Incident response professionals undergo extensive training that equips them to respond to cybersecurity incidents. In case of a data breach or similar event, an incident responder needs to engage the appropriate stakeholders, perform triage, work with an Incident Response Analyst (IRA) (as needed) to drive containment and remediation actions, and document root cause analysis (RCA) findings.In your management role, you will need to oversee and support your team in handling a number of different case types. Some will be complex in nature and highly visible to senior management.
The role of the manager is to ensure policy and processes are followed to the letter. Attention to detail is crucial. The ability to motivate and challenge teams is essential to this role.
This role has high visibility and requires regular interactions with CISO leadership, IBM business executives, business unit security focals, Cybersecurity Legal, Corporate Security, Data Privacy Leaders, Corporate Communications, Human Resources, etc. Therefore, you will need to have excellent communication skills and critical thinking to navigate a case based on type and impact.
In addition, since our case records may be used for audits, Executive reporting, and potentially for litigation, you will need to ensure team documentation of case status and evidence is thorough, accurate, and consistent throughout the case lifecycle.
Please be advised that this role, once you are on-boarded and trained, will require some off shift work and weekend rotation for management coverage.
Leaders are expected to spend time with their teams and clients and therefore are generally expected to be in the workplace a minimum of three days a week, subject to business needs.