Skip to main content
Back to jobs

Sr Mgr CyberSecurity Incident Response

External
macu logoMacu · Sandy, UT
Full-timeRemoteToday
ComplianceForensicsIncident ResponseLeadershipRisk Management
Cover LetterConnect

Prepare for this interview

Elite

AI-generated questions, company research, and talking points tailored to this role


Responsibilities

  • Incident Response & Crisis Management
  • Lead the enterprise cybersecurity incident response program, including preparation, detection, containment, eradication, and recovery activities.
  • Serve as the executive incident commander for high-severity cybersecurity events, coordinating technical teams, business stakeholders, and leadership.
  • Define and maintain incident response plans, playbooks, escalation models, and crisis communication procedures.
  • Conduct executive-level briefings during and after incidents, including post-incident reports, root cause analysis, and lessons learned.
  • Oversee breach investigations, digital forensics, and evidence preservation in coordination with Legal and Compliance.
  • Lead tabletop exercises, red/blue team simulations, and ransomware readiness scenarios.
  • Lead the organization's brand protection efforts to safeguard reputation and identity.
  • Lead proactive threat-hunting initiatives to identify advanced threats, vulnerabilities, and anomalous activities across the enterprise environment.
  • Define and maintain incident response plans, playbooks, escalation models, and crisis communication procedures.
  • Insider Threat Program Leadership
  • Own and operate the enterprise Insider Threat Program, addressing malicious, negligent, and compromised insider risks.
  • Define insider threat detection, triage, investigation, and response processes across people, process, and technology.
  • Partner with HR, Legal, Privacy, and Risk Management teams to ensure investigations are lawful and appropriate.
  • Implement behavioral, technical, and contextual monitoring capabilities.
  • Establish governance, oversight, and separation of duties for insider investigations.
  • Security Operations & Capability Maturity
  • Collaborate with SOC leadership to enhance monitoring, alerting, and response automation.
  • Drive continuous improvement using metrics and maturity models.
  • Translate threat intelligence into actionable detection and response strategies.
  • Governance, Risk, and Compliance
  • Ensure alignment with regulatory frameworks including NCUA, FFIEC, and NIST.
  • Support audits, regulatory exams, and breach notification requirements.
  • Partner with Risk Management and Internal Audit to remediate gaps.
  • Leadership & Influence
  • Lead and mentor incident response and insider threat professionals.
  • Partner across IT, Digital Solutions, Legal, HR, Communications, and executives.
  • Act as a trusted advisor during high-impact and sensitive situations.
  • KNOWLEDGE, SKILLS, and ABILITIES
  • The requirements listed are representative of the knowledge, skills, and/or abilities required. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential job functions.
  • Education and Experience
  • 6+ years of experience in cybersecurity operations or incident response with progressive responsibility.
  • 5+ years in a leadership role responsible for cybersecurity operations or incident response.
  • Experience leading enterprise-scale incident response programs.
  • Financial services or regulated industry experience preferred.
  • Bachelor's degree in a related discipline or equivalent experience required.
  • Licenses, Certifications, Registrations
  • CISSP strongly preferred.
  • GCIH, GCFA, CISM, CISA, or GIAC certifications highly desirable.
  • Other Skills and Abilities
  • Expertise in incident response and digital forensics.
  • Strong understanding of insider threat risk and investigations.
  • Executive-level communication and leadership under pressure.
  • Proven ability to balance security, privacy, and business needs.
  • Strategic thinking.
  • Problem-solving skills.
  • Verbal/written communicatio

Benefits

Remote work options

Additional Information

Please reference the schedule and minimum qualifications listed below before applying. If you need assistance with filling out our application form or during any phase of the application, interview, or employment process, please notify our Human Resources Team at 801-366-6947 option 1 or email macurecruiting@macu.com and every reasonable effort will be made to accommodate your needs in a timely manner. Job Summary The Sr. Manager of Cybersecurity Incident Response & Insider Threat leads MACU's enterprise-wide cyber incident response, digital forensics, and insider threat program. This role is responsible for preparing the organization to detect, respond to, and recover from cybersecurity incidents while protecting member data, intellectual property, and critical systems. In this highly visible leadership role, you will partner closely with Cybersecurity, IT, Legal, HR, Governance, Risk Management, and Executive Leadership to manage high-impact incidents, insider risk, and crisis situations. You will define response strategy, mature operational capabilities, and ensure the organization is resilient against both external attacks and internal misuse. Job Description LOCATION: UTAH 9800 S. Monroe Street Sandy, UT 84070 SCHEDULE: Full-Time hybrid in-office with some remote days To be effective, an individual must be able to perform each job duty successfully.


Your Match

How well this role fits your profile.

Company Intel

What employees say

Worked at macu? Share your experience

Interested in this role?

Apply on the company's website.

Cover LetterConnect