We are seeking an IT Security Manager (Incident Management) to lead efforts to protect the confidentiality, integrity, and availability of organizational assets. This critical role focuses on monitoring, analyzing, and managing cybersecurity incidents while coordinating cross-functional collaboration to ensure effective outcomes. The manager will oversee tasks such as incident triage, forensic investigations, open-source intelligence (OSINT) reporting, and compliance with company policies. Serving as a key leader in incident response, this position requires strong technical expertise, exceptional leadership skills, and strategic thinking to enhance the company’s security posture.
Req.#871345960

REQUIREMENTS

• Education & Experience: Bachelor’s degree in Computer Science, Information Systems, or related field (or equivalent experience). Minimum of 7 years in IT and 3 years in information security, including hands-on incident management
• Technical Expertise: Skilled in tools such as SIEM, SOAR, forensic platforms (e.g., Encase, SIFT), and secure network protocols. Familiarity with security frameworks like NIST, PCI DSS, and ISO 27001
• Certifications: Preferred certifications include CISSP, GCIH, GCFA, GCFE, and ITIL
• Interpersonal Abilities: Strong communication skills for technical and executive-level discussions, alongside the ability to work well under pressure and maintain confidentiality
• Regulatory Knowledge: Understanding of GDPR, ISO standards, and risk management principles
• Preferred Skills: Multilingual proficiency, scripting experience, and prior involvement in global, 24x7x365 operational settings

• Incident Response & Management: Lead efforts to detect, respond to, contain, and remediate security incidents promptly and effectively while minimizing business impact
• Forensics & Intelligence Gathering: Perform forensic analysis and leverage open-source intelligence to identify malicious actors, attack techniques, and vulnerabilities
• Incident Response Framework: Document investigative activities, support team training through simulation exercises (red/blue team), and establish clear communication protocols during events
• Post-Incident Analysis: Organize post-mortem sessions to evaluate incident handling and provide actionable recommendations to strengthen processes and cybersecurity defenses
• Stakeholder Communication: Deliver concise, accurate reports tailored to technical and non-technical audiences, including senior leadership and executive teams
• Team Leadership: Mentor and guide junior team members, fostering technical growth and collaboration, while ensuring consistent adherence to policies during high-pressure incidents
• Threat Intelligence & Strategy: Stay informed on emerging threats, evaluate threat intelligence, and recommend proactive security measures to safeguard the organization’s assets