Sr Mgr CyberSecurity Incident Response
Listed on 2026-07-06
-
IT/Tech
Cybersecurity
Please reference the schedule and minimum qualifications listed below before applying. If you need assistance with filling out our application form or during any phase of the application, interview, or employment process, please notify our Human Resources Team at option 1 or email and every reasonable effort will be made to accommodate your needs in a timely manner.
Job SummaryThe Sr. Manager of Cybersecurity Incident Response & Insider Threat leads MACU’s enterprise-wide cyber incident response, digital forensics, and insider threat program. This role is responsible for preparing the organization to detect, respond to, and recover from cybersecurity incidents while protecting member data, intellectual property, and critical systems. In this highly visible leadership role, you will partner closely with Cybersecurity, IT, Legal, HR, Governance, Risk Management, and Executive Leadership to manage high-impact incidents, insider risk, and crisis situations.
You will define response strategy, mature operational capabilities, and ensure the organization is resilient against both external attacks and internal misuse.
Location:
Utah, 9800 S. Monroe Street, Sandy, UT 84070.
Schedule:
Full-Time, hybrid in-office with some remote days.
- Lead the enterprise cybersecurity incident response program, including preparation, detection, containment, eradication, and recovery activities.
- Serve as the executive incident commander for high-severity cybersecurity events, coordinating technical teams, business stakeholders, and leadership.
- Define and maintain incident response plans, playbooks, escalation models, and crisis communication procedures.
- Conduct executive-level briefings during and after incidents, including post-incident reports, root cause analysis, and lessons learned.
- Oversee breach investigations, digital forensics, and evidence preservation in coordination with Legal and Compliance.
- Lead tabletop exercises, red/blue team simulations, and ransomware readiness scenarios.
- Lead the organization’s brand protection efforts to safeguard reputation and identity.
- Lead proactive threat-hunting initiatives to identify advanced threats, vulnerabilities, and anomalous activities across the enterprise environment.
- Own and operate the enterprise Insider Threat Program, addressing malicious, negligent, and compromised insider risks.
- Define insider threat detection, triage, investigation, and response processes across people, process, and technology.
- Partner with HR, Legal, Privacy, and Risk Management teams to ensure investigations are lawful and appropriate.
- Implement behavioral, technical, and contextual monitoring capabilities.
- Establish governance, oversight, and separation of duties for insider investigations.
- Collaborate with SOC leadership to enhance monitoring, alerting, and response automation.
- Drive continuous improvement using metrics and maturity models.
- Translate threat intelligence into actionable detection and response strategies.
- Ensure alignment with regulatory frameworks including NCUA, FFIEC, and NIST.
- Support audits, regulatory exams, and breach notification requirements.
- Partner with Risk Management and Internal Audit to remediate gaps.
- Lead and mentor incident response and insider threat professionals.
- Partner across IT, Digital Solutions, Legal, HR, Communications, and executives.
- Act as a trusted advisor during high-impact and sensitive situations.
- Strong understanding of insider threat risk and investigations.
- Executive-level communication and leadership under pressure.
- Proven ability to balance security, privacy, and business needs.
- Strategic thinking.
- Problem‑solving skills.
- Verbal and written communication skills.
- Leadership and talent management skills.
- Public speaking skills.
- 6+ years of experience in cybersecurity operations or incident response with progressive responsibility.
- 5+ years in a leadership role responsible for cybersecurity operations or incident response.
- Experience leading enterprise‑scale incident response programs.
- Financial services or regulated industry experience preferred.
- Bachelor’s degree in a…
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).