Director, Cybersecurity - Incident Response

Cox Communication's is seeking a Director of Cybersecurity Incident Response , who will be responsible for leading and managing the company's incident response strategy and operations. You will oversee the response, management, and resolution of cyber security incidents within the organization, ensuring that all incidents are handled effectively and efficiently to mitigate potential impact. This role requires a deep understanding of telecommunications infrastructure, cyber threats, and security operations, combined with strong leadership capabilities to guide a team of security, Legal, and Public Affairs experts.
Key Responsibilities:

• Incident Response Leadership:
  • Lead the incident response team to respond to, contain, and remediate cyber security incidents (e.g., data breaches, ransomware).
  • Develop and implement incident response plans, playbooks, and procedures specific to telecommunications environments.
  • Ensure incidents are prioritized based on severity, and effective triage is conducted.
  • Oversee real-time investigations, managing the collection and analysis of evidence, as well as coordinating recovery efforts.

• Cyber Security Threat Intelligence:
  • Continuously monitor and assess emerging threats and vulnerabilities specific to telecommunications systems and networks.
  • Maintain strong relationships with external threat intelligence providers, industry peers, and government agencies to stay informed about evolving cyber threats.

• Collaboration and Communication:
  • Serve as the primary point of contact during major security incidents, working with the AVP of Cyber Defense and executive leadership to provide updates and guidance on incident response.
  • Coordinate cross-functional efforts during major incidents, including IT, legal, public affairs, and compliance teams.
  • Provide recommendations on improvements to security policies, processes, and tools.

• Post-Incident Reporting & Analysis:
  • Conduct thorough post-incident reviews, ensuring root causes are identified and remediated to prevent recurrence.
  • Prepare and deliver comprehensive incident reports to leadership, and regulatory bodies as needed.
  • Use lessons learned from incidents to improve the company's incident response procedures and security defenses.

• Team Management and Development:
  • Lead and mentor a high-performing team of incident responders, ensuring that they are equipped with the necessary skills and tools.
  • Manage hiring, training, and performance reviews for the incident response team.
  • Promote a culture of continuous improvement and professional development within the team.

• Regulatory Compliance and Documentation:
  • Ensure incident response activities comply with applicable legal, regulatory, and industry standards.
  • Maintain detailed records of all incident responses and provide documentation for audit and compliance purposes.

QUALIFICATIONS AND EXPERIENCE:
Minimum Education and Experience:

• BS/BA degree in a related discipline with 10+ years of experience in a related field, OR a MS/MA degree in a related discipline with 8+ years of experience in a related field, OR a Ph.D. in a related discipline with 5+ years of experience in a related field OR 22 years experience in related field.
• 5+ years in a management of leadership role.

Technical Skills:

• Extensive experience with incident response frameworks (e.g., NIST, SANS, ISO/IEC 27001).
• Proficiency with SIEM tools (e.g., Splunk, ArcSight, or similar) and forensic investigation tools (e.g., EnCase, FTK).
• Expertise in network security, endpoint security, and threat detection technologies.
• Familiarity with cloud security and advanced persistent threat (APT) mitigation.

Leadership and Soft Skills:

• Experience managing cross-functional teams during high-pressure incidents.
• Ability to explain deeply complex technical issues to non-technical stakeholders.
• Strategic thinker with a hands-on approach to managing and mitigating cyber security incidents.

Preferred Qualifications:

• Experience in the telecommunications industry or managing incidents within critical infrastructure environments.
• At least one relevant industry certification - CISSP, SANS GIAC, C|EH, CISM, CRISC, CISA, CPA.
• Expertise in the application of cybersecurity risk management frameworks.
• Strong background in telecommunications security infrastructure and understanding of common cyber threats facing the telecom industry.
• Incident response-specific certifications such as Certified Incident Handler (GCIH) or Certified Computer Forensics Examiner (CCFE) are a plus.

USD 159,400.00 - 265,600.00
Compensation:
Compensation includes a base salary of $159,400.00 - $265,600.00. The base salary may vary within the anticipated base pay range based on factors such as the ultimate location of the position and the selected candidate's knowledge, skills, and abilities. Position may be eligible for additional compensation that may include an incentive program.
Benefits:
The Company offers eligible employees the flexibility to take as much vacation with pay as they deem consistent with their duties, the company's needs, and its obligations; seven paid holidays throughout the calendar year; and up to 160 hours of paid wellness annually for their own wellness or that of family members. Employees are also eligible for additional paid time off in the form of bereavement leave, time off to vote, jury duty leave, volunteer time off, military leave, and parental leave.
Applicants must currently be authorized to work in the United States for any employer without current or future sponsorship.
About Cox Communications
Cox Communications is the largest private telecom company in America, serving six million homes and businesses. That's a lot, but we also proudly serve our employees. Our benefits and our award-winning culture are just two of the things that make Cox a coveted place to work. If you're interested in bringing people closer through broadband, smart home tech and more, join Cox Communications today!
About Cox
Cox empowers employees to build a better future and has been doing so for over 120 years. With exciting investments and innovations across transportation, communications, cleantech and healthcare, our family of businesses - which includes Cox Automotive and Cox Communications - is forging a better future for us all. Ready to make your mark? Join us today!
Benefits of working at Cox may include health care insurance (medical, dental, vision), retirement planning (401(k)), and paid days off (sick leave, parental leave, flexible vacation/wellness days, and/or PTO). For more details on what benefits you may be offered, visit our benefits page .
Cox is an Equal Employment Opportunity employer - All qualified applicants/employees will receive consideration for employment without regard to that individual's age, race, color, religion or creed, national origin or ancestry, sex (including pregnancy), sexual orientation, gender, gender identity, physical or mental disability, veteran status, genetic information, ethnicity, citizenship, or any other characteristic protected by law.
Statement to ALL Third-Party Agencies and Similar Organizations: Cox accepts resumes only from agencies with which we formally engage their services. Please do not forward resumes to our applicant tracking system, Cox employees, Cox hiring manager, or send to any Cox facility. Cox is not responsible for any fees or charges associated with unsolicited resumes.