Cyber Incident Response Lead

  • CME Group,
  • Chicago, Il, United States, IL
  • 1 hour ago
Full Time

Job Description


The Cyber Incident Response Lead is responsible for the direct oversight of the Cyber Incident Response Team. In addition to daily managerial responsibilities, this role is hands-on, responsible for performing validation of escalated security events and performing incident response per established processes and procedures. This includes both performing technical analysis of security issues as well as handling documentation and project management aspects of incident response. This position will act as the Lead Incident Handler during Moderate, High, and Critical incidents.

Primary Responsibilities:

  • Primary oversight and management of the Cyber Incident Response Teams
  • Able to exhibit leadership skills and influence beyond their direct reports
  • Assists with training and mentoring of team members in Response and Forensics and ensures essential procedures are followed by the team
  • As needed, perform technical analysis of multiple sources of data, including network flows/packet data, host forensic artifacts, and application/system logs
  • Act as a lead incident handler for cyber incidents
  • Coordinate with security operations and incident response staff to tune and improve detection capabilities or to aid in investigations or respond to incidents
  • Support and drive a cohesive cyber security strategy focused on strong policies, procedures, and capabilities
  • Apply in-depth knowledge, experience, and understanding to assist with maintaining a strong Cyber Security Defense posture
  • Allocate/coordinate work within the team through appropriate guidance and direction based on capabilities and be accountable for the quality and timeliness of the results the team delivers
  • Document incident tasks and updates in the incident management system
  • Provide direct and actionable feedback to team
  • Lead and guide staff to align employee career development goals with department or Division objectives
Personal Attributes:

  • Strong analytical and troubleshooting skills
  • High level critical thinking skills
  • Excellent written and oral communication skills with the ability to communicate ideas in both technical and user-friendly language
  • Excellent listening and interpersonal skills
  • Ability to analyze and solution difficult issues
  • Ability to work in a high-pressure, high-stress dynamic environment with multiple goals
  • Highly self-motivated and directed, with keen attention to detail
  • Able to prioritize and execute tasks in a high-pressure environment
  • Experience leading in a team-oriented, collaborative environment
  • Ability to deal diplomatically and effectively at all levels of the organization including both technical and non-technical, management and senior leadership

Professional Experience:

  • Extensive experience working as a cyber security response or forensic Analyst
  • Substantial experience leading high-functioning cyber security teams driving a strong cyber defense strategy
  • Experience with collecting, analyzing, and interpreting qualitative and quantitative data from multiple sources
  • Comfortable with acting as a subject matter expect and mentoring team members
Formal Education & Certifications

  • BA/BS in Engineering, Computer Science, Information Security, or Information Systems or related work experience
  • Certifications such as GCIH, GCFE, GCFA, GNFA, GREM (or related knowledge/experience) are desired
  • Detection, Incident Response, or forensic experience in Google Cloud Platform is a plus

#LI-JW1 #LI-Hybrid

CME Group: Where Futures Are Made

CME Group ( is the world's leading derivatives marketplace. But who we are goes deeper than that. Here, you can impact markets worldwide. Transform industries. And build a career shaping tomorrow. We invest in your success and you own it, all while working alongside a team of leading experts who inspire you in ways big and small. Joining our company gives you the opportunity to make a difference in global financial markets every day, whether you work on our industry-leading technology and risk management services, our benchmark products or in a corporate services area that helps us serve our customers better. With 3,500 employees located around the world, we're small enough for you and your contributions to be known. But big enough for your ideas to make an impact. The pace is dynamic, the work is unlike any other firm in the business, and the possibilities are endless. Problem solvers, difference makers, trailblazers. Those are our people. And we're looking for more.

The Candidate Privacy Policy can be found here.
Position Id : 9631541
Originally Posted : 1 month ago
Have a Job? Post it