Senior Manager/Director – Cyber Incident Response

Twitter Facebook
Any US City
$120,000 - $300,000
Job Type
Direct Hire
May 31, 2018
Job ID
Get Social with us:  Like us on Facebook,  Follow us on LinkedIn… Follow us on Twitter… 
Be the FIRST to know about NEW CAREER Opportunities!

As cyber-crime continues to threaten businesses large and small, hackers are improving their tactics, techniques and procedures faster than corporate security teams can keep up.  Increasingly organized and collaborative, their methods grow more sophisticated each year.
Our Fraud Investigation and Dispute Services (FIDS) team is experiencing rapid growth, and as a Cyber Senior Manager you’ll be a key part of that growth.  Utilizing your network and working with companies across all industries, you’ll demonstrate leadership by communicating and further developing our creative solutions to address our client’s specific needs and lead a team of highly skilled professionals on a wide range of engagements.  This opportunity is for team oriented individuals who want to continually learn, research new technologies or attack patterns and develop new skills to drive innovation as part of a continually evolving service offering.
Job Description:
The nature of this role means no two projects will be the same.  You’re likely to balance your time between directly liaising with our clients to understand their situation and create an appropriate response plan. This will include investigating what happened and helping the client to determine if the attacker is potentially still in their environment or if their systems are being misused. You will be helping clients assess and resolve cyber events from the front lines and managing multiple teams on an ongoing basis for multiple clients at a time. That means thinking differently about the type of security breach, identifying vulnerabilities, and hardening the IT environment to complicate an attacker’s efforts to get back in.
 Relationships across a network of existing and potential clients, understanding their businesses to provide tailored insights to maximize business development opportunities.
  • Managing and developing cyber resources, including training and technical oversight.
  • Assisting with the growth of cyber, including strategy, planning and execution.
  • Constantly developing your understanding of our clients’ industries, identifying trends, risks and opportunities for improvement.
  • Continuously monitor developments in the litigation profession and regulatory events to identify trends that are relevant to your clients.
  • Ability to communicate technical events and analysis to both technical and nontechnical audiences and an understanding of the potential legal impacts.
  • Developing your team through constant coaching and feedback, providing challenging goals and guaranteeing your people have the skills, knowledge and opportunities to grow.
  • Experience in large scale, complex post-incident investigations, using techniques such as network forensics, log analysis, timeline creation, and host-based forensics have been applied.
  • Experience performing host-based digital forensics on Microsoft Windows and Mac based systems using both Windows and Linux based forensic tools.
  • As a Senior Manager you’ll be working towards demonstrating your leadership as you prepare for the next level of your career as a Partner, Principal or Executive Director.
  • A bachelor’s degree, supported by at least 8 years of related work experience.
  • An in-depth understanding of computer forensic and cyber security principles including intrusion response and network monitoring.
  • Possess at least one professional designation, such as EnCE, CCE, CCFP, GCFA, GNFA, GCFE, CFCE, GCIH, GREM, etc.
  • Excellent project management skills and the ability to prioritize when working on multiple engagements.
  • Strong negotiation skills, and the confidence to communicate complex technical concepts to a wide range of audiences.
  • A quantifiable history of business development and speaking engagement success.
  • The ability to travel to client locations or work extended hours when necessary in order to respond to client events.
  • Experience with evidence seizure and conducting intelligence analysis.
  • Ability to automate tasks using a scripting language (Python, Perl, Ruby, etc.) or experience using Blue Prism.
  • In-depth understanding of computer forensic principles including intrusion response, network monitoring, log analysis, cloud based systems, database structures, querying languages and common network tools .
  • Understanding of attacker Indicators of Compromise & Tactics Techniques and Procedures and organizing them so they can be applied to current and future investigations.
  • Knowledge of intrusion detection systems and how they detect host and network-based intrusions via intrusion detection technologies.
  • Knowledge of Windows, UNIX and Mac host based forensics and command line.
  • Global network, experience working with fortune 500 companies, international and frequent travel opportunities.