Dell Senior Security Incident Response Delivery Manager – Secureworks – Remote in Atlanta, Georgia

Senior Security Incident Response Delivery Manager – Secureworks – Remote

Secureworks (SCWX-NASDAQ) is a global leader in intelligence-driven information security solutions. We help organizations confidently pursue business goals in a digitally-connected world. Consistently recognized by industry analysts and readers’ polls, we are one of the best in the world at understanding and anticipating threat behavior. We see 250 billion events every day across 4400 clients in more than 55 countries, and our solutions work across all the layers of a client’s security environment, including 330 different vendor technologies. Join a talented, dedicated, and diverse team of researchers, analysts, engineers, consultants and business professionals who are focused 100% on protecting our clients from cyber threats. We seek out the brightest minds and empower our teams with the tools and support they need to fight the bad guys and maintain our company’s leadership in the cyber security industry.

Uniquely positioned to adapt as the industry evolves, we are also proud to be part of the Dell Technologies family. We enjoy competitive compensation and benefits packages, and reward and recognize our employees for exceptional results. A constant focus on continued learning and growth keeps our team members engaged and excited about “what’s next.” We offer flexible work options when available, and emphasize the importance of work-life balance. We know that when our people are rewarded, recognized, and rejuvenated, we win as a team.

Role Overview

The Senior Security Incident Response Delivery Manager works with consultants and clients in the growing area of cybersecurity incident response management. This role supports a team of consultants delivering reactive services focused on management of active incident response engagement, as well as delivering incident response to clients in a consultant role on an as needed basis. Mentoring consultants on analysis, process and communication is a key component of a Senior Incident Response Delivery Manager.

The successful candidate will work with consultants and other team leadership to manage client engagements from initiation to completion, and will seek out opportunities to improve efficiency and efficacy of service delivery. They must have experience in developing, managing, and operating incident response capabilities, conducting training, exercises and workshops, and will be familiar with tactics, techniques, and procedures commonly employed by and used to thwart threat actors. Familiarity with the drivers and constraints that organizations are working with and against while trying to secure their infrastructure and data is a necessity.

This position requires up to 60% travel.

Role Responsibilities

  • Lead/manage a team of forensic analysts, familiar with host and/or network-based forensics across Windows, Mac, and Linux platforms.

  • Can effectively communicate with executives on the topics of forensics and malware analysis.

  • Assess and develop information security and incident response programs in a proactive fashion to help mature the security posture of organizations prior to an incident.

  • Lead/manage incident response and proactive engagements.

  • Produce high-quality written and verbal reports, presentations, recommendations, and findings to customer management.

  • Demonstrate industry thought leadership through blog posts and other public speaking events.

  • Manage internal programs or teams.

  • Serve as subject matter expert in incident response and digital forensics

  • Mentor incident response consultants

Requirements

  • Minimum of 8 years of incident response experience (network and digital forensics)

  • Minimum of 5 years of experience leading teams in a consulting or service delivery environment

  • Minimum of one or more of the following certifications: GREM, GCFA, GCFE, CISA or CISSP

Preferred Skills

  • Understanding of vulnerabilities and tools used to discover/analyze and exploit vulnerabilities.

  • Understanding of at least one Compliance Framework Experience: ISO 27001/2, FISMA, PCI, HITRUST, NIST 800-series, CoBIT.

  • Strong technical communication skills (oral and written) including experience briefing executive management and desire to work with clients to solve complex security issues, including at times in crisis situations

  • Forensic experience with two or more major operating systems: Microsoft OS's; OS X; Unix and Linux variants; iOS; Android

  • Strong security analysis skills of networking data and traffic

  • Strong experience with multiple forensic tools

  • Operational experience with security tools (firewalls, IDS, IPS, SIEMs, proxies, VPNs)

Secureworks (A Dell Technologies Company) is committed to the principle of equal employment opportunity for all employees and to providing employees with a work environment free of discrimination and harassment. All employment decisions at Secureworks are based on business needs, job requirements and individual qualifications, without regard to race, color, religion or belief, national, social or ethnic origin, sex (including pregnancy), age, physical, mental or sensory disability, HIV status, sexual orientation, gender identity and/or expression, marital, civil union or domestic partnership status, past or present military service, family medical history or genetic information, family or parental status, or any other status protected by the laws or regulations in the locations where we operate. Secureworks will not tolerate discrimination or harassment based on any of these characteristics. Learn more about Diversity and Inclusion at Secureworks here .