Cybersecurity Incident Response Lead
1 week ago
Job Summary
The Senior Cybersecurity Incident Response Engineer will lead the cyber defense team's incident response capabilities by developing and improving runbook procedures to mitigate risk and enhance incident response processes. This role will be responsible for conducting security investigations, leading security incident response in a cross-functional environment, and driving incident resolution.
Key Responsibilities
- Conduct security investigations and lead security incident response in a cross-functional environment and drive incident resolution
- Actively call and lead security incident bridges and coordinate internal incident response efforts between operations team, and managed security services
- Develop Incident Response initiatives that improve our capabilities to effectively respond and remediate security incidents
- Expand SIEM program, ensuring log coverage, alert development, and process improvement
- Partner with cyber threat intelligence, the vulnerability management team, and technology remediation groups to deliver shared outcomes that measurably improve our efficacy to detect, respond to, and remediate vulnerabilities
- Support broader security operation initiatives both within the cyber defense team, and within engineering and operation departments across the organization
- Be a security liaison and enabler to Managed Service counterparts
- Create and improve security playbook for a variety of incident and compromise types for all levels of engineers and stakeholders
Key Success Factors
- More advanced leadership, problem-solving, team-building, and judgment-making skills
- Skilled project manager with ability to articulate business needs
- Excellent written, verbal, and social communication skills
- Proficient computer software and database skills
- Ability to focus and prioritize strategic targets and work in a growing and challenging environment
- Drives long-term planning and strategic portfolio vision creation for improvements and strategies, with oversight from Director and VP as needed
- Knowledge of interdependencies of healthcare landscape and its influence on portfolio
- Establishes external relationships with other thought leaders in healthcare IT
- Maintains a broad knowledge of state-of-the-art technology, equipment, and systems
Benefits
- Our competitive benefits package includes the following
- Immediate eligibility for health and welfare benefits
- 401(k) savings plan with dollar-for-dollar match up to 5%
- Tuition Reimbursement
- PTO accrual beginning Day 1
BASIC QUALIFICATIONS:
- BS degree in computer science, computer engineering, software engineering, cybersecurity or related technical degree; or 5 years equivalent technology experience
- 5+ years experience in information security in an enterprise environment
- 3+ years experience and understanding of incident response processes in both datacenter and cloud-based environments, forensic techniques, executing and administration of crisis bridges, and preparation and delivery of incident reports for executives
- Knowledge of malware trends and behaviors and the ability to work with other teams to detect and respond to these threats
- Experience with Intrusion Detection and Prevention Systems (IDS/IPS), Firewall and Network Log analysis, Security Information and Event Management (SEIM) tools, threat intelligence services, and malware analysis
- Experience analyzing network and host-based security events
- Experience with attacker tactics, techniques, and procedures
- Experience with Windows and Linux Operating Systems
- Knowledge of common software, operating systems vulnerabilities, and Unix/Linux
- Understanding of cybersecurity organizational practices, operations risk management processes, architectural requirements, and vulnerability risk
- Experience with controls or frameworks such as NIST 800-53, NIST CSF, CIS, MITRE ATT&CK
- Knowledge of existing, emerging, and long-range issues related to cyber operations strategy, policy, and organization
- Experience creating workflows and remediation plans for vulnerabilities identified
- Incident Response experience in a healthcare environment
- Experience using ServiceNow for SIR, CMDB, and/or ITSM functions
- Contribution or development of policies and standards
- Experience participating in or leading security table top exercises
Preferred Certifications
- Certified Information Systems Security Professional (CISSP) certification
- Certified Information Security Manager (CISM) certification
- GIAC Certified Incident Handler (GCIH) certification
- FOR508: Advanced Incident Response, Threat Hunting, and Digital Forensics
- FOR500: Windows Forensic Analysis
Minimum Qualifications
- EDUCATION - Bachelor's or 4 years of work experience above the minimum qualification
- EXPERIENCE - 7 Years of Experience
-
Cybersecurity Incident Response Specialist
1 week ago
Boise, Idaho, United States MindPoint Group Full timeJob SummaryMindPoint Group is seeking a highly skilled Cybersecurity Incident Response Specialist to support our weekend shift activities. As a key member of our Security Operations Center (SOC) team, you will play a critical role in conducting in-depth analyses and responding to incidents of potential cyber threats facing our clients.Key Responsibilities...
