Cyber Incident Response Team (CIRT) Lead (SME)
Tasks
- Advise leadership during high severity incidents
- Conduct forensic methodologies
- Coordinate cross organizational response and remediation
- Develop validate incident response playbooks
- Integrate threat intelligence and threat hunting insights
- Lead after action analysis and corrective action planning
- Manage chain of custody procedures
- Mentor CIRT leadership and establish response metrics
- Optimize SOC and CIRT tooling architecture
- Perform adversary mapping and TTP mapping
- Provide enterprise incident response technical authority
- Run readiness exercises and purple blue red team activities
Perks/Benefits
- N/A
Skills/Tech-stack
ATO | Advanced Cyber Investigations | Adversary TTP | Adversary TTP Mapping | Blue Teaming | Cyber Investigations | Cybersecurity | Cybersecurity operations | EDR | Evidence handling | Executive reporting | Forensics | Incident Response | MTTD | MTTR | Malware analysis | Management Framework | Network Forensics | Packet Capture | Purple Teaming | RMF | Red Teaming | Risk Management | Risk Management Framework | SOAR | TTP mapping | Threat Intelligence | Threat hunting | XDR
Education
Bachelor of Arts | Bachelor of Science | Master of Arts | Master of Science | PhD
Related jobs
-
Artificial Intelligence | Audit | Compliance Management | Dashboarding | Data VisualizationBackup childcare | Financial coaching | Health care coverage | Mental health support | On-site health and wellness centersSenior-level Full TimeWilmington, DE, United States22h ago
-
Lead Cybersecurity USD 190K-233KApplication Security | Application Security Testing | Cyber incident | Cyber incident response | Cybersecurity401k plan | Accidental death insurance | Adoption reimbursement | Employee assistance program | Employee discountsSenior-level Full TimeUSA:NC:Charlotte / Research Dr - Dat:9139 …1d ago
-
Lead Workstation Agentic AI Engineer USD 120K-180KAgentic AI | Artificial Intelligence | Azure DevOps | Business Intelligence | CI/CDContinuing education support | Flexible time off | Health care coverage | Retirement planningSenior-level Full TimeUS - NJ - PRINCETON ONE …1d ago
-
Cybersecurity and Risk Management Lead USD 132K-251KApplication Security | Automated security | Automated security testing | Compliance Management | Control FrameworksSenior-level Full TimeUS-MA-ANDOVER-AN0 ~ 366 Lowell St ~ …1d ago
-
Information Security Analyst Sr. Lead USD 99K-151KAI | Agentic AI | Application Security | Automation | Behavior analyticsHybrid work | Travel up to 25 percentSenior-level Full TimeThe Woodlands, Texas, United States1d ago
-
Cyber Test Engineer USD 132K-199KBash | C plus plus | C# | Cyber Test | Cyber Test and Evaluation401k plan | Education assistance | Flexible spending accounts | Paid Holidays | Professional development programsSenior-level Full TimeEl Segundo, United States1d ago
-
Lead GRC Analyst USD 135K-150KAudit management | Compliance Management | Control Effectiveness Evaluation | Control effectiveness | Due Diligence401k plan | Health savings account | Paid Holidays | Parental leave | Sick timeSenior-level Full TimeLos Angeles, CA1d ago
-
AI | CCPA | Cloud Computing | Cybersecurity | Data GovernanceBackup childcare | Financial coaching | Health care coverage | Mental health support | On-site health and wellness centersSenior-level Full TimeNew York, NY, United States1d ago
-
Lead Data & AI Security Engineer USD 161K-266KAI Security | API Security | Access Control | Access Management | Automated DeploymentSenior-level Full TimeArlington, Virginia, United States2d ago
-
Lead Cybersecurity - Telecom Network Security Automation USD 141K-237KAnsible | BGP | Behavior analytics | CI/CD | CoPP401k plan | Adoption reimbursement | Disability benefits | Employee assistance program | Employee discountsSenior-level Full TimeUSA:NC:Charlotte / Ibm Dr - Adm:8505 …2d ago
