Incident Response Lead

Piper Companies is looking for an Incident Response Lead for a major hospital system. This individual would lead key cybersecurity operations response activities while providing technical direction and mentoring to one or more analysts. Additional responsibilities include coordinating 24x7 cybersecurity incident follow-up activities, technical research and analysis of threat and vulnerabilities affecting information systems, and participating in other cybersecurity program activities, including risk assessment, risk management, risk remediation, and others. The role will liaise with other members of the Information Services team, coordinate the response to cybersecurity incidents, and maintain written documentation as needed. Current experience as a Lead, Consultant, or Tier III analyst is required.

This is a 100% remote and full-time position. Required for this person to live in PA, NJ, MD, or DE.

• Provide technical leadership and coaching to multiple junior and senior SOC analysts, ensuring the highest quality in the delivery of response services.
• Assist management in process, service and SLA development, metrics creation, and management and maturity enhancements.
• Receiving escalations from the SOC team and conducting investigations as requested.
• Investigation of suspicious network and endpoint activity.
• Provide feedback on IR playbooks, runbooks, and plans as needed.
• Collaborates with information assurance advisors to address network and endpoint security risks.
• Participates in vulnerability management, including scanning and remediation.

• 7+ years in information technologies, especially information security, such as security operations and incident response. Triage active high-stakes security events, including reviewing and applying security controls to detect, respond, prevent and remediate threats.
• Demonstrated leadership experience and excellent interpersonal skills.
• Ability to evaluate cybersecurity tools, systems, processes and make effective recommendations and changes.
• Experience with Incident Response lifecycle and supporting technologies.
• Hands-on experience with modern SIEM/SOAR platforms, EDR tools, NDR and/or NBAD tools, or the like.

• $140,000 - $160,000 (based on experience)
• 100% Remote
• Comprehensive benefit package; Cigna Medical, Cigna Dental, Vision, 401k w/ ADP, PTO, paid holidays, Sick Leave as required by law.

This job opens for applications on 1/31/2025. Applications for this job will be accepted for at least 30 days from the posting date.