Cyber Security Incident Management Technical Lead

We are unable to sponsor as this is a permanent full time roleA prestigious fortune 500 company is on the search for a Cyber Security Incident Management Technical Lead. This technical lead will manage over the cyber security incident investigations, incident write ups and will be the liaison between the business and security groups. This person needs excellent writing skills and be able to write up all the incidents for business stakeholders. They will be making sure everything is taken care of when an incident happens, Internal and External Post Related problem management.Responsibilities:

• Transform our Cyber Security Incident Management function to meet & exceed the Incident Containment, Eradiation, Recovery and Repair objectives
• Take the lead on Incident Management calls, including documenting & classifying the Incidents, own the accountability for consistent execution of process to coordinate response, triage and escalation of security incidents
• Lead functional Problem Management, including accountability for Root Cause Analysis of Incidents, and then coordinate actions to improve or correct the situation.
• Routinely brief and update senior leadership and other stakeholders on the active incidents and manage expectations
• Lead maintenance, upkeep and enhancements of Cyber Security Incident response plans and SOPs
• Lead development and run Cyber Security focused exercises and tabletops
• Participate in development & update of incident response playbooks to ensure response activities align with best practices
• Build and leverage effective relationships across within Information Security with functions such as Threat Intel, Threat Detection as well as external teams in various lines-of-business, ensuring clear lines of communication and a comprehensive approach to security

• 7-10 years of IT experience with 4+ years of experience in Incident and Problem Management
• Bachelor’s degree in Information Security, Computer Science, Information Technology, related field or equivalent work experience
• 3+ years of Information Security experience highly preferred
• Technical writing experience
• Demonstrated experience in handling security events in mission critical environments; troubleshooting mindset, analysis, and technical expertise to manage incidents and service requests; previous experience in troubleshooting day-to-day operational processes such as security monitoring, data correlation, security operations etc.
• Demonstrated capability to leading Enterprise Cyber Command Centers and Incident / Crisis Management
• CISSP, CISM Certified Professionals will be preferred