Incident Manager at Stefanini managing IT service incidents, ensuring operational continuity and quality. Leading crisis rooms and supporting problem management under ITIL practices.
About the role
- Senior Manager for the Security Operations Center at Cencora, leading incident response operations and team management in Texas. Collaborating with global teams for security incident remediation.
Responsibilities
- Lead and manage the SOC team in TX, including hiring, training, mentoring, and performance management of analysts and responders
- Oversee daily incident detection, analysis, containment, eradication, and recovery efforts
- Serve as the escalation point for high-priority or complex cyber incidents, ensuring timely response and communication to global stakeholders
- Develop and maintain incident response playbooks, runbooks, and standard operating procedures
- Partner with global SOC teams to align processes, technology, and reporting standards
- Collaborate with threat intelligence, vulnerability management, forensics, and insider threat teams to drive a unified defense strategy
- Manage relationships with key stakeholders in IT, Legal, Compliance, and Corporate Security during incident investigations
- Provide executive-level reporting and updates on incident trends, SOC performance metrics, and operational risks
- Ensure incident response activities comply with global regulatory and organizational requirements
- Drive continuous improvement of detection rules, automation, and response workflows in the SOC
Requirements
- Bachelor’s degree in Computer Science, Cybersecurity, Information Technology, or related discipline required; Master’s degree preferred
- Strong knowledge of incident response methodology, SOC operations, and security frameworks (e.g., NIST, MITRE ATT&CK)
- Familiarity with global privacy and compliance requirements relevant to incident handling
- 8–10 years of progressive experience in cybersecurity, with at least 5 years focused on SOC operations or incident response
- Minimum of 3 years in a people management role, leading incident response or SOC analyst teams
- Hands-on experience with SIEM, EDR, SOAR, and forensic tools (e.g., Splunk, CrowdStrike, Microsoft Defender, etc)
- Proven experience responding to advanced threats, ransomware, phishing campaigns, and insider incidents
- Strong communication skills, with the ability to brief technical and non-technical stakeholders during incidents.
Benefits
- Health insurance
- 401(k) matching
- Paid time off
- Professional development resources
- Backup dependent care
- Adoption assistance
- Infertility coverage
- Family building support
- Behavioral health solutions
- Paid parental leave
- Paid caregiver leave
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
Incident and Requirement Manager at SONDA managing incident processes and communications. Leading service improvement efforts while supporting technology - driven innovation.
Manager in Cyber Incident Response at PwC, focusing on penetration testing and mentoring teams. Leading client engagement workstreams and ensuring high - quality deliverables.
Technical Incident Response Analyst managing incident communications and stakeholder engagement at Nuvei, a leading fintech company providing versatile payment processing solutions globally.
Senior Incident Response Analyst managing high - severity security incidents at Broadridge. Leading investigations and coordinating response efforts with cross - functional teams.
SOC Lead managing advanced cyber incident response and data security for The Missing Link, an awarded IT provider in Australia.
Senior Associate in Cybersecurity at PwC, managing cybersecurity incidents and mentoring junior team members to deliver quality solutions. Collaborating with clients to protect sensitive data against cyber threats.
Tier 2 Incident Response Analyst analyzing security alerts and ensuring prompt cybersecurity incident responses. Collaborating with SOC team to enhance cybersecurity practices.
Analyst supporting Controls Testing and Data Repair in regulated financial services. Executing testing activities and maintaining governance artifacts for data repair events.
Incident and Problem Manager at SONDA focusing on prioritizing and managing incidents. Collaborating on root cause analysis and prioritizing user communication in a technology - driven environment.