Incident Response Engagement-Lead

Based in United StatesFull-TimeLead
Salary not disclosed
Apply NowOpens the employer's application page

Job Details

Experience
4–6 years of hands-on experience in Digital Forensics and Incident Response (DFIR)
Required Skills
Project ManagementCybersecurity

Requirements

  • 4–6 years of hands-on experience in Digital Forensics and Incident Response (DFIR), with exposure to cyber insurance, breach response, or similar environments.
  • Demonstrated experience managing cybersecurity incidents through investigation, containment, remediation, and recovery phases.
  • Experience leading moderately complex investigations involving multiple systems and stakeholders.
  • Strong project management skills, including the ability to identify risks, control scope changes, and maintain engagement timelines.
  • Understanding of legal considerations related to incident response, including Attorney-Client Privilege and Work Product Doctrine.
  • Excellent written and verbal communication skills with experience presenting technical findings to legal, business, and executive audiences.
  • Bachelor’s degree in Cybersecurity, Information Security, Digital Forensics, Computer Science, or a related field preferred.
  • Relevant certifications such as GCIH, GNFA, CySA+, CISM, or CISSP are valued.
  • Ability to work effectively with U.S.-based clients, legal teams, regulators, and security partners.
  • Strong analytical mindset, attention to detail, adaptability, and ability to remain effective under pressure.

Responsibilities

  • Lead and manage incident response activities, including scoping, containment, eradication, and recovery across complex multi-system environments.
  • Serve as the primary liaison between claims teams, legal counsel, incident response providers, and policyholders throughout active engagements.
  • Oversee digital forensics and incident response partners to ensure accurate investigations, timely delivery, and quality outcomes.
  • Manage engagement scope, timelines, priorities, and stakeholder expectations across multiple concurrent incidents.
  • Coordinate and facilitate briefings of forensic findings, adapting technical information for legal, executive, and operational audiences.
  • Ensure proper handling of sensitive investigation materials while operating within legal frameworks such as Attorney-Client Privilege and Work Product Doctrine.
  • Collaborate with claims, underwriting, and external partners to support incident documentation and informed coverage decisions.
  • Contribute to improving incident response processes, methodologies, playbooks, and operational tools.
View Full Description & ApplyYou'll be redirected to the employer's site
View details
Apply Now