cloud Access Security Broker | Cloud Architecture | Cloud SecuritySenior-level Full Time3965 Dallas Parkway Frisco, TX 75034, …1d ago
-
Platform Engineering Manager USD 112K-160KAIOps | Amazon Web Services | Anomaly Detection | Automated remediation | AzureMid-level Full TimeFL Tampa Bay HQ, United States1d ago
-
Cloud Security | Configuration Management | DDoS | Data Loss Prevention | Data lossBackup childcare | Financial coaching | Health care coverage | Mental health support | On Site Health Wellness CentersSenior-level Full TimePlano, TX, United States1d ago
-
Cybersecurity Incident Commander USD 176K-225KBusiness email compromise | Cloud Compromise | Cloud Security | Data exfiltration | Digital forensicsSenior-level Full TimeWA - Seattle; CA - San …1d ago
-
Technical Account Manager - West Coast USD 155K-175KAPI Integration | Cloud Security | Customer Success | Cybersecurity | Data correlation401k | Dental insurance | Equity compensation | Family leave | Healthcare benefitsMid-level Full TimeLos Angeles, California R1d ago
-
Cloud Security Manager (Azure) USD 110K-215K800-171 | Access Management | Active Directory | Azure Active Directory | Azure ArcMid-level Full TimeOrlando, FL, United States1d ago
-
Manager-Cloud Operations USD 92K-143KAWS | Access Management | Alerting | Automation | AzureDailyPay | Education assistance | Financial education | Health benefits | Paid parental leaveMid-level Full TimeYork, PA, United States1d ago
-
Manager, IT Security USD 110K-140KAI Security | Business Continuity | CCPA | CIS Controls | COBIT401k | Adoption Assistance | Commuter benefits | Critical illness and accident insurance | Dental insuranceMid-level Full TimeRemote US Location, United States R1d ago
-
Cybersecurity Manager - SME USD 150K-190KACAS | Detection and Response | Detection and prevention | EMASS | Endpoint Detection and ResponseSenior-level Full TimeFAIRFAX, VA, United States2d ago