Incident Response Manager

Overview:
Interested in defending a global tech company from the latest cyber threats? Arm is seeking a passionate, experienced Cyber Incident Response Manager to join our growing Cyber Defence Operations (CDO) team, protecting Arm against current and future cyber-attacks! Situated within Arm's Enterprise Security function in the CDO team, this role will manage security incident & vulnerability response, including acting as a technical SME. CDO enables Arm to be successful, delivering scalable and defendable security services that not only provide for the protection of Arm, customer & partner data, but that enables advantage in a competitive industry.
Responsibilities:

• You will lead the response to high priority security incidents in conjunction with security stakeholders across the business.
• Facilitate major incident briefing calls, direction of required response tasks and documentation & distribution of incident communications.
• Coordination and engagement with internal partners, contracted security providers and/or law enforcement on larger investigations.
• Update and improve operational response and forensics capability (including process and technology) in line with Security IR requirements, covering Windows, Linux & Mac hosts, networks and cloud environments, while providing recommendations to optimise and evolve the security technology stack.
• Support Arm leaders in planning for security incidents, ensuring that capabilities and procedures are regularly tested to ensure they meet requirements.
• Maintain and improve the post incident review process, including root cause analysis process and control improvements.
• Contribute to the development of policies, standards and guidelines for incident response.
• Maintain knowledge of current threats, possessing the capability to replicate and protect against the techniques used.
• Provide relevant input from Incident Response work to Detection Engineering, Threat Hunting, Exposure Management and other Cyber Defence Operations capabilities.

Required Skills and Experience:

• Demonstrable experience of leading teams of investigators on diverse and complex investigations
• Proven track record in Information Security with a focus on Incident Response.
• In-depth knowledge of the cyber security threat landscape and experience in bring it to bear in a tailored response to a major incident.
• You should have an extensive, up to date understanding of the tools techniques and tactics of Targeted Threat Actors and insight into present and future trends.
• Solid grasp of CDO and Incident Response (IR) processes and experience with relevant tools (EDR, SIEM, IR management).

"Nice To Have" Skills and Experience:

• BSc or higher in relevant subject (e.g Computer Forensics, digital investigation, computer science), applicable Professional qualification e.g SANS, CISSP, GCIH, GIAC, GCFE, GREM SANS Certifications, EnCE, Incident Response (CSIRT/CERT) (Desirable)!

Accommodations at Arm:
At Arm, we want our people to Do Great Things. If you need support or an accommodation to Be Your Brilliant Self during the recruitment process, please email [email protected]. To note, by sending us the requested information, you consent to its use by Arm to arrange for appropriate accommodations. All accommodation requests will be treated with confidentiality, and information concerning these requests will only be disclosed as necessary to provide the accommodation. Although this is not an exhaustive list, examples of support include breaks between interviews, having documents read aloud or office accessibility. Please email us about anything we can do to accommodate you during the recruitment process.
Equal Opportunities at Arm:
Arm is an equal opportunity employer, committed to providing an environment of mutual respect where equal opportunities are available to all applicants and colleagues. We are a diverse organization of dedicated and innovative individuals, and don't discriminate on the basis of race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.
Hybrid Working at Arm:
Arm's hybrid approach to working is centered around flexibility, where we split our time between the office and other locations to get our work done. Within that framework, we empower groups and teams to determine their own particular hybrid working pattern, depending on the work and the team's needs. Details of what this means for each role will be shared upon application. In some cases, the flexibility we can offer is limited by local legal, regulatory, tax, or other considerations, and where this is the case, we will collaborate with you to find the best solution. Please talk to us to find out more about what this could look like for you.
Salary Range:
$128,400-$173,700 per year
We value people as individuals and our dedication is to reward people competitively and equitably for the work they do and the skills and experience they bring to Arm. Salary is only one component of Arm's offering. The total reward package will be shared with candidates during the recruitment and selection process.
Accommodations at Arm
At Arm, we want to build extraordinary teams. If you need an adjustment or an accommodation during the recruitment process, please email [email protected] . To note, by sending us the requested information, you consent to its use by Arm to arrange for appropriate accommodations. All accommodation or adjustment requests will be treated with confidentiality, and information concerning these requests will only be disclosed as necessary to provide the accommodation. Although this is not an exhaustive list, examples of support include breaks between interviews, having documents read aloud, or office accessibility. Please email us about anything we can do to accommodate you during the recruitment process.
Hybrid Working at Arm
Arm's approach to hybrid working is designed to create a working environment that supports both high performance and personal wellbeing. We believe in bringing people together face to face to enable us to work at pace, whilst recognizing the value of flexibility. Within that framework, we empower groups/teams to determine their own hybrid working patterns, depending on the work and the team's needs. Details of what this means for each role will be shared upon application. In some cases, the flexibility we can offer is limited by local legal, regulatory, tax, or other considerations, and where this is the case, we will collaborate with you to find the best solution. Please talk to us to find out more about what this could look like for you.
Equal Opportunities at Arm
Arm is an equal opportunity employer, committed to providing an environment of mutual respect where equal opportunities are available to all applicants and colleagues. We are a diverse organization of dedicated and innovative individuals, and don't discriminate on the basis of race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.