CrawlJobs Logo
Hyundai AutoEver America Logo Hyundai AutoEver America · IT - Administration

Security Incident Response Manager

United States, Irvine 139390.00 - 199320.00 USD / Year · Job Posted January 04, 2026
Apply Position
Job Link Share

Job Description

This role will lead enterprise-wide incident response efforts, ensuring effective coordination, analysis, and remediation of cybersecurity events. It involves managing the full incident lifecycle, maintaining compliance, and continuously improving response capabilities through planning, testing, and cross-functional collaboration.

Job Responsibility

  • Lead enterprise-wide incident response efforts, ensuring effective coordination, analysis, and remediation of cybersecurity events
  • Manage the full incident lifecycle, maintaining compliance, and continuously improving response capabilities through planning, testing, and cross-functional collaboration
  • Directs and coordinates teams across the organization during security investigations and vendor-related incidents, overseeing the full lifecycle from detection to resolution
  • Monitors and evaluate server and network activity to identify vulnerabilities and emerging threats
  • Serves as the primary point of contact during incidents, managing communications and driving remediation efforts
  • Maintains and improves the Security Incident Response Plan (SIRP), aligning with frameworks like NIST, ISO 27035, and MITRE ATT&CK
  • conducts tabletop exercises to validate readiness
  • Ensures adherence to legal and regulatory requirements, tracks KPIs, and provides updates to executives and technical teams throughout the response process

Requirements

  • 10-15 years in security operations and incident response
  • 2+ years in leadership role managing internal teams and MSSPs during cybersecurity events
  • Bachelor’s degree in Cybersecurity, Information Technology, or a related discipline
  • Strong understanding of threat landscapes, attack vectors, malware behavior, and forensic techniques
  • Proficient in using and interpreting data from IR tools like SIEM and EDR
  • Capable of working flexible hours during active incidents to support global response efforts across multiple time zones
  • Proficient in English for effective communication and coordination

Nice to have

  • Industry-recognized credentials such as GCIH, GCFA, GCIA, GNFA, CISM, or CISSP are highly desirable
  • Bi-lingual in English and Korean language proficiency is preferred
  • Background in cybersecurity consulting or advisory services, particularly in incident response, is a plus
  • Familiarity with cloud platforms like Azure, AWS, and GCP enhances effectiveness

What we offer

  • Comprehensive medical/dental coverage
  • Generous PTO
  • Education assistance
  • Annual merit increase eligibility
  • Growth-focused work environment
Hyundai AutoEver America - All Job Offers

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Suggested Tags: Frontend Developer Secretary Talent Manager Salesforce Administrator Data Analyst
Similar Jobs for

Security Incident Response Manager

8 matching positions

Senior Incident Handler - Security Incident Response Team

As an Expert Security Analyst – Incident Coordinator, you will take a leadership...
Location
Location
Netherlands , Veldhoven
Salary
Salary:
Not provided
asml.com Logo
ASML
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s or Master’s in Computer Science, Cybersecurity, or related field
  • 7+ years experience in advanced cybersecurity roles
  • Experience working with stakeholders in a complex organization
  • Proven record of influencing upper management towards security best practices
  • Expertise in Security Monitoring, Log Analysis, and Threat Hunting
  • Deep knowledge of Endpoint, Network, OT, Information and Cloud Security
  • Certifications – CISSP, GCIH, GCFA, CISM preferred
Job Responsibility
Job Responsibility
  • Security Monitoring – monitor security alerts for malicious activity or anomalies, ensuring swift response
  • Incident Handling – Lead investigations into high-profile, complex, or advanced persistent threats (APTs)
  • Threat Hunting – Proactively search for hidden threats and improve detection capabilities
  • Incident Analysis – Correlate data across multiple sources to detect sophisticated attack patterns
  • Detection & Response Optimization – Develop advanced detection techniques and security automation strategies
  • Technology Leadership – Act as an SME for SecOps tools and threat domains
  • Mentorship & Training – Provide guidance and mentorship to analysts at all levels
  • Fulltime
Read More
Arrow Right

