Engineer II in Cyber Incident Response responsible for detecting and responding to cybersecurity incidents. Collaborating with global teams to minimize business impact and strengthen detection capabilities.
About the role
- Senior Manager for the Security Operations Center at Cencora, leading incident response operations and team management in Texas. Collaborating with global teams for security incident remediation.
Responsibilities
- Lead and manage the SOC team in TX, including hiring, training, mentoring, and performance management of analysts and responders
- Oversee daily incident detection, analysis, containment, eradication, and recovery efforts
- Serve as the escalation point for high-priority or complex cyber incidents, ensuring timely response and communication to global stakeholders
- Develop and maintain incident response playbooks, runbooks, and standard operating procedures
- Partner with global SOC teams to align processes, technology, and reporting standards
- Collaborate with threat intelligence, vulnerability management, forensics, and insider threat teams to drive a unified defense strategy
- Manage relationships with key stakeholders in IT, Legal, Compliance, and Corporate Security during incident investigations
- Provide executive-level reporting and updates on incident trends, SOC performance metrics, and operational risks
- Ensure incident response activities comply with global regulatory and organizational requirements
- Drive continuous improvement of detection rules, automation, and response workflows in the SOC
Requirements
- Bachelor’s degree in Computer Science, Cybersecurity, Information Technology, or related discipline required; Master’s degree preferred
- Strong knowledge of incident response methodology, SOC operations, and security frameworks (e.g., NIST, MITRE ATT&CK)
- Familiarity with global privacy and compliance requirements relevant to incident handling
- 8–10 years of progressive experience in cybersecurity, with at least 5 years focused on SOC operations or incident response
- Minimum of 3 years in a people management role, leading incident response or SOC analyst teams
- Hands-on experience with SIEM, EDR, SOAR, and forensic tools (e.g., Splunk, CrowdStrike, Microsoft Defender, etc)
- Proven experience responding to advanced threats, ransomware, phishing campaigns, and insider incidents
- Strong communication skills, with the ability to brief technical and non-technical stakeholders during incidents.
Benefits
- Health insurance
- 401(k) matching
- Paid time off
- Professional development resources
- Backup dependent care
- Adoption assistance
- Infertility coverage
- Family building support
- Behavioral health solutions
- Paid parental leave
- Paid caregiver leave
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
Senior Cyber Incident Response Analyst managing cybersecurity incidents for clients. Focused on proactive threat hunting, incident response, and digital forensics in a hybrid environment.
Incident Response expert managing IT security incidents across teams in a global retail company. Focusing on advanced incident response and continual improvement in a dynamic work environment.
Digital Forensics & Incident Response Analyst providing real - time threat analysis and mitigation at Cayuse. Engaging in cybersecurity initiatives while leveraging extensive forensics experience.
Incident Response Analyst managing complex security incidents and leading response teams at Vanguard. Develop and implement incident action plans for security breaches and vulnerabilities.
Cyber Incident Response Analyst supporting 24/7 cybersecurity incident management and response operations for client. Engaging in case management, triage, and operational coordination activities.
Incident Manager coordinating incident resolution and change management processes at SONDA. Responsible for major incident management and supporting effective change processes.
Cyber Incident Response Director at PwC resolving complex cyber security incidents and improving strategies. Leading Crisis Management engagements and collaborating with national cybersecurity bodies.
Sr Sourcing Air Analyst at Despegar leading the expansion of airline partnerships in Mexico City. Collaborating on growth strategies and negotiating marketing agreements with airlines.
Incident Manager receiving and registering incidents through various channels at SONDA. Collaborating with resolver groups to ensure timely solutions in Bogotá.