Overview
eir evo talent are currently seeking applicants for a Security Incident Response Manager. This is a permanent position located with our client in Dublin. Hybrid working options available.
Job Specification:
Our client have a requirement for a Security Incident Response Manager to join the client’s Security Services Team. The Security Incident Response Manager will be responsible for overseeing the development and implementation of incident response plans, conducting incident response exercises, and serving as the incident response manager in the event of a major cybersecurity incident. The ideal candidate will possess a strong technical background in cybersecurity, along with excellent communication, incident management, and leadership skills.
Responsibilities and Duties
1. Develop and maintain incident response plans : The Incident Response Manager will be responsible for continuously developing and maintaining a suite of incident response plans that outline the procedures and protocols to be followed in the event of a cybersecurity incident. This includes identifying potential threats, assessing risks, and outlining the roles and responsibilities of the incident response team.
2. Conduct incident response exercises: The Incident Response Manager will conduct regular incident response exercises, across the various organisational structures, to test the effectiveness of the incident response plans and identify areas for improvement. This includes coordinating with stakeholders, conducting tabletop exercises and simulations, and analysing results to develop recommendations for improvements.
3. Manage cybersecurity incidents: The Incident Response Manager will serve as the primary incident response manager in the event of a major cybersecurity incident, working with the incident response team to contain the incident, mitigate the damage, and restore operations. This will include coordinating with both internal and external stakeholders.
4. Manage cybersecurity events: The Incident Response Manager will serve as the primary liaison with the Client’s third-party SOC on all cybersecurity events, identifying where events need to be escalated to incidents and following through until closure.
5. Continuously improve incident response capabilities: The Incident Response Manager will continuously monitor and improve incident response capabilities by staying up-to-date with emerging threats, technologies, and best practices. This includes conducting research, attending conferences, and collaborating with other cybersecurity professionals.
6. Support the Security Service function: As a cybersecurity subject matter expert, the Security Incident Response Manager will assist and support the wider Technology & Security Service function within the orginisation.
Work Relationships
7. Reporting to the Security Services Manager.
8. Internal: Constituent sections of the Group IT&T department including Technology Development, Managed Services, Service Delivery, and Security Services.
9. Internal: The wider Group IT&T team.
10. Internal: Business teams.
11. Within Operating Companies: IT Managers.
12. Within Operating Companies: Business teams.
13. External: Third-party Suppliers & Vendors.
Experience and CompetenClients
14. Experience in leading an Incident Response function within a large organisation.
15. Strong understanding of IT security risks.
16. Strong understanding & experience of security processes and services.
17. Good familiarity with the NIST framework.
18. Demonstrated ability to deliver service in high demand / pressure circumstances.
19. Excellent communication skills with demonstrated ability to communicate accurately and clearly to business and IT users.
20. Good reporting and documentation skills.
21. Good presentation skills & ability to host meetings to an audience.
22. Demonstrated ability to work on own initiative as well as in a team environment.
23. Strong interpersonal skills.
Qualifications and Certifications
24. Relevant Bachelor’s Degree in IT, Computer SClientnce, Cybersecurity, or related area.
25. Experience working with third party vendors including MSP & SOC.
26. 5+ years of experience in cybersecurity or incident response.
27. Strong technical background in cybersecurity, including experience with intrusion detection, malware analysis, and vulnerability assessment.
28. Experience developing and implementing incident response plans.
29. Excellent communication, project management, and leadership skills.
30. Relevant certifications such as CISSP, CISM, or GIAC are highly desired.
31. ITIL certification desirable.