CrawlJobs Logo
Crédit Agricole Logo Crédit Agricole · IT - Administration

Cybersecurity Incident Response Team Lead

United States Of America, NEW YORK 150000.00 - 185000.00 USD / Year · Job Posted January 26, 2026
Apply Position
Job Link Share

Job Description

The Cybersecurity Incident Response Team Lead is a leadership role responsible for leading and enhancing the bank’s Security Operations strategy. The Cybersecurity Incident Response Lead will oversee the incident response and threat intelligence programs to safeguard critical assets and data. The ideal candidate will combine technical expertise, operational efficiency, and a strategic mindset to mitigate risks and ensure compliance with regulatory requirements. This role requires exceptional leadership, technical skills, and communication skills to drive cross-functional collaboration and instill a culture of security across the organization.

Job Responsibility

  • Develop and execute a comprehensive security operations strategy aligned with the bank's risk appetite and business objectives
  • Provide thought leadership on emerging cyber risks and recommend proactive measures to mitigate them
  • Serve as a trusted advisor to executive leadership, management committees, and the board on cyber risk issues
  • Define, maintain, and report operational metrics to evaluate Security Operations program performance, effectiveness, and adherence with organizational and regulatory requirements
  • Direct and manage Americas Cyber Security Incident Response Team (CSIRT) to ensure timely monitoring, detection, and response to threats
  • Lead the development and execution of the bank’s incident response plan and associated playbooks
  • Coordinate responses to security incidents, ensuring minimal impact and quick recovery
  • Establish and maintain a threat intelligence program to proactively identify and respond to emerging threats
  • Evaluate, implement, and optimize security processes and technologies to enhance detection and response capabilities
  • Collaborate with IT and engineering teams to integrate security into systems and processes
  • Stay updated on emerging technologies and recommend solutions to address evolving threats
  • Ensure adherence to cyber risk management regulations, including FFIEC and other applicable laws
  • Represent the bank during regulatory examinations, audits, and executive presentations on cyber risk topics
  • Maintain thorough documentation to demonstrate adherence to policies and standards
  • Build and mentor a high-performing security operations team
  • Provide training and development opportunities to ensure team members stay current in the field
  • Foster a culture of accountability, collaboration, and continuous improvement

Requirements

  • Bachelor’s degree in Cybersecurity, Information Technology, Business Administration, or a related field
  • Minimum 10+ years of experience in information security or related field
  • Ability to analyze, prioritize, and manage security incidents effectively
  • Ability to align cyber risk initiatives with business objectives
  • Strong ensure thorough documentation and clear communications over security operations activities
  • Proven track record of building and leading high performing teams
  • Expertise in navigating banking regulations
  • Strong knowledge with information security technologies such as SIEM, SOAR, EDR, NDR, etc.
  • Strong knowledge with leading security investigations
  • Deep understanding of frameworks such as NIST Cybersecurity Framework
  • Proficiency in drafting and enforcing policies, procedures, and playbooks
  • English

Nice to have

  • Advanced degree (MBA, MS) is strongly preferred
  • Relevant industry certifications (CISSP, CISM, GIAC) are strongly preferred
  • At least 3 years of experience in a senior leadership role within the banking or financial services industry
  • Industry Thought Leadership: Recognized as a subject matter expert in the cybersecurity or risk management space
Crédit Agricole - All Job Offers

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Suggested Tags: Frontend Developer Secretary Talent Manager Salesforce Administrator Data Analyst
Similar Jobs for

