Security Engineering Manager, Incident Response (CSIRT)

Funding Societies is looking for an Engineering Manager - Incident Response to join our security team and lead efforts to build large, distributed solutions to allow us to hunt for bad actors, triage high quality detections and respond with informed skill and insight.

As an Incident Response Manager, you’ll work to scale and iterate on how our teams prepare for, and respond to, incidents. You’ll focus intently on optimizing tooling and workflows to reduce ambiguity and manual burden.

We are looking for someone like you with a real passion for security and the knowledge that it begins with people.

Key Responsibilities:

• Recruit, hire, and retain high performing and diverse team of incident response engineers and professionals.

• lead a team of high-performing incident response engineers developing solutions to hunt threats aggressively, implement high quality detection and response.

• Implement a cohesive strategy for the development of incident response policies; proactively identify critical security issues and recommend risk-reduction solutions.

• Build out long term security strategies, initiatives and new capabilities

• Develop a roadmap for those initiatives, track progress against it, and evaluate the team's performance.

• Hold your own in technical discussion, be a subject matter authority, and have strategic influence.

• Lead critical incident response efforts, putting threats and incidents into business context.

• Identify new techniques and solutions which increase the team's ability to better protect company and user data.

• Provide mentorship, support, and career development opportunities for team members and enable the team to scale.

• Work with Product, Infrastructure security, enterprise security, legal, Comms & PR teams to divide and conquer challenges related to a broad spectrum of threat actors.

• Build positive relationships with internal partners to identify and facilitate solutions to increase the impact of the team's work.

• Effectively communicate and educate various internal and external stakeholders.

Required qualifications:

• Experience in at least one of PHP, Python, C, C++, or Java.

• Experience in threat detection, forensics, incident response or a related field. This may include software development, threat intelligence, or other related endeavors.

• Experience recruiting and leading technical teams, including performance management.

• Experience translating technical concepts into language that is relevant to many audiences, including software engineers, business and technical leaders and external security community members and press.

• BA/BS in Computer Science or 4+ years work experience.

You may be a good fit if you

• Enjoy a fast paced work environment, crafting strategic and rapid fixes to high intensity problems.

• Have a keen eye for detail and a high bar for quality.

• Are comfortable navigating through ambiguity, while identifying areas for process improvement and establishing best practices.

• Have public or user-facing experience in ensuring communications are clear and succinct.

• Can problem solve and translate complicated technical issues into solutions, while keeping a users-first mindset.

• Have an ability to execute and deliver complex operational projects involving multiple stakeholders.

• Have operational awareness. You have a sense of the big picture in organization you inhabit, how team members’ individual goals contribute to that, and how they can help team members navigate best within the big picture.