Director Cybersecurity & Incident Response

Description

• Maintain deep understanding of adversary techniques, trends and intelligence to adapt to defensive eco-system and lead in response activities to mitigate threats facing the environment.
• Develop and implement strategy for core cyber defense activities including exposure management, monitoring for anomalous activity on the network, and threat intelligence integrations.
• Inspire and lead a diverse cyber operations center, including team management activities, budgeting, and maintaining a balanced workload that promotes health and defensive effectiveness.
• Use insights from operational processes to inform strategic adjustments to cybersecurity defenses, and communicate the impact of core activities to leadership through actionable metrics and detailed incident reporting.
• Drive cross-functional collaboration with both technical and business stakeholders, effectively translating complex technical information into clear, actionable insights and communications that support organizational goals.
• Enhance and strengthen enterprise-wide cybersecurity defenses, spanning from external network interfaces to manufacturing environments, while continuously adapting to emerging threats and aligning security strategies with the organization's diverse digital ecosystem, including IT, OT, and initiatives related to mergers, acquisitions, and divestitures.
• Manage key relationships including those associated with government agencies, industry peer collaborations, managed detection & response services, incident response retainers, and penetration testing contracts.

Requirements

• Experience in leading and developing a team of cybersecurity analysts, engineers, and security architects. This includes talent acquisition, retention, and fostering a security-conscious culture that promotes continuous learning and collaborative practices.
• At least two reputable Cybersecurity certifications paired with hands-on delivery of concepts are required for this position. Additional certifications will enhance competitiveness.
• Ideally, 15+ years of combined experience performing cybersecurity analysis, exposure management, threat hunting, cyber threat intelligence and/or incident response activities.
• Demonstrable knowledge of technology components, configurations, and infrastructure (endpoint, network, identity, applications, and data structures). Coding expertise and/or forensics skills are a strong differentiator for this role.
• Strong analytical problem-solving skills to discern patterns that could indicate a breach and to develop and implement cybersecurity policies aligned with business objectives and compliance requirements
• Deep understanding of best practices in incident, problem, and change management. Skilled in directing incident response efforts and coordinating swift mitigation efforts during a cybersecurity event.
• Demonstrable knowledge of common network communication protocols (e.g., Ethernet, TCP/IP) and industrial networking protocols (ModBus, CIP, OPC, etc.) as well as supporting topologies are preferred.
• Bachelor's degree in Cybersecurity, Engineering (Electrical, Mechanical, or similar), Computer Science, or similar scientific / technical field is required.
• Ability to translate complex technical security insights into actionable business strategies, aligning cybersecurity initiatives with organizational objectives and regulatory compliance to mitigate risk.
• Ability to travel domestically as needed (10-15%).
• A positive attitude, strong analytical skills, excellent written and oral communication skills, and the ability to work with diverse teams and world-wide peers collaboratively.
• Innovative & adaptable
• Strong communication skills to bridge the gap between business processes and the highly technical work that goes on in the SOC.
• Respectful and team oriented
• Demonstrated expertise with advanced cybersecurity technologies, including Security Information and Event Management (SIEM), Security Orchestration, Automation, and Response (SOAR), and Extended Detection and Response (XDR) platforms.

Benefits

• Through our nVent in Action matching program, we provide funds to nonprofit and educational organizations where our employees volunteer or donate money
• A 401(k) retirement plan and an employee stock purchase plan — both include a company match.
• Other supplemental benefits such as tuition reimbursement, caregiver, personal and parental leave, back-up care services, paid time off including volunteer time, a well-being program, and legal & identity theft protection.
• A dynamic global reach with diverse operations around the world that will stretch your abilities, provide plentiful career opportunities, and allow you to make an impact every day
• Medical, dental, and vision plans along with flexible spending accounts, short-term and long-term disability benefits, critical illness, accident insurance and life insurance.

Training + Development

Interview process

Visa Sponsorship

Security clearance