Cyber Security Incident Response Manager

• Lead and manage end-to-end cyber security incident response activities, including identification, containment, eradication, and recovery.

• Act as the incident commander for high-severity security incidents, ensuring timely decision-making and escalation.

• Coordinate with SOC, IT, infrastructure, cloud, and application teams during incidents.

• Ensure incidents are handled in line with defined SLAs, policies, and regulatory requirements.

• Develop, maintain, and continuously improve incident response policies, procedures, playbooks, and runbooks.

• Conduct post-incident reviews and root cause analysis, driving corrective and preventive actions.

• Lead and participate in cyber incident simulations, tabletop exercises, and crisis drills.

• Oversee the effective use of SOC and incident response tools such as SIEM, SOAR, EDR, and threat intelligence platforms.

• Guide and mentor incident response analysts and SOC personnel.

• Work with vendors and service providers to ensure incident response capabilities meet business requirements.

Qualifications:

• 8+ years of experience in cyber security operations, incident response, or SOC environments.

• Proven experience leading major security incidents in enterprise or regulated environments.

• Strong understanding of cyber threats and incident response methodologies.

• Familiarity with standards and frameworks such as ISO 27001, NIST.

• Relevant certifications (e.g. CISSP, CISM, GCIH).

EA Licence No: 11C5502 | EAP Registration No: R1106192