Director, Incident Response

Director, Incident Response

at Tevora

If you haven't heard of Tevora, it's because we've done our job!

Tevora is a tight-knit community of professionals with a shared passion for our craft. Every day, we combine in-depth knowledge of cybersecurity, technology, and compliance to help create more secure digital environments. To Tevorans, every problem is a puzzle in need of solving. We strongly believe that if we put smart, driven people in a room together, they will accomplish great things. We maintain a supportive culture that celebrates continuous learning, diverse perspectives, and sharing the wins. That's why we have our eyes on you.

What's the role?

Tevora is seeking a Director, Incident Response to join the Consulting Incident Response team - a critical, strategic leadership role responsible for overseeing and managing the organization's response to cyber threats and incidents. This position requires a seasoned professional with extensive experience in Information Technology, Cybersecurity, and Incident Response. The right candidate must have a deep understanding of digital forensics and incident response (DFIR) methods and techniques. As a Director of Cybersecurity Incident Response, you will be responsible for developing DFIR capabilities in partnership with our sales team. This role has the responsibility of promoting and evolving Tevora services to meet client needs while running and building the domestic team of IR personnel.

Candidates must be comfortable as the primary client-facing person in charge of incidents involving sensitive information in often tense situations. Must be well spoken and convincingly authoritative on DFIR issues through written communications, phone calls, and video conferences.

A day in the life could include:

• Orchestrate crisis management efforts alongside Executive Leadership and ancillary teams, ensuring swift and effective resolution of high-impact incidents.
• Coordinate and optimize incident management processes with stakeholder staff, streamlining response protocols for enhanced efficiency.
• Spearhead all activities within the Security Operations Center (SO), upholding the highest standard of security operations and ensuring the team's readiness to respond to emerging threats.
• Direct a multidisciplinary team of incident responders, forensic analysts, and security consultants, fostering collaboration and innovation in tackling complex security incidents.
• Play a pivotal role in presales and post-sales activities with stakeholders contributing strategic insights to the organization's security posture and client relationships.
• Lead and coordinate strategic projects with Executive Leadership across various verticals, aligning security initiatives with organizational goals and ensuring the effective execution of security measures.
• Demonstrate an in-depth understanding of legal privacy and notification requirements, ensuring compliance in incident response activities and proactively mitigating legal risks.

Necessary skills and qualifications:

• Bachelor's degree in computer science, Information Security, or related technical field.
• Advanced, progressive hands-on experience in enterprise network engineering, server support, or Managed Security Service Provider experience.
• Extensive hands-on incident response experience
• Proven experience in a leadership role within incident response or a related IT field.
• Strong knowledge of cybersecurity frameworks, US and international regulations, and best practices.
• Exceptional verbal and written communication skills.

Bonus Points:

• Master's degree in related field.
• Relevant certifications such as OSCP, CISSP, CISM, CEH, or GIAC certifications are highly desirable.
• Extensive experience with and knowledge of the following tools and technologies:

• • Cloud -Azure, GCP, and AWS.
  • EDR - CrowdStrike, SentinalOne
  • SIEM - Splunk, Qradar, Sentinel, Rapid7, Elastic.

We've got you covered!

• Comprehensive benefits offering
• Paid time off and holidays
• 401k with Company match
• Vibrant work culture

Additional requirements:

• A valid driver's license is required.
• Eligibility to work in the United States.

EEOC Statement

Tevora is proud to be an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, pregnancy, sexual orientation, gender identity, national origin, age, protected veteran status, disability status, or other applicable legally protected characteristics.