Senior Security Engineer - Security Incident Response

The Cloud & AI organization accelerates Microsoft’s mission and bold ambitions t...
Location
Location
United States , Redmond
Salary
Salary:
119800.00 - 234700.00 USD / Year
https://www.microsoft.com/ Logo
Microsoft Corporation
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Doctorate in Statistics, Mathematics, Computer Science, or related field
  • Master's Degree in Statistics, Mathematics, Computer Science, or related field AND 3+ years experience in software development lifecycle, large-scale computing, threat modeling, cyber security, anomaly detection, Security Operations Center (SOC) detection, threat analytics, security incident and event management (SIEM), information technology (IT), or operations incident response
  • Bachelor's Degree in Statistics, Mathematics, Computer Science, or related field AND 4+ years experience in software development lifecycle, large-scale computing, threat modeling, cyber security, anomaly detection, Security Operations Center (SOC) detection, threat analytics, security incident and event management (SIEM), information technology (IT), or operations incident response
  • equivalent experience
  • Active U.S. Government Secret Security Clearance
  • Ability to meet Microsoft, customer and/or government security screening requirements
  • U.S. citizenship verification
Job Responsibility
Job Responsibility
  • Coordinate with investigators to prioritize investigation objectives, understands attack paths, and systematically executes mitigation and protection actions to evict threat actors for any security incident impacting any of Microsoft’s products or services
  • Conduct hands-on mitigation where possible
  • engages service owners when there is a risk of a production outage
  • Maintain hands-on knowledge of mitigation and protection steps for various asset types (e.g. M365, Azure, AI) and publishes self-service guidance for impacted engineering teams
  • Brief executive stakeholders on eviction plans and associated status
  • Maintain and evolves an inventory of threat actor Tactics, Techniques, and Procedures (TTPs) and the corresponding eviction capabilities
  • Define and prioritize requirements and use cases for Microsoft’s threat actor eviction platform
  • operationalize as they are delivered
  • Drive strategic change to accelerate eviction scenarios (e.g. lean business cases to garner support for broader Microsoft product initiatives or features)
  • Participate in an on-call rotation
  • Fulltime
Read More
Arrow Right

Senior Security Engineer - Security Incident Response

The Cloud & AI organization accelerates Microsoft’s mission and bold ambitions t...
Location
Location
United States , Multiple Locations
Salary
Salary:
119800.00 - 234700.00 USD / Year
https://www.microsoft.com/ Logo
Microsoft Corporation
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Doctorate in Statistics, Mathematics, Computer Science, or related field
  • Master's Degree in Statistics, Mathematics, Computer Science, or related field AND 3+ years experience in software development lifecycle, large-scale computing, threat modeling, cyber security, anomaly detection, Security Operations Center (SOC) detection, threat analytics, security incident and event management (SIEM), information technology (IT), or operations incident response
  • Bachelor's Degree in Statistics, Mathematics, Computer Science, or related field AND 4+ years experience in software development lifecycle, large-scale computing, threat modeling, cyber security, anomaly detection, Security Operations Center (SOC) detection, threat analytics, security incident and event management (SIEM), information technology (IT), or operations incident response
  • equivalent experience
  • Active U.S. Government Secret Security Clearance
  • Ability to meet Microsoft, customer and/or government security screening requirements
  • Pass the Microsoft Cloud background check upon hire/transfer and every two years thereafter
Job Responsibility
Job Responsibility
  • Coordinates with investigators to prioritize investigation objectives, understands attack paths, and systematically executes mitigation and protection actions to evict threat actors for any security incident impacting any of Microsoft’s products or services
  • Conducts hands-on mitigation where possible
  • engages service owners when there is a risk of a production outage
  • Maintains hands-on knowledge of mitigation and protection steps for various asset types (e.g. M365, Azure, AI) and publishes self-service guidance for impacted engineering teams
  • Briefs executive stakeholders on eviction plans and associated status
  • Maintains and evolves an inventory of threat actor Tactics, Techniques, and Procedures (TTPs) and the corresponding eviction capabilities
  • Define and prioritize requirements and use cases for Microsoft’s threat actor eviction platform
  • operationalize as they are delivered
  • Drives strategic change to accelerate eviction scenarios (e.g. lean business cases to garner support for broader Microsoft product initiatives or features)
  • Participates in an on-call rotation
  • Fulltime
Read More
Arrow Right