-
AI Governance | Access Management | Authentication | Automation | Cloud Identity401k matching | Employee stock options | Health benefits | Paid time off | Volunteer time offExecutive-level Full TimeSan Diego, United States2d ago
-
Cybersecurity ICAM Lead USD 108K-184K800-63 | Access Management | Authentication | Authorization | Compliance ManagementSenior-level Full TimeMaryland Client Office (MD88), United States2d ago
-
Technical Lead, Offensive Cyber Security Operations USD 145K-205KAPI Security | Adversary Emulation | Application Security | Attack Path | Attack Path AnalysisSenior-level Full TimeUSA IRV-1472 Alton/DBC6-7, United States2d ago
-
Lead Engineer - Insider Risk USD 132K-238KBehavioral analytics | CASB | Capability Development | Cause analysis | Cloud Security401k | Employee discount | Health benefits | Hybrid work options | Life insuranceSenior-level Full Time7000 Target Pkwy N,NCD-0375 Brooklyn Park,MN …2d ago
-
AWS | Alation | Apache Spark | Azure | BigIDBackup childcare | Diversity and inclusion programs | Equal opportunity employment | Financial coaching | Health care coverageSenior-level Full TimePlano, TX, United States2d ago
-
Lead Penetration Tester USD 200K-200KAgile | AppDetective | Application penetration testing | Burp Suite | C#401k match | Community engagement opportunities | Education training allowance | Leave buy-back | Medical/Dental/VisionSenior-level Full TimeFt. Meade, Maryland2d ago
-
Tier 2 Shift Lead / Secret USD 104K-166KAPT tracking | Autopsy | Bash | Cyber Threat | Cyber Threat IntelligenceSenior-level Full TimeBeltsville, MD, United States3d ago
-
IT & Security Lead USD 150K-200KAI RMF | AI Security | Access Control | Access Controls | Access ManagementDirect access to leadership | Hands on IC role | High ownership role | Startup experienceSenior-level Full TimeSan Francisco Bay Area3d ago
-
FCC - Vulnerability Management Lead USD 113K-180KCVSS | Cloud Security | Compliance | Configuration Management | Continuous MonitoringPublic Trust Clearance | Remote workSenior-level Full TimeUnited States - Remote R3d ago
-
FCC - Lead PAM Engineer USD 120K-195KA and A | AWS | Access Management | Active Directory | Audit and compliancePublic Trust Clearance | Remote workSenior-level Full TimeUnited States - Remote R3d ago
-
FCC - ISSO Lead USD 117K-155K800-53 | Compliance Monitoring | Configuration Management | Continuous Monitoring | Control AssessmentPublic Trust Clearance | Remote workSenior-level Full TimeUnited States - Remote R3d ago
-
Lead Cyber Security Engineer USD 86K-173KAccess Control | Authentication | Cybersecurity | Development Lifecycle | EncryptionEducation benefit | Free medical coverage | Retirement savings plan | Student debt program | Tuition reimbursementSenior-level Full TimeUnited States - Massachusetts - Westford …3d ago
-
Lead Cyber Security Engineer USD 86K-173KAccess Control | Authentication | Cybersecurity Incident Response | Development Lifecycle | Device securityEducation benefit | Free medical coverage | Retirement savings plan | Student debt program | Tuition reimbursementSenior-level Full TimeUnited States - Massachusetts - Westford …3d ago
-
Internal Audit: IT Lead Auditor - Cybersecurity USD 89K-149KAudit Reporting | Audit planning | Automation | Cause analysis | Cloud ComputingHybrid work scheduleEntry-level Full TimeBuffalo, NY, United States3d ago
-
Amazon Web Services | Cloud platform | Cyber Threat | Cyber threat analysis | Detection SystemsEducational resources | Employee resource groups support | Family building benefits | Generous vacation | Health and wellbeing benefitsSenior-level Full TimeJacksonville, 5201 Gate Parkway, United States3d ago