Cybersecurity Incident Response Team Lead

8 matching positions

Principal Cybersecurity Incident Response Analyst

Principal Cybersecurity Incident Response Analyst role at HPE's Cyber Defense Ce...
Location
Location
India , Bangalore
Salary
Salary:
Not provided
https://www.hpe.com/ Logo
Hewlett Packard Enterprise
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree (or equivalent work experience) required, preferably in computer science, engineering or related area of study
  • Typically 8+ years of relevant experience
  • SOC team/Incident response/Advanced threat analyst experience is required
  • Proven track record of leading complex cybersecurity initiatives and managing ambiguous incidents
  • Extensive understanding of adversary tactics, techniques, and procedures (TTPs)
  • Extensive Cyber and IT security knowledge
  • Extensive understanding of Cyber and IT security risks, best practices, threats and prevention measures
  • Extensive understanding of SQL and relevant scripting languages
  • Extensive data security system analysis skills
  • Extensive risk assessment and management skills
Job Responsibility
Job Responsibility
  • Lead and coordinate responses to the most severe and complex cybersecurity incidents
  • Guide cross-functional teams through containment, eradication, and recovery
  • Provide executive-level oversight and decision-making during critical incidents
  • Effectively analyze associated logs and respond to high severity incidents
  • Contribute to the company's security response methods
  • Mentor and provide technical guidance to less experienced cybersecurity professionals
  • Stay at the forefront of cybersecurity trends, threats, and technologies
  • Foster a culture of continuous improvement and innovation
  • Provide insight and guidance through after action reviews
What we offer
What we offer
  • Health & Wellbeing benefits
  • Personal & Professional Development programs
  • Unconditional Inclusion environment
  • Comprehensive benefits suite supporting physical, financial and emotional wellbeing
  • Fulltime
Read More
Arrow Right

Senior Cybersecurity Incident Response Analyst

You will work as a Senior Cybersecurity Incident Response Analyst as part of Hew...
Location
Location
Ireland , Galway
Salary
Salary:
Not provided
https://www.hpe.com/ Logo
Hewlett Packard Enterprise
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree (or equivalent work experience) required, preferably in computer science, engineering or related area of study
  • typically 4+ years of relevant experience
  • SOC team/Incident response analyst experience is required
  • proven track record of leading complex cybersecurity initiatives and managing ambiguous incidents
  • advanced understanding of adversary tactics, techniques, and procedures (TTPs)
  • advanced Cyber and IT security knowledge
  • advanced understanding of Cyber and IT security risks, best practices, threats and prevention measures as well as containment and remediation actions
  • advanced understanding of SQL and relevant scripting languages
  • advanced data security system analysis skills
  • advanced risk assessment and management skills
Job Responsibility
Job Responsibility
  • Lead and coordinate responses to the most complex cybersecurity incidents, guiding cross-functional teams through containment, eradication, and recovery
  • analyze associated logs and respond to high severity incidents
  • suggest automation opportunities to enhance IR
  • mentor and provide technical guidance to less experienced cybersecurity professionals
  • stay at the forefront of cybersecurity trends, threats, and technologies
  • foster a culture of continuous improvement and innovation
  • encourage the adoption of new technologies and methodologies
  • provide insight and guidance through after action reviews working with stakeholders.
What we offer
What we offer
  • Comprehensive suite of benefits supporting physical, financial and emotional wellbeing
  • programs for professional and personal career development
  • unconditional inclusion and flexibility to manage work and personal needs.
  • Fulltime
Read More
Arrow Right

Cyber Incident Response

A leading global law firm is seeking a skilled associate to join its dynamic Cyb...
Location
Location
United Kingdom , Greater London
Salary
Salary:
140000.00 - 170000.00 GBP / Year
https://www.douglas-scott.co.uk Logo
Douglas Scott
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Strong academic credentials
  • 4–7 PQE in incident response within a national or international law firm
  • Demonstrated ability to manage complex, cross-border cybersecurity incidents
  • Excellent communication and client management skills
Job Responsibility
Job Responsibility
  • Lead and support clients through complex cybersecurity incidents, including data breaches and ransomware attacks
  • Advise on regulatory compliance and risk mitigation strategies
  • Collaborate with multidisciplinary teams to develop and implement incident response plans
  • Contribute to thought leadership and business development initiatives
What we offer
What we offer
  • Collaborative environment
  • Continuous professional development
  • Opportunity to work on high-profile, cross-border incidents
  • Fulltime
Read More
Arrow Right

