Sr Mgr CyberSecurity Incident Response
Manager
Senior
Cyber Forensics
Cyber Investigation
Cybersecurity
Cybersecurity Tools
Data Security
Enterprise Risk
Enterprise Risk Management
Incident Management
Incident Reporting
Incident Response
Information Security
Information Technology (IT)
Infosec
Investigative Skills
Management
Project Management
Risk Governance
Risk Management
Security
Security Compliance
Security Operations
Strategic Advisory
Strategic Planning
Job Description
Mountain America Credit Union is seeking a seasoned security leader to helm its enterprise incident response, digital forensics, and insider threat programs from its Sandy, Utah campus on a hybrid schedule. In this senior role, you will coordinate with Cybersecurity, IT, Legal, HR, Governance, Risk Management, and executive leadership to detect, respond to, and recover from cybersecurity incidents while safeguarding member data and critical systems.
Responsibilities
- Lead the enterprise cybersecurity incident response program across preparation, detection, containment, eradication, and recovery activities.
- Act as the executive incident commander for high severity events, coordinating technical teams, business stakeholders, and leadership.
- Define and maintain incident response plans, playbooks, escalation models, and crisis communication procedures.
- Provide executive briefings during and after incidents, including post-incident reports, root cause analysis, and lessons learned.
- Oversee breach investigations, digital forensics, and evidence preservation in collaboration with Legal and Compliance.
- Lead tabletop exercises, red/blue team simulations, and ransomware readiness scenarios.
- Direct brand protection efforts to safeguard reputation and identity.
- Drive proactive threat hunting to identify advanced threats, vulnerabilities, and anomalous activity across the enterprise.
- Own and operate the enterprise Insider Threat Program, addressing malicious, negligent, and compromised insider risks.
- Define insider threat detection, triage, investigation, and response processes spanning people, process, and technology.
- Collaborate with HR, Legal, Privacy, and Risk Management to ensure investigations are lawful and appropriate.
- Implement behavioral, technical, and contextual monitoring capabilities.
- Establish governance, oversight, and separation of duties for insider investigations.
- Work with SOC leadership to enhance monitoring, alerting, and response automation.
- Foster continuous improvement through metrics and maturity models.
- Translate threat intelligence into actionable detection and response strategies.
- Ensure alignment with regulatory frameworks including NCUA, FFIEC, and NIST.
- Support audits, regulatory exams, and breach notification requirements.
- Partner with Risk Management and Internal Audit to remediate gaps.
- Lead and mentor incident response and insider threat professionals.
- Collaborate across IT, Digital Solutions, Legal, HR, Communications, and executive groups as a trusted advisor during high impact situations.
Requirements
- 6+ years of experience in cybersecurity operations or incident response with progressive responsibility.
- 5+ years in a leadership role responsible for cybersecurity operations or incident response.
- Experience leading enterprise-scale incident response programs.
- Financial services or regulated industry experience preferred.
- Bachelor’s degree in a related discipline or equivalent experience.
- CISSP strongly preferred; certifications such as GCIH, GCFA, CISM, CISA, or GIAC are highly desirable.
- Expertise in incident response and digital forensics.
- Strong understanding of insider threat risk and investigations.
- Executive-level communication and leadership under pressure.
- Proven ability to balance security, privacy, and business needs.
- Strategic thinking and problem-solving capabilities.
- Effective verbal and written communication skills.
- Leadership and talent management experience, with public speaking proficiency.
Physical Abilities / Working Conditions
- Physical Demands: ability to sit, talk, and hear consistently.
- Vision Requirements: close vision, distance vision, and color vision capabilities.
- Weight Lifted or Force Exerted: ability to lift up to 10 pounds frequently and up to 25 pounds occasionally.
- Environmental: typical office setting with no unusual environmental factors.
- Noise Environment: moderate office noise from computers and printers.
This job is not eligible to be performed in Colorado or Connecticut, either remotely or in-person.