Lead & Detect & Response

Remote Full-time
Role Purpose:

This role leads the Detect and Respond function, responsible for incident response, threat detection, and cyber defense operations across cloud, endpoint, and identity systems. The goal is to strengthen the organizations ability to detect, respond to, and recover from cyber threats quickly and effectively, while fostering a culture of proactive security across the company.

Role Value:

The role directly supports the organization’s trust, resilience, and compliance objectives. By improving detection capabilities, automating response processes, and reducing incident impact, this position helps protect customer data, business operations, and overall company reputation.

Example Responsibilities:
• Own and evolve the overall Detect & Respond strategy—partnering with Technology, Engineering, and managed service providers to advance the organization’s security posture.
• Lead the 247 Security Operations Center (SOC) and govern the end-to-end incident response lifecycle (prepare detect contain eradicate recover lessons learned).
• Manage external incident response retainers, vendors, and threat intelligence services, ensuring relevant intelligence is contextualized and acted upon.
• Oversee detection engineering and threat hunting across SIEM, endpoint, and cloud telemetry platforms.
• Support the creation, maintenance, and operationalization of incident response playbooks and escalation processes.
• Ensure all Detect & Respond controls, processes, and automations operate effectively and are continuously improved.
• Lead security crisis simulations, tabletop exercises, and post-incident reviews to improve organizational readiness.
• Collaborate with Engineering, IT, and Product teams to guide secure design, response preparedness, and operational controls.
• Track and report KPIs/KRIs (e.g., MTTD, MTTR, detection coverage %, incident closure rate, SIEM ingestion efficiency).
• Identify, document, and report risks to executive leadership.
• Manage CSIRT relationships, escalation protocols, and cross-team coordination during major incidents.
• Oversee and support penetration testing, vulnerability management, and red/purple team exercises.
• Drive security awareness initiatives and promote a positive cybersecurity culture across teams.
• Ensure lessons learned from incidents and exercises feed back into improved detections, playbooks, and training.

Experience and Qualifications:
• 8+ years of experience in Cybersecurity Operations, DFIR, Threat Detection, or SOC leadership, including experience leading teams.
• Proven success in designing and implementing unified detection and response programs across cloud, endpoint, and enterprise environments.
• Experience leading investigations involving Advanced Persistent Threats (APT), malware, and targeted attacks.
• Deep understanding of AWS Security (CloudTrail, GuardDuty, IAM, KMS, S3, Lambda, EKS) and CrowdStrike Falcon (EDR, CNAPP, Identity, DLP).
• Strong background in SIEM engineering, threat hunting (KQL/Sigma), and automation using Python.
• Practical experience in incident management, digital forensics, and data breach response.
• Working knowledge of MITRE ATT&CK, ISO 27001, SOC2, and PCI DSS frameworks.
• Experience managing and optimizing partnerships with third-party security providers and MSSPs.
• Excellent analytical, communication, and leadership skills with a structured, hands‑on approach.
• Relevant certifications such as CISSP, CISM, CEH, or GIAC preferred.
• Fast learner, adaptable, and capable of operating in a global, fast‑paced, and collaborative environment.

Key Characteristics and Attitudes:
• Friendly and supportive
• Adaptable and flexible
• Articulate and persuasive
• High IQ and EQ
• Curious and coachable
• Commercially aware
• Resilient and tenacious
• Big-picture thinking with strong attention to detail

Apply Now

Apply Now
Apply Now →

Similar Jobs

Experienced Registered Behavior Technician for In-Home ABA Therapy - Atlanta, GA

Remote

Immediate Hiring: Experienced Registered Behavioral Technician (RBT) for Clinic-Based ABA Therapy Services

Remote

Experienced Registered Behavioral Technician (RBT) - ABA Therapy for Children with Autism Spectrum Disorder

Remote

Experienced Registered Nurse - Telehealth: Providing Remote Care Coordination and Patient Support

Remote

Experienced Substitute Teacher for Riverside County Schools - Join Scoot Education's Innovative Team

Remote

Experienced Substitute Teacher for San Bernardino County - Flexible Schedules & Competitive Pay

Remote

Experienced School Year Instructional Coach for High-Dosage Tutoring Programs in Edgewater Park, NJ

Remote

Experienced School Year Tutor for K-8 Students in Math and Literacy - Mickleton, NJ

Remote

Experienced Secondary Social Studies Teacher for Kansas - Flexible Hybrid Remote Arrangement

Remote

USPS Office Helper

Remote

Hiring Now: Airport Ramp Agent

Remote

Wayfair Careers virtual assistant Remote Job at united states

Remote

Mission Critical Project Manager - Automated Logic

Remote

Experienced HR Benefits Intern - Remote Work Opportunity in Dynamic and Growing Company

Remote

PV Physician II

Remote

Customer Project Manager, Imaging Systems / Construction - Arizona

Remote

**Experienced Amazon Customer Service Specialist Remote – Virtual Customer Care Advisor**

Remote

[Remote] Staff Software Engineer, Backend

Remote

Remote Associate for Data Entry

Remote

[Remote] Remote Payroll Assistant (Indianapolis)

Remote
← Back