Blue Team Coordinator

We are looking for a Blue Team Coordinator to lead and work closely with the cyb...
Location
Location
Portugal , Lisbon
Salary
Salary:
Not provided
https://www.inetum.com Logo
Inetum
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Proven experience in cybersecurity team coordination, especially in Blue Team environments
  • Strong knowledge of security architecture, incident response, threat hunting, and security automation
  • Experience with ticketing and workflow solutions, such as Remedy
  • Relevant certifications such as ITIL, ISO27001, CEH, BTL1, CompTIA Security+
  • Strong leadership and communication skills in multidisciplinary environments
  • Strategic mindset and results-oriented
  • Proactive, collaborative, and committed to continuous improvement
Job Responsibility
Job Responsibility
  • Lead the team in monitoring, detection, and response to security incidents
  • Inspire, guide, and develop team members, fostering a collaborative and continuous learning environment
  • Oversee operations in SIEMs such as Rapid7/InsightIDR, QRadar, FortiSIEM, and Microsoft Sentinel, as well as security tools like EDR, SOAR, Firewalls, IDS/IPS
  • Define and review playbooks, policies, and performance metrics, ensuring ongoing process improvement
  • Directly support critical investigations, conducting technical analysis and strategic decision-making alongside the team
  • Fulltime
Read More
Arrow Right

Blue Team Coordinator

We are looking for a Blue Team Coordinator to lead and work closely with the cyb...
Location
Location
Portugal , Lisbon
Salary
Salary:
Not provided
https://www.inetum.com Logo
Inetum
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Proven experience in cybersecurity team coordination, especially in Blue Team environments
  • Strong knowledge of security architecture, incident response, threat hunting, and security automation
  • Experience with ticketing and workflow solutions, such as Remedy
  • Relevant certifications such as ITIL, ISO27001, CEH, BTL1, CompTIA Security+
  • Strong leadership and communication skills in multidisciplinary environments
  • Strategic mindset and results-oriented
  • Proactive, collaborative, and committed to continuous improvement
Job Responsibility
Job Responsibility
  • Lead the team in monitoring, detection, and response to security incidents
  • Inspire, guide, and develop team members, fostering a collaborative and continuous learning environment
  • Oversee operations in SIEMs such as Rapid7/InsightIDR, QRadar, FortiSIEM, and Microsoft Sentinel, as well as security tools like EDR, SOAR, Firewalls, IDS/IPS
  • Define and review playbooks, policies, and performance metrics, ensuring ongoing process improvement
  • Directly support critical investigations, conducting technical analysis and strategic decision-making alongside the team
  • Fulltime
Read More
Arrow Right

Security Incident Responder

Snowbit is looking for an experienced Security Incident Responder to join our Ma...
Location
Location
India , Gurugram
Salary
Salary:
Not provided
coralogix.com Logo
Coralogix
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 3-5 years in incident response, threat hunting with strong experience in cloud security (AWS, Azure, GCP) and Kubernetes environments
  • Proven Incident response experience in complex environments
  • Demonstrates strong expertise in understanding adversary tactics and techniques, translating them into actionable investigation tasks, conducting in-depth analysis, and accurately assessing the impact
  • Familiarity with attack vectors, malware families, and campaigns
  • Deep understanding of network architecture, protocols, and operating system internals (Windows, Linux, Unix)
  • Expertise in Kubernetes security, including container orchestration, workload isolation, and cluster hardening
  • Experience securing Kubernetes infrastructure, runtime security, and security monitoring
  • Ability to work independently and collaboratively in dynamic, fast-paced environments
  • Excellent written and verbal communication skills to interact with technical and non-technical stakeholders
Job Responsibility
Job Responsibility
  • Leverage Snowbit’s advanced MDR platform to lead large-scale incident response investigations and proactive threat-hunting initiatives
  • Conduct log analysis, and cloud artifact reviews using EDR and similar tools depending on availability, to support incident resolution and root-cause investigations
  • Investigate and respond to security incidents in containerized environments, with a specific focus on Kubernetes security and architecture
  • Research evolving cyberattack tactics, techniques, and procedures (TTPs) to strengthen customer defenses and codify insights for our services
  • Provide technical and executive briefings to customers, including recommendations to mitigate risk and enhance cybersecurity posture
  • Collaborate with internal teams, including engineering and research, to enhance Snowbit’s MDR and incident response capabilities
  • Partner with customer teams (IT, DevOps, and Security) to ensure seamless integration and adoption of Snowbit’s MDR services
  • Share expertise through presentations, research publications, and participation in the global cybersecurity community
  • Fulltime
Read More
Arrow Right

