Staff Engineer (Threat Analysis) [T500-8446]

Job Title: Senior Cybersecurity Incident Response Manager (with eDiscovery and Forensic Investigation Focus)Job Summary:We are seeking an experienced and highly skilled Senior Cybersecurity Incident Response Manager to join our dynamic cybersecurity team. In this role, you will be responsible for leading and managing cybersecurity incident response activities, with a specific focus on eDiscovery and forensic investigations. The ideal candidate will have a strong background in cloud platforms, possess exceptional problem-solving and analytical skills, and be familiar with Microsoft Defender and Sentinel products.Responsibilities:Lead and coordinate cybersecurity incident response activities, including triage, containment, investigation, and remediation of security incidents across the organization.Perform in-depth eDiscovery and forensic investigations to identify the root cause and extent of security incidents, breaches, or data compromises.Utilize cutting-edge technologies and tools to analyze and respond to cyber threats, vulnerabilities, and incidents, with a particular focus on cloud platforms.Develop and maintain incident response playbooks, standard operating procedures (SOPs), and best practices to enhance the organization's incident response capabilities.Collaborate with cross-functional teams, including IT, legal, and compliance, to ensure the effective resolution of security incidents while adhering to regulatory and legal requirements.Conduct post-incident analysis and produce comprehensive incident reports, including lessons learned, mitigation strategies, and recommendations for enhancing cybersecurity posture.Stay up to date with the latest cybersecurity threats, attack vectors, and industry trends to proactively identify potential vulnerabilities and recommend security enhancements.Act as a subject matter expert (SME) and provide guidance and mentorship to junior members of the incident response team.Assist in the evaluation, deployment, and configuration of security tools, including Microsoft Defender and Sentinel products, to enhance detection and response capabilities.Conduct regular vulnerability assessments and penetration tests to identify and address potential weaknesses in the organization's infrastructure.Collaborate with third-party vendors and external stakeholders during incident response activities, forensic investigations, or legal proceedings, ensuring compliance with applicable regulations and laws.Qualifications:Bachelor's degree in Computer Science, Information Security, or a related field. Equivalent work experience will be considered.Minimum of 10 years of experience in cybersecurity incident response, eDiscovery, and forensic investigations.Strong expertise in cloud platforms (such as AWS, Azure) and experience with securing cloud environments.Proficiency in Microsoft Defender and Sentinel products is strongly preferred.Solid understanding of incident response methodologies, tools, and best practices.Familiarity with eDiscovery processes, legal hold, and forensic investigation techniques.Demonstrated experience in analyzing security logs, network traffic, and system events to identify potential threats and intrusions.Excellent analytical and problem-solving skills, with the ability to make sound decisions under pressure.Effective communication and interpersonal skills to collaborate with cross-functional teams, stakeholders, and external parties.Professional certifications such as CISSP, CISM, GCIH, or equivalent are highly desirable.Proven ability to lead and mentor junior team members and provide guidance in complex incident response scenarios.Join our team as a Senior Cybersecurity Incident Response Manager, and contribute to the organization's security posture by leading incident response efforts, conducting eDiscovery and forensic investigations, and leveraging your expertise in cloud platforms. Together, we can safeguard our digital assets and protect against evolving cyber threats. PRB