Cybersecurity Incident Response Lead

1 week ago


Boise, Idaho, United States Baylor Scott & White Health Full time

Job Summary

The Senior Cybersecurity Incident Response Engineer will lead the cyber defense team's incident response capabilities by developing and improving runbook procedures to mitigate risk and enhance incident response processes. This role will be responsible for conducting security investigations, leading security incident response in a cross-functional environment, and driving incident resolution.

Key Responsibilities

  • Conduct security investigations and lead security incident response in a cross-functional environment and drive incident resolution
  • Actively call and lead security incident bridges and coordinate internal incident response efforts between operations team, and managed security services
  • Develop Incident Response initiatives that improve our capabilities to effectively respond and remediate security incidents
  • Expand SIEM program, ensuring log coverage, alert development, and process improvement
  • Partner with cyber threat intelligence, the vulnerability management team, and technology remediation groups to deliver shared outcomes that measurably improve our efficacy to detect, respond to, and remediate vulnerabilities
  • Support broader security operation initiatives both within the cyber defense team, and within engineering and operation departments across the organization
  • Be a security liaison and enabler to Managed Service counterparts
  • Create and improve security playbook for a variety of incident and compromise types for all levels of engineers and stakeholders

Key Success Factors

  • More advanced leadership, problem-solving, team-building, and judgment-making skills
  • Skilled project manager with ability to articulate business needs
  • Excellent written, verbal, and social communication skills
  • Proficient computer software and database skills
  • Ability to focus and prioritize strategic targets and work in a growing and challenging environment
  • Drives long-term planning and strategic portfolio vision creation for improvements and strategies, with oversight from Director and VP as needed
  • Knowledge of interdependencies of healthcare landscape and its influence on portfolio
  • Establishes external relationships with other thought leaders in healthcare IT
  • Maintains a broad knowledge of state-of-the-art technology, equipment, and systems

Benefits

  • Our competitive benefits package includes the following
  • Immediate eligibility for health and welfare benefits
  • 401(k) savings plan with dollar-for-dollar match up to 5%
  • Tuition Reimbursement
  • PTO accrual beginning Day 1

BASIC QUALIFICATIONS:

  • BS degree in computer science, computer engineering, software engineering, cybersecurity or related technical degree; or 5 years equivalent technology experience
  • 5+ years experience in information security in an enterprise environment
  • 3+ years experience and understanding of incident response processes in both datacenter and cloud-based environments, forensic techniques, executing and administration of crisis bridges, and preparation and delivery of incident reports for executives
  • Knowledge of malware trends and behaviors and the ability to work with other teams to detect and respond to these threats
  • Experience with Intrusion Detection and Prevention Systems (IDS/IPS), Firewall and Network Log analysis, Security Information and Event Management (SEIM) tools, threat intelligence services, and malware analysis
  • Experience analyzing network and host-based security events
  • Experience with attacker tactics, techniques, and procedures
  • Experience with Windows and Linux Operating Systems
  • Knowledge of common software, operating systems vulnerabilities, and Unix/Linux
  • Understanding of cybersecurity organizational practices, operations risk management processes, architectural requirements, and vulnerability risk
  • Experience with controls or frameworks such as NIST 800-53, NIST CSF, CIS, MITRE ATT&CK
  • Knowledge of existing, emerging, and long-range issues related to cyber operations strategy, policy, and organization
  • Experience creating workflows and remediation plans for vulnerabilities identified
  • Incident Response experience in a healthcare environment
  • Experience using ServiceNow for SIR, CMDB, and/or ITSM functions
  • Contribution or development of policies and standards
  • Experience participating in or leading security table top exercises

Preferred Certifications

  • Certified Information Systems Security Professional (CISSP) certification
  • Certified Information Security Manager (CISM) certification
  • GIAC Certified Incident Handler (GCIH) certification
  • FOR508: Advanced Incident Response, Threat Hunting, and Digital Forensics
  • FOR500: Windows Forensic Analysis

Minimum Qualifications

  • EDUCATION - Bachelor's or 4 years of work experience above the minimum qualification
  • EXPERIENCE - 7 Years of Experience


  • Boise, Idaho, United States MindPoint Group Full time

    Job SummaryMindPoint Group is seeking a highly skilled Cybersecurity Incident Response Specialist to support our weekend shift activities. As a key member of our Security Operations Center (SOC) team, you will play a critical role in conducting in-depth analyses and responding to incidents of potential cyber threats facing our clients.Key Responsibilities...


  • Boise, Idaho, United States Baylor Scott & White Health Full time

    Job SummaryThe Senior Cybersecurity Incident Response Engineer will serve as the lead cybersecurity incident responder for Baylor Scott & White Health's cyber defense team. This role will be responsible for leading the incident response capabilities of the organization by developing and improving runbook procedures to mitigate risk and enhance incident...

  • Cybersecurity Analyst

    4 weeks ago


    Boise, Idaho, United States MindPoint Group Full time

    Job Title: Cybersecurity Analyst - Weekend Night Shift LeadMindPoint Group is seeking a highly skilled Cybersecurity Analyst to lead our weekend night shift team. As a key member of our Security Operations Center (SOC), you will play a critical role in detecting, analyzing, and responding to cybersecurity threats.Responsibilities:Monitor and analyze security...


  • Boise, Idaho, United States Contriva Inc. Full time

    Cybersecurity Program ManagerWe are seeking a highly skilled Cybersecurity Program Manager to join our team at Contriva Inc.Key Responsibilities:Develop and implement comprehensive cybersecurity strategies to protect our organization's assets.Lead and manage cross-functional teams to identify and mitigate cybersecurity risks.Collaborate with stakeholders to...