-
Senior Cybersecurity Incident Response Engineer
2 months ago
Boise, Idaho, United States Baylor Scott & White Health Full timeJob SummaryThe Senior Cybersecurity Incident Response Engineer will serve as the lead cybersecurity incident responder for Baylor Scott & White Health's cyber defense team. This role will be responsible for leading the incident response capabilities of the organization by developing and improving runbook procedures to mitigate risk and enhance incident...
-
Cybersecurity Analyst
4 weeks ago
Boise, Idaho, United States MindPoint Group Full timeJob Title: Cybersecurity Analyst - Weekend Night Shift LeadMindPoint Group is seeking a highly skilled Cybersecurity Analyst to lead our weekend night shift team. As a key member of our Security Operations Center (SOC), you will play a critical role in detecting, analyzing, and responding to cybersecurity threats.Responsibilities:Monitor and analyze security...
-
Cybersecurity Program Director
2 weeks ago
Boise, Idaho, United States Contriva Inc. Full timeCybersecurity Program ManagerWe are seeking a highly skilled Cybersecurity Program Manager to join our team at Contriva Inc.Key Responsibilities:Develop and implement comprehensive cybersecurity strategies to protect our organization's assets.Lead and manage cross-functional teams to identify and mitigate cybersecurity risks.Collaborate with stakeholders to...
-
Cybersecurity Program Manager
1 week ago
Boise, Idaho, United States HighCloud Solutions Full timeAbout the Role:The Cybersecurity Program Manager is responsible for ensuring the CISO's strategy for protecting the Idaho Judiciary's networks, systems, and applications are effectively implemented.Key Responsibilities:Assist with obtaining approval of security systems for the Idaho Courts;Track and monitor the implementation of security policies and...
-
Cybersecurity Program Manager
1 week ago
Boise, Idaho, United States ParinTechnologies Full timeCybersecurity Program ManagerAt ParinTechnologies, we are seeking a highly skilled Cybersecurity Program Manager to join our team. The successful candidate will be responsible for ensuring the effective implementation of the CISO's strategy for protecting our networks, systems, and applications. This position will assist with determining, analyzing, and...
-
Cybersecurity Program Manager
1 week ago
Boise, Idaho, United States GSK Solutions Full timebJob Title: Cybersecurity Program Manager/bbrbrThe Cybersecurity Program Manager is responsible for ensuring the CISO's strategy for protecting the Idaho Judiciary's networks, systems, and applications are effectively implemented. This position will assist with determining, analyzing, and proposing security requirements, policies, and technical solutions....
-
Global Incident Manager
2 weeks ago
Boise, Idaho, United States Red River Full timeRed River is seeking a highly skilled Global Incident Manager to join our team in Lexington, MA. The successful candidate will be responsible for overseeing the response and resolution of incidents that impact our IT infrastructure, operations, or security.As a Global Incident Manager, you will coordinate and lead cross-functional teams to ensure incidents...
-
Global Incident Management Specialist
2 weeks ago
Boise, Idaho, United States Red River Full timeJob Title: Global Incident ManagerRed River is seeking a highly skilled Global Incident Manager to join our team in Lexington, MA. The successful candidate will be responsible for overseeing the response and resolution of incidents that impact our organization's IT infrastructure, operations, or security.Key Responsibilities:Incident Response Management:...
-
Cybersecurity Program Manager
2 weeks ago
Boise, Idaho, United States DKMRBH Inc. Full timeCybersecurity Program ManagerJob Summary: We are seeking a highly skilled Cybersecurity Program Manager to join our team at DKMRBH Inc. The successful candidate will be responsible for ensuring the effective implementation of our CISO's strategy for protecting our networks, systems, and applications.Key Responsibilities:Assist with obtaining approval of...
