Incident Response Manager (Cybersecurity)

TL;DR

Incident Response Manager (Cybersecurity): Leading and scaling security operations for a client with an accent on incident response workflows and threat detection. Focus on building a security team from the ground up, optimizing IR processes, and managing enterprise network security defenses.

Location: Hybrid, Chicago, US

Company

An AI transformation partner and consulting firm specializing in developing AI-focused, data-led solutions using cloud technology.

What you will do

• Manage an initial team of 5 security analysts and lead strategic workforce planning to scale the team.
• Oversee and optimize end-to-end incident response workflows, serving as the primary escalation point.
• Hunt for, detect, and neutralize sophisticated cyber threats across the enterprise environment.
• Maintain central network security defenses, including firewall management and rule optimization.

Requirements

• 3+ years of professional leadership experience within a SOC or Incident Response team.
• Hands-on expertise in modern threat detection strategies, malware analysis, and adversarial tactics.
• Proficiency with EDR platforms such as CrowdStrike, Defender for Endpoint, or SentinelOne.
• Deep understanding of SIEM architectures for log analysis and alert optimization.
• Practical experience in managing network architecture security and firewall protocols.
• Must be available to work 8:00 AM to 5:00 PM Central TZ.

Nice to have

• Experience in the Insurance or Financial Services industry.
• Industry certifications such as GCIH, CISSP, GCFA, or CISM.

Culture & Benefits

• Culture focused on innovation, professional growth, and winning together.
• Equal Opportunity employer providing a supportive environment for all qualified applicants.
• Modern recruitment process augmented by AI tools for efficiency and better matching.