Senior Director, Incident Handling and Response

The Role:

The Senior Director, Incident Handling and Response carries strategic, operational and tactical leadership responsibilities. At the strategic level, the role helps define portfolio of offerings relating to Incident Response, Technical Investigations, and Digital Forensics. This includes technology and services mix, customer engagement model and group operating policy. The role serves as the key intermediary with stakeholders in product management, marketing, SOC, Legal and others.

Operationally, the Senior Director maintains watchful oversight across service delivery activities and, as needed will assist with the delivery of Incident Response, Technical Investigations, and Digital Forensics services. This includes but isn’t limited to engagement scoping and work assignments, supervising open and active casework, maintaining operational communications cadence and ensuring adherence to operating policy. In addition, the role ensures delivery capacity meets customer expectations thru careful workforce planning and productivity management.

Responsibilities:

• Service delivery leadership in Incident Response, Technical Investigations and Digital Forensics
• Lead, mentor, and develop the IR team, fostering a culture of excellence and accountably
• Direct and indirect engagement with customers to ensure maximum quality of service
• Act as primary escalation path for DFIR service delivery activities
• Careful supervision of open and active casework and adherence to team operating policy
• Maintain book-of-business accountability through pre and post-sale activities
• Coordinate with key business stakeholders in new product innovation and evolving Incident Response portfolio
• Soliciting feedback and acting where appropriate to improve customer experience
• Continually research and develop improved service delivery methods
• Occasional performance of incident response and digital forensics work
• Oversee the technical response for active customer incidents and escalations
• Internal and external promotion of those products and services delivered by the Incident Response Team
• Collaborate closely with the SOC and Incident Handling teams to develop synergies and workflows/process for investigation hand offs and bi-directional team support

Requirements:

• Bachelor’s degree or 5+ years equivalent work experience leading an IR team
• Direct experience in incident response management and casework activity
• Demonstrable expertise in Incident Response, Technical Investigations, Incident Handling and Digital Forensics
• Strong working familiarity with information security fundamentals
• Previous experience in security consulting and/or managed security fields
• Excellent written and verbal communication, listening and client management skills
• Demonstrated presentation skills
• Self motivated, strong analytical skills and detail oriented
• Goal oriented, with a proven history of meeting or exceeding client satisfaction expectations