Manager, Incident Response

Your Role

We are seeking a seasoned cybersecurity professional with extensive experience in incident response and with a passion for safeguarding sensitive information, mitigating security risks, and threat hunting. You will manage cybersecurity incidents with efficiency and precision, developing and implementing cybersecurity awareness programs, continuous learning, and professional development. In this role you need strong leadership abilities, a keen eye for detail, and communication and interpersonal skills that allow you to collaborate with stakeholders at all levels of the organization.

Additionally, you crave the opportunity to align your talents with a healthcare organization dedicated to prioritizing both patient and team member well-being, striving to cultivate an exceptional team member experience. Join us in making a meaningful impact and shaping the future of cybersecurity and Healthcare within a dynamic, people-centric environment.

Primary Functions of the IR Manager Include:

Cybersecurity Incident Response:

• Lead and manage the company's incident response processes and team members as the organization grows.
• Develop, implement, and maintain incident response plans and procedures.
• Coordinate and conduct incident response activities, including detection, analysis, containment, eradication, and recovery.
• Investigate security incidents to determine root cause and implement corrective actions.
• Ensure timely and effective communication with stakeholders during security incidents.

Threat Hunting:

• Proactively identify and mitigate potential security threats and vulnerabilities.
• Conduct threat hunting exercises to identify and address advanced persistent threats.
• Stay current with the latest threat intelligence and security trends.

Cybersecurity Awareness:

• Develop and implement cybersecurity awareness training programs for team members.
• Promote a culture of cybersecurity awareness and best practices throughout the organization.
• Monitor and measure the effectiveness of cybersecurity awareness initiatives.

HIPAA (Health Insurance Portability and Accountability) Compliance:

• Ensure compliance with HIPAA regulations and standards.
• Develop, implement, and maintain policies and procedures to protect the confidentiality, integrity, and availability of protected health information (PHI).
• Conduct regular audits and assessments to ensure HIPAA compliance.

Team Management:

• Recruit, train, and mentor incident response team members.
• Provide leadership and guidance to the incident response team.
• Foster a collaborative and high-performing team environment.

SOC (Security Operations Center)/ SIEM (Security Information and Event Management) Coordination, Collaboration, and Leadership:

• Coordinate closely with the Managed Security Service Provider (MSSP) to ensure seamless integration and operation of the Security Operations Center (SOC) and Security Information and Event Management (SIEM) solution.
• Collaborate with the MSSP to define and refine alerting thresholds, response procedures, and escalation paths to effectively address security incidents.
• Provide direction and guidance to both internal incident response teams and external MSSP/SOC analysts during security incident escalations and threat hunting initiatives.
• Lead cross-functional incident response efforts, bringing together teams from IT, legal, compliance, and other departments to coordinate response activities and mitigate security risks effectively.

How You Qualify

You reviewed the Who You Are section of this job posting and immediately felt the need to read on. This makes you a match for our innovative culture. You accept things change quickly in a startup environment and are willing to pivot quickly on priorities.

• Must have reliable access to high-speed internet to ensure seamless remote work communication and productivity
• Bachelor's degree in computer science, information technology, cybersecurity, or a related field is required; Master's degree considered a plus
• 5 years of experience in cybersecurity incident response, threat hunting, and cybersecurity awareness
• Strong knowledge of cybersecurity frameworks, standards, and best practices (e.g., NIST CSF, ISO 27001, HIPAA)
• Proven experience in successfully building and leading teams in a fast-paced startup environment, demonstrating the ability to recruit, onboard, and develop talent from inception to operational effectivenessExperience with incident response tools and technologies
• Excellent communication, leadership, and problem-solving skills
• Relevant certifications (e.g., CISSP, CISM, GIAC) preferred