Incident Response Manager​/Hybrid Radnor

Overview

A leading Financial Services organization based in Radnor, PA is seeking a Manager of Incident Response to lead and mature its Incident Response (IR) function. This role will manage a team of 10 mid-to-senior level Incident Response Analysts within a large, well-established security organization supporting over 3,000 employees. This is a true player/coach position, ideal for a technically sharp security leader who enjoys staying hands-on while also driving performance, metrics, and operational excellence.

You will serve as a senior escalation point for complex security incidents, collaborate closely with peer security managers, and help shape incident response strategy across the enterprise.

• 7+ years of experience in cybersecurity, with deep focus on Incident Response and threat handling
• 3+ years of experience managing or leading Incident Response or Security Operations teams
• Strong hands-on experience responding to security incidents across endpoints, networks, cloud, and identity
• Proven ability to act as a senior escalation point during high-severity incidents
• Experience defining, tracking, and reporting on KPIs, SLAs, and operational metrics
• Strong understanding of incident lifecycle management, including triage, containment, eradication, and recovery
• Excellent leadership, communication, and decision-making skills in high-pressure situations
• Ability to collaborate effectively within a large, matrixed security organization

• Experience in a Microsoft-centric environment (Azure, Defender, Sentinel, Active Directory)
• Hands-on or leadership experience with Splunk (log analysis, investigations, dashboards)
• Experience with endpoint detection and response tools such as Crowd Strike
• Background in Financial Services or other highly regulated industries
• Experience with incident response playbooks, tabletop exercises, and continuous improvement initiatives
• Strong understanding of threat actor behaviors, attack frameworks (MITRE ATT&CK), and detection strategies

• Manage and mentor a team of 10 mid-to-senior Incident Response Analysts
• Serve as the senior technical escalation point for complex and high-impact security incidents
• Maintain hands-on involvement in investigations as needed, especially during critical events
• Define and manage team KPIs, operational metrics, and performance goals
• Collaborate with seven other security managers across SOC, engineering, GRC, and architecture teams
• Drive consistency and maturity in incident response processes, tooling, and documentation
• Lead post-incident reviews and root cause analyses to improve detection and response capabilities
• Partner with IT, infrastructure, and business stakeholders during incident resolution efforts

• 35% Incident Response & Hands-On Technical Escalations
• 30% Team Leadership, Coaching, & Mentorship
• 20% Metrics, KPIs, & Operational Management
• 15% Cross-Team Collaboration & Process Improvement

• Competitive base salary and bonus structure
• Comprehensive health, dental, and vision insurance
• 401(k) with employer match
• Generous paid time off and company holidays
• Career growth within a large, mature security organization
• Opportunity to lead a highly visible Incident Response function at an enterprise Financial Services firm

Applicants must be currently authorized to work in the U.S. on a full-time basis now and in the future.

Posted By: Nick Direso