Cyber Incident Response Manager

We are seeking a Cyber Incident Response Manager to strengthen and scale Fever’s...
Location
Location
Argentina
Salary
Salary:
Not provided
https://feverup.com/fe Logo
Fever
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Strong understanding of modern security tooling, including SOAR platforms, cloud-native detection services, EDR solutions (e.g. CrowdStrike), SIEM platforms and automation technologies
  • Skilled in analyzing and correlating large-scale security telemetry across cloud, SaaS, and endpoint sources using languages and tools such as Python, AWS Athena, Google BigQuery, etc.
  • Ability to rapidly automate data handling, detection logic, and remediation workflows
  • Hands-on experience responding to security incidents in cloud environments
  • Ability to design, document, and maintain IR runbooks, playbooks, and tabletop exercises
  • 5+ years of experience in cybersecurity, with at least 2–3 years dedicated to leading an incident response process
  • Fluent in English (written and spoken)
  • An analytical mindset and strong problem-solving skills
  • Excellent communication skills
Job Responsibility
Job Responsibility
  • Strengthen and scale the incident response program
  • Design, update, and maintain IR processes, playbooks, and runbooks tailored to cloud and corporate IT environments
  • Enhance detection engineering capabilities by collaborating with infrastructure, data, and engineering teams
  • Lead response coordination efforts during incidents, ensuring rapid containment, eradication, and recovery
  • Enhance monitoring and detection with integrated threat intelligence and advanced threat detection capabilities
  • Manage and mentor a specialized incident response team
  • Continuously assess and improve IR metrics, KPIs, dashboards, and reporting methodologies
  • Conduct IR training, simulations, and preparedness exercises across the organization
What we offer
What we offer
  • "Relación de dependencia" contract
  • Opportunity to have a real impact in a high-growth global category leader
  • 40% discount on all Fever events and experiences
  • Osde 410 as medical insurance
  • Home office friendly anywhere in Argentina
  • Responsibility from day one, and professional and personal growth
  • Great work environment with a young, international team of talented people to work with!
  • English Lessons
  • Gympass
  • Attractive compensation package consisting of base salary and the potential to earn a significant bonus for top performance (including Base, Variable, and Stock Options)
  • Fulltime
Read More
Arrow Right

Senior Security Incident Response Engineer

We are a global team of innovators and pioneers dedicated to shaping the future ...
Location
Location
India , Hyderabad
Salary
Salary:
Not provided
newrelic.com Logo
New Relic
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Willingness to work in rotational shifts including Morning, Evening and Night shifts
  • Willingness to work in weekend shifts and support on call
  • At least five years of recent experience working in a threat hunting, threat intelligence, incident response, or security engineering role
  • Experience configuring security incident and event management tools, including creating event filtering, correlation rules, and reports
  • Strong understanding of the MITRE ATT&CK Framework
  • Experience performing risk assessment, threat tracking, or vulnerability management and success in evaluating and communicating severity, impact, and likelihood of a risk to a wide audience
  • Familiarity with digital forensic tools and techniques for hands-on response during incidents
Job Responsibility
Job Responsibility
  • Support and maintain response strategy and tooling to severe incidents and key attack scenarios
  • Support the SoC alert life cycle: triage security risk, investigate alerts, develop runbooks, policies and procedures to help the company respond, and run retrospectives to coordinate effort across the company to prevent future incidents
  • Maintain healthy working relationships with our managed security service providers and respond to incident escalations
  • Maintain coordination and communication streams horizontally and vertically as part of major cyber related incident handling
  • Know the latest APT tactics and techniques and use engineering practices to detect and respond
  • Provide technical expertise to engineering teams on standard methodologies, tools and frameworks
  • Work with product managers, senior management, and end users to drive security maturity across the business
Read More
Arrow Right

