Incident Commander, Cybersecurity
At West Monroe, our people are our business.
We pride ourselves on bringing a different mindset to consulting—and that takes a different approach: highly collaborative, flexible, and tenacious.
Our people-first, highly collaborative culture is core to our identity. It’s something we care about, and something we strive to enrich and preserve. No hierarchies. No siloes. No egos. Just smart ideas, and the drive to make an impact for our clients.
Every day our clients rely on us to help them tackle their greatest challenges, by strategically deploying technology through a business-focused and industry-specific lens. We bring together both the right knowledge and the right approach, so that they can capitalize on opportunities and deliver real results. That takes the right team. And that’s where you come in.
Ready for the next step on your career journey?
We’re looking to hire an experienced Incident Commander (Manager-Sr. Manager) to direct and manage multiple work streams and resources during/after Incident Response & Recovery engagements. You will be tasked with the coordination and project management of forensic imaging and analysis, breach containment, and infrastructure recovery planning and execution, performed by an IR consulting team you’ll oversee onsite at our clients.
This role will often interface with multiple groups, including external parties (law firms, insurance brokers, underwriters, media, public relations, etc.), West Monroe resources, and client resources (C-Suite, Legal, Compliance, Risk, Security, Cybersecurity, Auditing, Operations, IT, Call Centers, Marketing, Investor Relations, Communications, Public Relations). Additionally, the Incident Commander will collaborate with Cybersecurity practice leaders to set the direction of our offerings, establish ongoing relationships with third parties and clients, and work closely with stakeholders to understand business objectives and advise on security risks / mitigation strategies during incident response work.
Responsibilities:
- Lead incident response teams and activities during security incidents (I.e. data breaches, ransomware events)
- Conduct initial incident triage, assess the effectiveness of various tactics/strategies, and make rapid decisions on appropriate courses of action
- Review and recommend technical, process, and physical controls to counteract damage from breach events
- Translate business and technical requirements into concrete projects proposals including detailed work plans and cost estimates to assist in sales efforts and develop client relationships and opportunities
- Lead forensic investigators and application security analysts in reactive and proactive Threat Hunting engagements, performing endpoint, network, and log analysis
- Mentor and grow junior resources to develop additional forensic, response, and threat hunting capabilities
- Promote thought leadership in emerging forensic and investigation technologies; including partnerships, go-to-market offerings, speaking events, and blog posts/whitepapers
Qualifications:
- Must have 6-11+ years of experience within the cybersecurity, incident response, and/or IT risk management arena
- Bachelor’s degree in IT, Computer Science, MIS, or related degree – preferred, not required
- CISSP, CISM, or equivalent cybersecurity certifications – desired, not required; PMP – desired, not required
- Leadership experience and confident with incident response management, I.e. technical recovery, legal or compliance notifications, incident response plan development, forensic investigation, and tabletop testing
- Advisory experience in compliance or regulatory frameworks (I.e. HIPAA, PCI, GDPR, NIST, ISO)
- Basic understanding of application, database, authentication, and network security principles
- Ability to convey complex technical security concepts to technical and non-technical audiences during crisis situations, I.e. executive or board level presentations
- Ability to work with senior business leaders to understand business objectives, identify risk factors, and communicate effective mitigation strategies
- Bonus experience: previously worked with Law Enforcement, Forensic / Incident Response Firms, Cyber Insurance providers, Breach Coaches and/or Law Firms
- Excellent organizational, verbal, presentation/facilitation, and written communication skills
- Willingness to travel for out of town client engagements, up to 80%
Ready to get started? Join our team and make an impact.