Ingram Micro touches 80% of the technology you use every day with our focus on Technology Solutions, Cloud, and Commerce and Lifecycle Solutions. With $50 billion in revenue, we have become the world's largest technology distributor with operations in 64 countries and more than 35,000 associates.
We are looking for an expert Security Incident Response Team and Investigations Sr. Manager to lead a hardworking team of investigators, digital forensic examiners, Incident Response leaders, reverse engineering of malware experts, and disaster recovery functions. This new team will be responsible for all technology investigations - including incident response and disaster recovery. The Sr. Manager will be responsible for building the team, recruiting, coaching, mentoring, and defining processes and procedures. Most importantly, the role must understand how to quantify risk and prioritize remediation tasks across the company.
As a manager, you won't be performing investigations all day long, you will also need to focus on the development of the team, interfacing with other information security, IT, and business teams, developing processes and procedures, defining an investigations and disaster recovery strategy, and communicating results and risk to both technical and business audiences. The ideal candidate should understand the importance of written reports and communication and should excel in this area.
Work to create, leverage automation, continuously develop, maintain a mature investigations and incident response program.
Be a resourceful part of the talented team responsible for investigations, digital forensics, reverse engineering of malware, security incident response, threat hunting, and disaster recovery.
Supervise eDiscovery activities and work with the legal department regarding such requests.
Guide investigators and review and approve investigative reports.
Building, executing, and practicing a best-in-class security incident response plan.
Build and manage a digital forensic lab, including processes and procedures that would stand up in a legal setting.
Develop comprehensive, accurate reports and presentations for both technical and executive audiences
Research the latest security best practices and technologies, staying abreast of new threats and vulnerabilities and helping disseminate this information within the groups at the company
Own and manage investigation, disaster recovery, reverse engineering of malware, and other tools related automation and innovation.
Hire, mentor, coach direct reports, help them navigate challenges, and motivates them for their career development.
Experience with cyber investigations and forensic level analytics as well as insider threat programs.
Experience in the security aspects of multiple platforms, operating systems, software, communications, and network protocols along with malware analysis in support of incident analysis and response.
Ability to anticipate and respond to changing priorities and operate effectively in a dynamic, demand-based environment, requiring flexibility and responsiveness to client matters and needs.
Demonstrated ability to manage projects and tasks within an agile and dynamic operational environment
Previous experience managing cross functional and interdisciplinary project teams to achieve tactical and strategic objectives.
What you bring to the role:
Bachelor's degree in Computer Science, Engineering, Science, Math or Cyber Security related field is required. A graduate degree is preferred.
Work Experience: 7+ years' experience in technical IT or Information/Cyber Security.
3+ years of experience in a leadership role of a security incident response team.
3+ years of strong hands-on experience in application and network penetration testing, vulnerability risk management and providing remediation recommendations.
3+ years of strong hands-on experience in digital forensics examinations and/or investigations using the EnCase tool.
3+ years of experience in law enforcement (deputized) investigations (fraud, counterintelligence, high-tech crimes, etc.).
3+ years of experience in interviewing after taking a Reid Technique class (or an equivalent)
Advanced knowledge and understanding in various disciplines such as security engineering, system and network security, authentication and security protocols, cryptography, and application security.
Experience with cloud services
Strong understanding of vulnerabilities, common attack vectors and has attacker mindset: ability to think about creative threats and attack vectors.
Strong communication (i.e., written and verbal), presentation, teamwork skills and resourcefulness
Pass a proficiency exam related to the role
Required Certifications: EnCE
Preferred Certifications: CISSP, CISM
* Position may require up to 20% travel, including international travel.
* Please be prepared to provide three current work references and pass a criminal background check and drug test.
This is not a complete listing of the job duties. It's a representation of the things you will be doing, and you may not perform all these duties.
Ingram Micro Inc. is committed to creating a diverse environment and is proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, veteran status, or any other protected category under applicable law.