Incident Response Manager, Contract

Responsibilities

• Leadership & Team Scaling (The Builder): Provide direct day-to-day management to an initial team of 5 security analysts. Participate heavily in strategic workforce planning to scale and extend the team by the End of Year (EOY). - Incident Response & Workflows (The Maintainer): Oversee and continuously optimize end-to-end incident response workflows. Act as the escalation point for critical security incidents, ensuring rapid containment and remediation. - Threat Detection & Response: Leverage specialized expertise to hunt for, detect, and neutralize sophisticated cyber threats across the enterprise environment. - Security Infrastructure Management: Monitor and maintain central network security defenses, including firewall management, configuration tracking, and rule optimization. ## Qualifications

• Experience: Minimum of 3+ years of professional leadership/management experience within a Security Operations Center (SOC) or Incident Response team. - Threat Detection Expertise: Specialized, hands-on experience in modern threat detection strategies, malware analysis, and adversarial tactics. - EDR Tools: Proven proficiency with Enterprise Endpoint Detection and Response (EDR) platforms (e.g., CrowdStrike, Defender for Endpoint, SentinelOne) to hunt and isolate endpoint threats. - SIEM Tools: Deep understanding of Security Information and Event Management (SIEM) architectures for log analysis, correlation rule building, and alert optimization. - Network Security: Practical experience managing network architecture security defenses, with specific hands-on capabilities in firewall management and network protocols.