Cyber Incident Commander - Secureworks - EMEA
Primary Location: Remote - United Kingdom (London-Thames Valley)
Remote - Denmark; Remote - Germany (All Other); Remote - Netherlands; Remote - Norway; Remote - Sweden
Cyber Incident Commander
Secureworks® (NASDAQ: SCWX) a global cybersecurity leader, enables our customers and partners to outpace and outmanoeuvre adversaries with more precision, so they can rapidly adapt and respond to market forces to meet their business needs. With a unique combination of cloud-native, SaaS security platform and intelligence-driven security solutions, informed by 20+ years of threat intelligence and research, no other security platform is grounded and informed with this much real-world experience.www.secureworks.com
We enjoy competitive compensation and benefits packages, and reward and recognize our employees for exceptional results. A constant focus on continued learning and growth keeps our team members engaged and excited about “what’s next.” We offer flexible work options when available and emphasize the importance of work-life balance. We know that when our people are rewarded, recognized, and rejuvenated, we win as a team.
The IR Incident Commander is a senior level position coordinating with our clients, Secureworks IR team members, and across the company on the business and risk mitigation aspects of cyber incident response, and developing customized remediation plans.
Serve as a trusted advisor and subject matter expert to clients and guide their senior leadership through managing business impacts and risk mitigation associated with a cyber incident or data breach.
Act as the incident commander in specific engagements and lead company remediation functions coordinating with IR and Threat Intelligence delivery teams to handle inquiries, briefings, and client facing status reports in a variety of formats.
Develop incident response containment plans and remediation strategies; present strategic and tactical plans both orally and in written reports for clients and all involved third parties.
Execute and enhance incident command and remediation workflows, ensuring that defined standards are suitable to support multiple IR service delivery teams for cyber incidents ranging from multiple system compromises to full network intrusions, and crisis events.
Participate in client outreach and service delivery checkpoint efforts for enterprise tier and incident management retainer clients.
Participate in the technical peer review process for cyber incident response and threat hunting engagement deliverables.
Strong consulting and technical communication skills (oral and written), including experience briefing executive management.
A desire to work with clients to solve complex cybersecurity events and crises.
Minimum 10 years of experience in cybersecurity operations
Minimum 3 years experience responding to cyber intrusion
Ability to create customized strategic and tactical remediation plans for client.
Ability to travel on short notice, up to 60% of the time.
Technical or professional certifications such as CISSP, CISA, CISM, CCIM or GCFA.
International data privacy and cybersecurity control regulatory framework knowledge and experience.
Experience mentoring and leading teams of technical staff.
Former CISO or senior security leader in a business.
Experience managing and conducting cyber incident response investigations for nation state threat actors, organized cybercrime, and hacktivists.
Proven track record in developing/cultivating IR business and client relationships
Minimum 3 years of experience in project management methods
Professional degree relevant to technology or cybersecurity or 10+ years of equivalent documented experience in described role tasks.
This position requires up to 60% travel with possible extended assignments for large incidents.
Why work with Secureworks?
Life at Secureworks means collaborating with dedicated professionals with a passion for technology. When we see something that could be improved, we get to work inventing the solution. Our people demonstrate our winning culture through positive and meaningful relationships. We invest in our people and offer a series of programs that enables them to pursue a career that fulfils their potential. Our team members’ health and wellness is our priority as well as rewarding them for their hard work.
Secureworks is part of the Dell Technologies family of brands. If you require any assistance in applying for an open position or have any specific requirements to attend an interview, please contact UK_Talent_Acquisition@Dell.com
We are a Disability Confident Committed Employer and aim to ensure our recruitment process is inclusive and accessible. As members of the disability confident scheme, we guarantee to interview all disabled applicants who meet the minimum criteria for the vacancies and ensure our recruitment process is inclusive and accessible.
Secureworks, a Dell Technologies company, is committed to the principle of equal employment opportunity for all employees and to providing employees with a work environment free of discrimination and harassment. All employment decisions at Secureworks are based on business needs, job requirements and individual qualifications, without regard to race, colour, religion or belief, national, social or ethnic origin, sex (including pregnancy), age, physical, mental or sensory disability, HIV status, sexual orientation, gender identity and/or expression, marital, civil union or domestic partnership status, past or present military service, family medical history or genetic information, family or parental status, or any other status protected by the laws or regulations in the locations where we operate. Secureworks will not tolerate discrimination or harassment based on any of these characteristics.
LIPriorityJob ID: R076761