Dataprise is hiring a
Incident Response Manager

Summary

The job is for an Incident Response Manager at Dataprise, a private equity backed company with a focus on employee satisfaction and growth opportunities. The role involves responding to cyber-attacks, threat analysis, remediation, forensics, collaboration, documentation, continuous improvement, and security monitoring.

Requirements

• 3-5 years of Information Security and Incident Response experience
• Previous experience as an Incident Response Manager
• Strong analytical and problem-solving skills and the ability to exercise sound judgement on issues with significant impact on business operations
• Strong organizational, decision making, verbal and written communication skills
• Ability to work independently with minimum supervision and to take on additional tasks as required
• Ability to work with small teams to solve complex technical problems
• Functional knowledge of Firewalls, Switches/Routers and Network/System Intrusion Detection or Prevention Systems (IDS/IPS)
• Prior experience as a Systems/Network Administrator, Cybersecurity Command Center Analyst, Security Analyst, Incident Response Analyst
• Industry certifications such as: CompTIA Network+, Security+ Certifications; GIAC GCIA, GMON or GCIH; MCSE, MCSA strongly desired
• 24x7 NOC/SOC experience, working for a MSSP, or internal enterprise SOC teams
• Experience with SIEM/IDS/Endpoint technologies such as Splunk, ELK, LogRhythm, Intel Security, HP Arcsight, AlienVault USM, IBM QRadar, Azure Sentinel, Crowdstrike, etc
• Experience with common methods of exploitation, such as buffer overflows, cross-site scripting, etc
• Programming/shell scripting experience highly desirable (PERL, Python, Java, shell scripts, PowerShell, etc.)
• Hands-on Linux experience

Responsibilities

• Lead and coordinate efforts to respond to ransomware and other cyber-attacks
• Conduct thorough investigations to understand the nature and scope of cyber attacks
• Develop and implement remediation strategies to restore affected systems and services
• Collect and preserve digital evidence during security incidents for further analysis, legal, and compliance purposes
• Work closely with other IT teams, external vendors, and law enforcement agencies as needed to manage and resolve security incidents effectively
• Maintain detailed records of incidents, including timelines, actions taken, and lessons learned
• Review and enhance incident response protocols and tools based on lessons learned from past incidents
• Support proactive threat detection by working with the security operations center (SOC) to monitor network traffic, analyze security alerts, and identify potential threats before they become incidents
• Keep up to date with the latest trends, tactics, and technologies used by cyber attackers and recommend improvements to security measures to defend against evolving threats

Preferred Qualifications

• Can-do attitude with a calm demeanor and ability to stay poised under high pressure situations
• A Bachelor’s degree in Computer Science, Cyber Security, or other tech-related degree high preferred

Benefits

• Comprehensive Wellness Program including gym membership discounts/subsidies, and Wellness Rewards opportunities
• A commitment to Diversity, Equity, and Inclusion (DEI) through a multi-faceted DEI Program
• A focus on work/life balance including hybrid and remote work options, 10 paid holidays and generous PTO
• Competitive pay and a comprehensive benefits package including top-quality medical, dental, and vision coverage for you and your family + FREE telemedicine benefits, company-paid Employee Assistance Program (EAP), and 401(k) with company match