×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity

Incident Response Team Lead

Job in Overland Park, Johnson County, Kansas, 66213, USA
Listing for: Tyler Technologies
Full Time position
Listed on 2026-02-22
Job specializations:
  • IT/Tech
    Cybersecurity
Salary/Wage Range or Industry Benchmark: 60000 - 80000 USD Yearly USD 60000.00 80000.00 YEAR
Job Description & How to Apply Below

Incident Response Team Lead

The Incident Response Team Lead supports day-to-day security incident investigations while providing technical guidance and task coordination for a small team of analysts and engineers. This role serves as a bridge between individual contributors and management, combining hands‑on incident response work with entry‑level leadership responsibilities. The Team Lead is expected to have a solid foundation in security incident response and digital forensics, with the ability to guide investigations, assist with decision‑making, and help junior analysts develop their skills under the direction of senior leadership.

The Incident Response Team Lead is accountable for supporting the effective execution of security incident investigations and helping maintain consistent investigative quality across the team. While not responsible for setting overall strategy, this role contributes directly to operational effectiveness by ensuring incidents are handled efficiently, documented properly, and escalated appropriately. Through hands‑on involvement and peer leadership, the Team Lead helps reduce investigation delays, improve team capability, and support the organization's broader security objectives, organizational risk, minimizing operational disruption, and protecting both staff and customers from the impact of security incidents.

Location

Plano, Texas | Yarmouth, Maine | Overland Park, Kansas | Orono, Maine

Responsibilities
  • Serve as a hands‑on responder for security incidents, participating in investigation, containment, eradication, recovery, and post‑incident activities.
  • Provide day‑to‑day technical guidance and task coordination for Incident Response analysts during investigations, ensuring work is completed accurately and on time.
  • Assist in triaging and prioritizing incidents based on severity, impact, and available resources, escalating issues to management as appropriate.
  • Support the creation, development, and maintenance of incident response procedures, playbooks, and documentation to promote consistent investigative practices.
  • Review investigative findings, evidence collection, and documentation produced by team members for accuracy and completeness.
  • Communicate investigation status and findings to management and cross‑functional partners in a clear and timely manner.
  • Collaborate with internal teams such as IT, Legal, Privacy, and Compliance during incident response activities.
  • Support post‑incident reviews by helping identify lessons learned and opportunities for process or technical improvements.
  • Mentor and support junior analysts by sharing knowledge, providing feedback, and assisting with skill development.
Complexity
  • Operate effectively in high‑pressure incident response situations while maintaining attention to detail and sound judgment.
  • Balance personal investigative work with team coordination and mentoring responsibilities.
  • Communicate technical information clearly to non‑technical stakeholders with guidance from senior team members.
  • Manage multiple concurrent incidents or tasks while meeting defined timelines and quality expectations.
  • Follow established policies and procedures while recognizing when escalation or additional support is required.
Qualifications
  • Bachelor's degree in Information Technology, Cybersecurity, Computer Science, or a related field, or equivalent practical experience.
  • 2–4 years of experience in security incident response, digital forensics, or a related cybersecurity role.
  • Demonstrated experience participating in security incident investigations across multiple stages of the incident lifecycle.
  • Prior experience acting as a peer lead, mentor, or primary investigator on incidents is preferred.
  • One or more relevant security certifications preferred (e.g., GCIH, GCFA, Security+, or comparable).
  • Working knowledge of core Incident Response domains, including:
    • Incident Response and Evidence Handling
    • Digital Forensics Fundamentals
    • Endpoint and Network Investigation Techniques
    • Common Attack Vectors and Threat Actor Behaviors
  • Familiarity with enterprise environments, including cloud services, SaaS platforms, and modern endpoint technologies.
  • Strong analytical, documentation,…
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)

Job Posting Language
Employment Category
Education (minimum level)
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search