Senior Cybersecurity Analyst, Threat Hunter

Our cybersecurity and information security teams at IDEXX contribute to a more r...
Location
Location
United States , Westbrook, Maine
Salary
Salary:
120000.00 - 140000.00 USD / Year
idexx.com Logo
IDEXX
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 6–10 years of experience in cybersecurity roles
  • Minimum of 3 years dedicated specifically to threat hunting or advanced incident response
  • Bachelor’s degree in computer science, Cybersecurity, Information Technology, or a related field
  • Preferred certifications GCIH (GIAC Certified Incident Handler) and CompTIA CySA+ (Cybersecurity Analyst+) certification
  • Proven, hands-on experience using platform for EDR (Endpoint Detection and Response) and threat hunting
  • Expert-level knowledge of PowerShell Scripting, Python and EDR and SIEM query language is preferred
  • Deep understanding of incident response lifecycles, methodologies, and forensic techniques
  • Strong knowledge of networking protocols, operating systems (Windows, Linux, macOS), and common attack vectors
  • Familiarity with scripting languages (e.g., Python, PowerShell) for automation of hunting tasks is a plus
  • Exceptional analytical and problem-solving skills with keen attention to detail
Job Responsibility
Job Responsibility
  • Proactively hunt for indicators of compromise (IOCs) and advanced persistent threats (APTs) across the network, endpoints, and cloud environments using threat intelligence and a hypothesis-driven methodology
  • Conduct in-depth analysis of security events, network traffic, and endpoint data to identify malicious activity and potential breaches
  • Utilize the SIEM and EDR platform extensively, applying expert knowledge of the scripting, SIEM and EDR query language to perform complex searches and data analysis
  • Lead and participate in incident response activities, including containment, eradication, and recovery efforts, serving as a primary escalation point for critical security incidents
  • Develop and refine threat hunting playbooks, procedures, and detection rules to improve the security team’s efficiency and effectiveness
  • Collaborate with the security engineering and security operations center (SOC) teams to integrate new threat intelligence and enhance existing security tools and controls
  • Mentor junior analysts and contribute to the ongoing improvement of the organization's overall security posture
What we offer
What we offer
  • Opportunity for annual cash bonus
  • Health / Dental / Vision Benefits Day-One
  • 5% matching 401k
  • Additional benefits including but not limited to financial support, pet insurance, mental health resources, volunteer paid days off, employee stock program, foundation donation matching
  • Fulltime
Read More
Arrow Right

Cyber Security Defense Head of Department

The Cyber Security Defense Head of Department (HOD) will lead and mature our org...
Location
Location
United States , Irvine
Salary
Salary:
181240.00 - 259160.00 USD / Year
haeaus.com Logo
Hyundai AutoEver America
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 15–20 years of progressive experience across the various cyber defense disciplines (SOC, Incident Response, Red/Blue teams, or similar defensive/offensive functions)
  • Proven experience leading cyber defense teams
  • Demonstrated ability to hire, mentor, and lead high-performing technical teams
  • Bachelor’s degree in Cybersecurity, Information Technology, Computer Science or a related discipline
  • Strong knowledge of threat detection, incident response, adversary tactics (MITRE ATT&CK), vulnerability management, and secure software development
  • Excellent incident management, communication, and executive reporting skills
  • Proficient in English for effective communication and coordination
  • In the absence of IR team members, utilize a flexible work schedule to facilitate the security incident response process for high/critical incidents
Job Responsibility
Job Responsibility
  • Develop and execute the Cyber Defense strategy aligned with organizational goals, customer requirements and the evolving threat landscapes
  • Establish frameworks, processes, and KPIs for SOC, Incident Response, TVM, AppSec, Red/Blue Teaming, and Adversary Simulation
  • Serve as a senior advisor to the CISO and executive leadership on cyber risks, readiness, and emerging threats
  • Oversee 24x7 SOC operations, ensuring effective monitoring, detection, and response to security events, across levels 1-3
  • Drive continuous enhancement of detection engineering, threat hunting, and security analytics
  • Implement best-in-class security tooling, automation, and operational processes
  • Lead internal Red Team and offensive security capabilities, including penetration testing
  • Define testing methodologies, operational rules of engagement, and reporting standards
  • Translate offensive findings into actionable improvements for defensive teams and architecture
  • Oversee the Incident Response program, ensuring rapid and effective handling of security incidents
  • Fulltime
Read More
Arrow Right