Incident Response Manager

TL;DR

Incident Response Manager (Cybersecurity): Own and lead response to large-scale, high-impact cyber incidents with an accent on cross-company crisis coordination, executive decision support, and fast, controlled mitigation across engineering, product, legal, communications, and leadership. Focus on incident command, crisis team orchestration, and improving the incident response framework through simulations, metrics (MTTD/MTTR), and post-incident reviews.

Location: null

Salary: null

Company

hirify.global provides a secure platform and network for companies to work with digital assets.

What you will do

• Serve as Incident Commander for high-severity cyber incidents (breaches, supply-chain attacks, insider threats, platform-wide security events).
• Lead company-wide incident response efforts by coordinating technical, operational, legal, communications, and executive stakeholders.
• Stand up and orchestrate crisis management teams during major incidents to ensure clear ownership, decision-making, and execution under pressure.
• Drive rapid containment, eradication, and recovery while balancing business continuity, customer impact, and regulatory obligations.
• Provide executive leadership with clear, concise, timely, actionable incident updates.
• Own and continuously improve the incident response framework, including severity definitions, escalation paths, decision authority, simulations/tabletop exercises, and post-incident reviews.

Requirements

• 10+ years in cybersecurity with significant incident response management experience.
• Proven experience leading large-scale, cross-company cyber incidents involving multiple engineering/operational teams and executive/board-level visibility.
• Demonstrated experience acting as Incident Commander (or equivalent) during major security events for at least 15 incidents in the past 5 years.
• Strong understanding of cloud and SaaS architectures, identity/access control, infrastructure security, and detection/response technologies (SIEM, EDR, cloud-native tools).
• Hands-on background in forensics, threat hunting, or security engineering, including an offensive background.
• Ability to translate technical facts into business impact and risk-based decisions.

Nice to have

• Experience in crypto, fintech, custody, payments, or highly regulated environments.
• Experience supporting regulatory notifications and post-incident audits.
• Background in forensics, threat intelligence, or security engineering.
• Practical familiarity with NIST, ISO 27035, or similar incident response frameworks.

Culture & Benefits

• Leadership role focused on structured, calm crisis execution under extreme pressure.
• Cross-functional coordination across Security, Infrastructure/Cloud Operations, Product & Application Security, and executive stakeholders.
• Emphasis on measurable operational excellence via incident response metrics (MTTD, MTTR, blast radius, decision latency) and continuous improvement.
• Executive-level simulations and tabletop exercises to strengthen readiness.

Hiring process

• Interviews focused on incident leadership experience, crisis coordination, and decision-making under pressure.
• Discussion of incident response framework ownership, metrics, and post-incident improvement approach.