Manager, IT Security Incident Response

About the position

The University of Miami Health System (UHealth) is seeking a Manager for IT Security Incident Response to lead the organization's response to IT security incidents. This role is pivotal in ensuring the security and integrity of the IT infrastructure by overseeing incident response operations, monitoring, and incident response activities. The manager will be responsible for reviewing and updating incident response standards, policies, and procedures to align with best practices and regulatory requirements. This includes performing necessary investigations, analyses, and evaluations to determine project feasibility and documenting root cause analyses, security events, and incidents. In addition, the manager will develop and maintain the IT security incident response process, ensuring that all required supporting materials are in place. This involves creating functional requirements for roles involved in the Computer Security Incident Response Team (CSIRT) program and collaborating with business units, IT functions, and external providers to ensure mutual understanding and acceptance of responsibilities. The manager will act as a liaison between the security incident response team, enterprise IT services, and business units, initiating the IT security incident response process and executing decision authority as needed. The role also requires ensuring the execution of the incident response process to the resolution of incidents, maintaining and protecting required incident records, and organizing post-incident reviews for presentation to senior management. The ideal candidate will have extensive experience with Unix/Linux systems, OS internals, or file-level forensics, and will be expected to lead a team in a high-pressure environment while maintaining confidentiality and adhering to business and management principles.