Threat Level: green Handler on Duty: Didier Stevens

SANS ISC: InfoSec Jobs InfoSec Jobs

Watch ISC TV. Great for NOCs, SOCs and Living Rooms: https://isctv.sans.edu

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
CIRT Manager, Cybersecurity (Cyber Incident Response Team)
Company T-Mobile
Location Bellevue, WA
Preferred GIAC Certifications GCIH, GCFA, GCIA, GCFE
Travel 10%
Salary Not provided
URL https://www.tmobile.careers/job-details/engineering/138860BR-cirt-manager-cybersecurity-cyber-incident-response-team
Contact Name Ivan Avilla
Contact Email ivan.avilla1/at/t-mobile.com
Expires 2020-05-12

Job Description

Come join the nation's UnCarrier! We are seeking a CIRT Manager, Cybersecurity - Cyber Incident Response Team (CIRT).

The Manager, Cybersecurity leads a T-Mobile U.S. (TMUS) Cyber Security Incident Response Team within the Cyber Security Operations organization, and reports to the Senior Manager, Cyber Security Operations. In this role, you will oversee a 24x7 function & team comprised of individual contributors, managed services, and external partners.

As a T-Mobile Cyber Incident Response leader, you will:
Build and mentor a high performing team with a passion for creating positive culture, founded on integrity and equity
Help develop and implement the T-Mobile US (TMUS) Cyber Incident Response vision, strategy, and road map in partnership with appropriate teams across technology and business units
Serve as the incident commander for major or high-profile incidents including validating and raising incidents, coordinating response, facilitating information sharing and conducting reporting
Provide timely and relevant updates to appropriate executives, leaders and decision makers
Test and maintain incident response plans and processes to address existing and emerging threats
Organize amd maintain documentation for executive and targeted functions for table-top exercises
Handle Incident Response (IR) retainers and coordinate third party engagements
Establish meaningful measures & metrics for team performance and SLAs/OLAs

Core Competencies
Requires competency in cyber incident response, technical assessments with strong customer focus, change & innovation, strategic thinking, relationship building & influencing, talent management, results focus, and inspirational leadership.

Minimum Requirements
3+ years leading Cyber Security Operations, including team manager role
5+ years in Cyber Security Operations including 3+ years on a Cyber Incident Response team within a large enterprise organization
A deep understanding of cyber-security threats, vulnerabilities, controls and remediation strategies in global enterprise environments
Knowledge of technologies, systems and networks as well as typical gaps that could impact the ability of an organization to effectively detect and respond to cyber attacks
An ability to communicate complex and technical issues to diverse audiences, verbally and in writing, in an easily-understood, authoritative, and actionable manner
Strong organizational skills with ability to handle multiple high visibility issues simultaneously
Experience with large scale and complex incidents of all types to include Advanced Persistent Threats, DDoS, insider, web and mobile applications, data ex-filtration etc.
Knowledge of Mitre ATT&CK and the cyber kill chain frameworks