-
Cybersecurity Program Manager
2 weeks ago
Boise, Idaho, United States HighCloud Solutions Full timeCybersecurity Program ManagerThe Cybersecurity Program Manager is responsible for ensuring the CISO's strategy for protecting the Idaho Judiciary's networks, systems, and applications are effectively implemented.Key Responsibilities:Assist with obtaining approval of security systems for the Idaho Courts;Track and monitor the implementation of security...
-
Cybersecurity Program Manager in Boise, ID
2 weeks ago
Boise, Idaho, United States Super Technology Solutions, Inc. Full timeCybersecurity Program Manager Job DescriptionWe are seeking a highly skilled Cybersecurity Program Manager to join our team at Super Technology Solutions, Inc. in Boise, ID. As a key member of our cybersecurity team, you will be responsible for leading the implementation of security policies and procedures, ensuring personnel compliance with cybersecurity...
-
Cybersecurity Program Manager
2 weeks ago
Boise, Idaho, United States CAI Full timeJob SummaryWe are seeking a highly skilled Cybersecurity Program Manager to join our team at CAI. As a key member of our cybersecurity team, you will play a critical role in ensuring the effective implementation of our client's cybersecurity strategy.Key ResponsibilitiesAssist with obtaining approval of security systems for our clientTrack and monitor the...
-
Cybersecurity Program Manager
2 weeks ago
Boise, Idaho, United States ACL Digital Full timeCybersecurity Program ManagerThe Administrative Office of the Courts is seeking a highly skilled Cybersecurity Program Manager to join our team. As a key member of our Information Division, you will be responsible for ensuring the CISO's strategy for protecting the Idaho Judiciary's networks, systems, and applications is effectively implemented.Key...
-
Cybersecurity Program Manager
2 weeks ago
Boise, Idaho, United States ATC Full timeCybersecurity Program ManagerThe Administrative Office of the Courts is seeking a highly skilled Cybersecurity Program Manager to join our team. As a key member of our Information Division, you will be responsible for ensuring the effective implementation of our CISO's strategy for protecting our networks, systems, and applications.Key...
-
Cybersecurity Program Manager
2 weeks ago
Boise, Idaho, United States CAI Full timeJob Title: Cybersecurity Program ManagerWe are seeking a highly skilled Cybersecurity Program Manager to join our team at CAI. As a Cybersecurity Program Manager, you will play a critical role in assisting with determining, analyzing, and proposing security requirements, policies, and technical solutions.Key Responsibilities:Assist with obtaining approval of...
-
Cybersecurity Program Manager
2 weeks ago
Boise, Idaho, United States Parintec Full timeJob DescriptionThe Cybersecurity Program Manager is responsible for ensuring the CISO's strategy for protecting the Idaho Judiciary's networks, systems, and applications is effectively implemented. This position will assist with determining, analyzing, and proposing security requirements, policies, and technical solutions.Key Responsibilities:Assist with...
-
Cybersecurity Program Manager
5 days ago
Boise, Idaho, United States HighCloud Solutions Full timeThe Cybersecurity Program Manager at HighCloud Solutions is responsible for ensuring the CISO's strategy for protecting the organization's networks, systems, and applications are effectively implemented.Key Responsibilities:Assist with obtaining approval of security systems for the organization.Track and monitor the implementation of security policies and...
-
Cybersecurity Program Manager
2 weeks ago
Boise, Idaho, United States Masterapp Labs Full timeCybersecurity Program ManagerJob Summary:We are seeking a highly skilled Cybersecurity Program Manager to join our team at Masterapp Labs. The successful candidate will be responsible for ensuring the effective implementation of our cybersecurity strategy, working closely with the CISO to determine, analyze, and propose security requirements, policies, and...
-
Cybersecurity Program Manager
2 weeks ago
Boise, Idaho, United States Serenity Info Tech, Inc. Full timeCybersecurity Program ManagerJob Summary:The Cybersecurity Program Manager will be responsible for ensuring the effective implementation of the CISO's strategy for protecting the Idaho Judiciary's networks, systems, and applications. This role will assist with determining, analyzing, and proposing security requirements, policies, and technical solutions.Key...