Target Cybersecurity is looking to hire a Senior Manager - CSIRT Cybersecurity Defense to manage a shift of CSIRT analysts responsible for alert intake, triage, and response, aiming to enhance the maturity of the Cyber Fusion Center organization and support incident response.
Requirements
- 5+ years’ of SOC/IR experience
- 1-3 years of building and leading high performing cyber security teams with direct reports
- Cyber security certification (e.g. GIAC, Offensive security, ISC2)
- Deep understanding of and experience with monitoring and detection, incident response, artifact collection and analysis, cloud environments and attacker mindset
- Ability to lead CSIRT effectively during a high-severity security incident
- An understanding of and experience with any combination of digital forensics, reverse engineering, threat intelligence, threat hunting and SOAR
- Experience with various operating systems and host-based security controls
Responsibilities
- Lead Incident Response Operations: Direct all phases of the incident response lifecycle, including analysis, containment, eradication, recovery, and post-incident analysis.
- Develop and Maintain Response Frameworks: Establish and regularly update incident response policies, procedures, playbooks, and escalation workflows in alignment with industry best practices.
- Coordinate Cross-Functional Response: Serve as a central point of contact during major security incidents, coordinating efforts in collaboration with our partner teams
- Report on Incident Trends: Develop and present incident metrics, threat trends, and risk insights to senior leadership to support strategic decision-making.
- Train and Mentor Response Team Members: Provide leadership, coaching, and technical guidance to incident responders and analysts to build a high-performing team.
- Test and Validate Response Readiness: Contribute to regular tabletop exercises, red team engagements, and technical simulations to assess and strengthen response capabilities.
- Integrate Threat Intelligence: Leverage internal and external threat intelligence to inform response strategies and anticipate emerging attack vectors.
Other
- 4-year degree or equivalent experience in a related field
- Lifelong learner passionate about continuous improvement and developing both your and your team’s skills and capabilities
- Ability to convey technical information clearly and concisely
- Hybrid/Flex for Your Day work arrangement
- Work duties cannot be performed outside of the country of the primary work location, unless otherwise prescribed by Target.
