Remote Cybersecurity Incident & Engagement Manager

*** The role is fully remote but will require occasional travel within the EU, on average about once a month.***

Our employer is a leading first-responder cybersecurity organization enabling clients to swiftly and effectively return to business following a cyber-attack. As a global market leader in ransomware post-breach remediation and cyber-attack first response, they consistently deliver results that exceed market standards for handling cyber-extortion and ransomware events. Their team collaborates with prominent global insurance carriers, leading law firms, and Fortune 1000 businesses.

• Full professional proficiency in both German and English is required.

The employer has an exciting opening for a PROJECT MANAGER - Cybersecurity Incident & Engagement Manager (CIEM), which is a consulting practitioner that is a key participant in the Incident Response teams. You will play an important role in managing and coordinating the response to cyber incidents, ensuring that they are handled in a timely and effective manner. This position involves working closely with internal and external stakeholders to mitigate risks, minimize damage, and facilitate recovery efforts.

This is a client-facing role where you will be responsible for managing cybersecurity incidents on behalf of our clients, including Fortune 500 organizations, ensuring quick resolution and minimizing impact to their operations. The CIEM is responsible for maintaining incident response protocols, managing communication during an incident, and ensuring continuous improvement of incident response processes.

This role is unique, and it is not like any of the regular Project Management positions out there; to succeed you need to possess skills to influence contributors at all levels, have organizational skills to manage engagements from inception to invoicing, set up and run kick-off and status meetings, maintain regular and agile client communications, define and document Standard Operational Processes, control project budgets, improve processes, support quality assurance steps for final deliverables where required and act as an escalation point for engagement issues.

The CIEM must enjoy active and regular interaction with technical consultants, lawyers and clients to keep up with our fast-paced high-demand engagements. This is a very engaging and hands-on role that does not allow for dull moments and often requires daily collaboration with our global teams across Europe and North America.

It requires a person who understands the fundamentals of IT infrastructure, proactive security measures, disaster recovery and remediation activities as they relate to information security.

Strong relationship-building ability with our partners within the insurance and legal professions is a must as well as with end-clients. You will have accountabilities for all engagements assigned to you and should be able to manage multiple engagements in parallel, at different stages. You need to possess strong experience working in the Information Technology and/or Security fields and a keen interest in learning about incident response methodologies and underlying forensic and breach response principles.

Your primary responsibility will be to act as the main point of contact for engagement delivery. As an engagement manager in the Cybersecurity field, you are required to possess leadership skills as well as, exceptional time management skills, excellent attention to detail and uncompromising pursuit of quality.

INCIDENT MANAGEMENT

• Manage and coordinate engagement to address response to cybersecurity incidents, including data breaches, malware infections, system compromises, and other cyber threats.
• Act as the main point of contact during active incidents, ensuring clear and timely communication with internal stakeholders, management, and external parties (e.g., vendors, legal, regulators).
• Collaborate with technical teams to investigate, contain, and mitigate incidents.
• Maintain accurate and up to date records of incidents, including the timeline of events, response actions taken, deliverables, deadlines, and lessons learned.
• Create incident status reports and contribute to post-incident analysis.
• Assist in developing, testing, and refining incident response plans and procedures to ensure they are up-to-date and effective.
• Ensure regulatory and compliance requirements are met throughout the incident lifecycle.
• Support efforts to identify the root cause of incidents and recommend improvements to prevent future occurrences.
• Track incident response metrics, provide status updates, and report on incident trends to management.
• Coordinate and ensure all facets of the incident response process are successfully executed in an organized and trackable manner.
• Enforce our critical incident response SLAs across all team members.
• Identify gaps, risks and opportunities during the incident, and address them to ensure the success of the incident.
• Develop and deliver agile/rapid progress reports, proposals,…