Incident Response Lead - Cybersecurity (HYBRID)

Incident Response Lead - Cybersecurity (HYBRID)

McCormick & Company is seeking a Cyber Incident Response Lead to join the Cybersecurity Threat Management team. The Cyber Incident Response Lead, reporting to the Director of Cybersecurity Threat Management, will be responsible for incident response processes and coordination during incidents. Additionally, this person will assist with planning and execution of strategic security projects.

We are looking to hire a Cyber Incident Response Lead to join our Cybersecurity Threat Management team. The Cyber Incident Response Lead will be responsible for Incident Response processes and coordination during incidents and will assist the Director with planning and execution of strategic security projects.

• Lead Incident Response activities including coordination and management of end-to-end process
• Develop and maintain Incident Response Plans including creation, review, and updates to ensure effective response to enterprise security incidents
• Coordinate with internal and external teams including IT, Legal, HR, Privacy, MSPs, and Vendors to ensure coordinated response to enterprise security incidents
• Prepare detailed reports on incidents, including timelines, impact assessments, and mitigation actions taken
• Develop and conduct incident response training sessions and tabletop exercises for the threat detection and response team and other stakeholders
• Develop and track key performance indicators and metrics to measure the effectiveness of the incident response program
• Assist in the planning, execution, and management of strategic cybersecurity projects, ensuring alignment with McCormick business objectives
• Develop and maintain project schedules, track milestones, and ensure projects stay on track and within scope

• Bachelor's degree in computer science, information security, related degree, or measurable knowledge from serving in industry / military / government unit.
• GCIA, GCIH, CREM, GIAC, CISSP or other relevant security professional certifications
• Minimum 8 years’ professional experience working in cybersecurity or information technology
• Minimum 3 years' experience in an incident response or security operations center role
• Familiarity with incident response frameworks and methodologies, including frameworks like NIST 800-61 and MITRE ATT&CK.
• Proven experience working with cross-functional teams within a large organization
• Proven ability to successfully collaborate with business and technology leaders and teams
• Experience with developing and implementing incident response plans
• Experience with reporting and communicating incident details, improving incident response processes and recovering from security incidents

Accommodations for applicants with disabilities are available upon request. Please notify H.R. if required.

Seniority level Mid-Senior level

Employment type Full-time

Job function Project Management and Information Technology

Industries Food and Beverage Services, Food and Beverage Manufacturing, and Manufacturing