Security Incident Response GTM

Microsoft Security Incident Response (DART Team) is looking for a Security Resea...
Location
Location
United States , Multiple Locations
Salary
Salary:
119800.00 - 234700.00 USD / Year
https://www.microsoft.com/ Logo
Microsoft Corporation
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Doctorate in Statistics, Mathematics, Computer Science, Computer Security, or related field
  • Master's Degree in Statistics, Mathematics, Computer Science, Computer Security, or related field AND 3+ years experience in software development lifecycle, large-scale computing, threat analysis or modeling, cybersecurity, vulnerability research, and/or anomaly detection
  • Bachelor's Degree in Statistics, Mathematics, Computer Science, Computer Security, or related field AND 4+ years experience in software development lifecycle, large-scale computing, threat analysis or modeling, cybersecurity, vulnerability research, and/or anomaly detection
  • equivalent experience
  • 5+ years in cyber security incident response working directly with customers on cyber incident remediation including investigation, remediation, eviction, and improvement
  • 5+ years in IP dev around cyber security deliveries focused on proactive resilience improvement
  • 5+ years in customer and enterprise cyber security GTM and field training and readiness
Job Responsibility
Job Responsibility
  • Develop proactive cyber‑resilience capabilities by building and enhancing a portfolio of incident response offerings, including cyber ranges, threat assessments, and compromise assessments
  • Drive Red Team and OT/ICS-aligned research initiatives, developing methodology and novel approaches that strengthen detection, response, and adversary‑simulation effectiveness
  • Create customer‑ and field‑ready technical content that articulates the value, methodologies, and expected outcomes of proactive incident response services to support sales, marketing, and field readiness
  • Collaborate across MCAPS field, Marketing, and Security organizations to align messaging, improve delivery quality, and land proactive incident‑response services at scale
  • Establish and maintain strategic partnerships with leading OT/ICS security firms to expand DART’s operational capabilities
  • Build and manage relationships with Red Team partners to augment offensive security capacity, methodologies, and specialized delivery scenarios
  • Embody our culture and values
  • Fulltime
Read More
Arrow Right

Senior Information Security Incident Response Lead

The Senior Information Security Incident Response Lead is responsible for managi...
Location
Location
Mexico , Mexico
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree or equivalent in Information Technology, Computer Science or related preferred
  • SANS GIAC Security Essentials (GSEC) or equivalent preferred
  • SANS GIAC Certified Intrusion Analyst (GCIA) or equivalent preferred
  • SANS GIAC Certified Incident Handler (GCIH) or equivalent preferred
  • Advanced experience in a Technology Information Security Industry
  • Advanced experience or knowledge of SIEM and IPS technologies
  • Advanced experience with Wireshark or tcpdump to identify normal and abnormal/malicious traffic patterns and behaviors
  • Advanced understanding of End Point Protection Software
  • Advanced understanding of Enterprise Detection and Response software
  • Advanced knowledge of technological advances within the information security arena
Job Responsibility
Job Responsibility
  • Manages the prevention and resolution of security breaches and ensure incident and problem management processes are initiated
  • Performs access management activities according to the policy
  • Implements and discusses security service audit schedules, review access authorization and perform the required access controls and testing to identify security weaknesses
  • Interacts with a global team of Cyber Security Analysts and specialists
  • Manages 2nd level triaging of security alerts, events, and notifications
  • Manages notifications of internal and/or external teams according to agreed alert priority levels, and escalation trees
  • Communicates status of response, resolution and final root cause analysis to the appropriate stakeholders
  • Follows and updates established and/or ad-hoc processes and work instructions and create procedures where deficiencies are identified
  • Logs, manages and coordinates service requests through to resolution including the identification, isolation, resolution and escalation of IT infrastructure faults
  • Maintains an understanding of current and emerging threats, vulnerabilities, and trends
Read More
Arrow Right

Incident Response Manager

The Incident Response Manager leads the global function responsible for the disc...
Location
Location
Spain , Barcelona
Salary
Salary:
Not provided
werfen.com Logo
werfen
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in computer science, cybersecurity, or related field
  • 5+ years of hands-on experience in cybersecurity role
  • 2+ years of experience in managing global security teams and leadership
  • Leadership: Ability to inspire, guide, and develop high-performing teams
  • Strategic Thinking: Align operational goals with business risk and security strategy
  • Technical Depth: Solid understanding of tools, threats, and mitigation techniques
  • Communication: Clear and effective reporting to technical and executive audiences
  • Collaboration: Strong cross-functional engagement and influence
  • Continuous Learning: Commitment to continuous professional development
Job Responsibility
Job Responsibility
  • Transition manual response workflows to automated defense by deploying isolation playbooks that remove human delays during sensitive attack stages
  • Coordinate with external service providers to maintain 24/7 monitoring and deep-dive investigations
  • Execute two tabletop exercises annually to identify and resolve coordination gaps between security and business continuity teams
  • Manage the integration of external threat intelligence with monitoring systems to enable proactive account resets and automated alerting
  • Own the end-to-end process for compliance monitoring and forensic investigations to ensure technical integrity and continuity
  • Preserve evidence by capturing forensic snapshots of affected system states before finalizing asset isolation
  • Verify that security controls function correctly through independent technical validation scans and log reviews
  • Performs other duties and responsibilities as assigned
  • Fulltime
Read More
Arrow Right