Incident Management Lead

What You Will Be Doing: 

As our Incident Management Lead, you will develop and maintain incident response capability. You will manage the end-to-end incident management process, ensuring resolution, minimizing impact, and implementing preventive, detective, response, and recovery measures. You will report directly to the Director of Information Security & Technology at our Everett, WA, office. 

You Will: 

• Lead the incident response process, from identification to resolution 
• Create a collaborative incident response plan and procedures (IRP&P)  
• Periodically conduct tabletop exercises with team members to test the IRP&P 
• Help select, configure, and tune the security toolbox 
• Help deliver security awareness training to meet compliance objectives and enhance our security posture 
• Conduct routine internal phishing simulations, manage reported suspicious emails, and distribute communications for emerging cybersecurity threats and trends
• Assess new software and technology requests to determine potential security risks and provide recommendations and guidance to ensure those risks can be sufficiently mitigated
• Be a primary contact for incidents
• Monitor security alerts and incidents, escalating as necessary
• Collaborate with teams to ensure incident resolution
• Contribute to the development and implementation of preventative, detective, response, and recovery measures
• Document incident details, including actions taken 
• Maintain accurate and up-to-date incident records for analysis
• Conduct root cause analysis for incidents to identify trends and recurring issues
• Generate reports on incident trends and performance metrics
• Coordinate the remediation of identified vulnerabilities
• Help with information security and information technology projects

Required Skills: 

• Minimum 8 years working in an Information Security focused role
• Minimum 3 years of experience working in a SOC, or Security Incident Response team, with core responsibilities focused on security event monitoring and incident response
• Strong leadership and communication skills
• Direct experience in creating, documenting, testing, and evolving incident response plans and procedures
• Understanding of incident management best practices
• Relevant Security Certifications such as CISSP, CompTIA Security +, CEH, OSCP
• Experience securing hybrid (Cloud & on-premises) environments with mixed Operating Systems
• Experience conducting security awareness training

The pay range for this position is $120k-170k. This pay range may be inclusive of several career levels and will be narrowed based on several factors, including the candidate's experience and qualifications. 

#LI-Onsite