  • Boise, Idaho, United States HighCloud Solutions Full time

    About the Role:The Cybersecurity Program Manager is responsible for ensuring the CISO's strategy for protecting the Idaho Judiciary's networks, systems, and applications are effectively implemented.Key Responsibilities:Assist with obtaining approval of security systems for the Idaho Courts;Track and monitor the implementation of security policies and...


  • Boise, Idaho, United States ParinTechnologies Full time

    Cybersecurity Program ManagerAt ParinTechnologies, we are seeking a highly skilled Cybersecurity Program Manager to join our team. The successful candidate will be responsible for ensuring the effective implementation of the CISO's strategy for protecting our networks, systems, and applications. This position will assist with determining, analyzing, and...


  • Boise, Idaho, United States GSK Solutions Full time

    bJob Title: Cybersecurity Program Manager/bbrbrThe Cybersecurity Program Manager is responsible for ensuring the CISO's strategy for protecting the Idaho Judiciary's networks, systems, and applications are effectively implemented. This position will assist with determining, analyzing, and proposing security requirements, policies, and technical solutions....


  • Boise, Idaho, United States Red River Full time

    Red River is seeking a highly skilled Global Incident Manager to join our team in Lexington, MA. The successful candidate will be responsible for overseeing the response and resolution of incidents that impact our IT infrastructure, operations, or security.As a Global Incident Manager, you will coordinate and lead cross-functional teams to ensure incidents...


  • Boise, Idaho, United States Red River Full time

    Job Title: Global Incident ManagerRed River is seeking a highly skilled Global Incident Manager to join our team in Lexington, MA. The successful candidate will be responsible for overseeing the response and resolution of incidents that impact our organization's IT infrastructure, operations, or security.Key Responsibilities:Incident Response Management:...


  • Boise, Idaho, United States DKMRBH Inc. Full time

    Cybersecurity Program ManagerJob Summary: We are seeking a highly skilled Cybersecurity Program Manager to join our team at DKMRBH Inc. The successful candidate will be responsible for ensuring the effective implementation of our CISO's strategy for protecting our networks, systems, and applications.Key Responsibilities:Assist with obtaining approval of...


  • Boise, Idaho, United States HighCloud Solutions Full time

    Cybersecurity Program ManagerThe Cybersecurity Program Manager is responsible for ensuring the CISO's strategy for protecting the Idaho Judiciary's networks, systems, and applications are effectively implemented.Key Responsibilities:Assist with obtaining approval of security systems for the Idaho Courts;Track and monitor the implementation of security...


  • Boise, Idaho, United States Super Technology Solutions, Inc. Full time

    Cybersecurity Program Manager Job DescriptionWe are seeking a highly skilled Cybersecurity Program Manager to join our team at Super Technology Solutions, Inc. in Boise, ID. As a key member of our cybersecurity team, you will be responsible for leading the implementation of security policies and procedures, ensuring personnel compliance with cybersecurity...


  • Boise, Idaho, United States CAI Full time

    Job SummaryWe are seeking a highly skilled Cybersecurity Program Manager to join our team at CAI. As a key member of our cybersecurity team, you will play a critical role in ensuring the effective implementation of our client's cybersecurity strategy.Key ResponsibilitiesAssist with obtaining approval of security systems for our clientTrack and monitor the...


  • Boise, Idaho, United States ACL Digital Full time

    Cybersecurity Program ManagerThe Administrative Office of the Courts is seeking a highly skilled Cybersecurity Program Manager to join our team. As a key member of our Information Division, you will be responsible for ensuring the CISO's strategy for protecting the Idaho Judiciary's networks, systems, and applications is effectively implemented.Key...


  • Boise, Idaho, United States ATC Full time

    Cybersecurity Program ManagerThe Administrative Office of the Courts is seeking a highly skilled Cybersecurity Program Manager to join our team. As a key member of our Information Division, you will be responsible for ensuring the effective implementation of our CISO's strategy for protecting our networks, systems, and applications.Key...


  • Boise, Idaho, United States CAI Full time

    Job Title: Cybersecurity Program ManagerWe are seeking a highly skilled Cybersecurity Program Manager to join our team at CAI. As a Cybersecurity Program Manager, you will play a critical role in assisting with determining, analyzing, and proposing security requirements, policies, and technical solutions.Key Responsibilities:Assist with obtaining approval of...


  • Boise, Idaho, United States Parintec Full time

    Job DescriptionThe Cybersecurity Program Manager is responsible for ensuring the CISO's strategy for protecting the Idaho Judiciary's networks, systems, and applications is effectively implemented. This position will assist with determining, analyzing, and proposing security requirements, policies, and technical solutions.Key Responsibilities:Assist with...


  • Boise, Idaho, United States HighCloud Solutions Full time

    The Cybersecurity Program Manager at HighCloud Solutions is responsible for ensuring the CISO's strategy for protecting the organization's networks, systems, and applications are effectively implemented.Key Responsibilities:Assist with obtaining approval of security systems for the organization.Track and monitor the implementation of security policies and...


  • Boise, Idaho, United States Masterapp Labs Full time

    Cybersecurity Program ManagerJob Summary:We are seeking a highly skilled Cybersecurity Program Manager to join our team at Masterapp Labs. The successful candidate will be responsible for ensuring the effective implementation of our cybersecurity strategy, working closely with the CISO to determine, analyze, and propose security requirements, policies, and...


  • Boise, Idaho, United States Serenity Info Tech, Inc. Full time

    Cybersecurity Program ManagerJob Summary:The Cybersecurity Program Manager will be responsible for ensuring the effective implementation of the CISO's strategy for protecting the Idaho Judiciary's networks, systems, and applications. This role will assist with determining, analyzing, and proposing security requirements, policies, and technical solutions.Key...