Senior Incident Response Lead, Cybersecurity Infosec

IDEXX Laboratories

posted 17 days ago

Full-time - Senior
5,001-10,000 employees
Professional, Scientific, and Technical Services

About the position

The Senior Incident Response Lead at IDEXX is a pivotal role within the Cybersecurity team, responsible for leading the enterprise-wide incident response strategy. This position combines advanced incident response capabilities with threat detection expertise and team leadership to protect organizational assets and maintain security resilience. The role requires effective communication and collaboration across various teams to ensure comprehensive security measures are in place.

Responsibilities

  • Serve as top-tier technical escalation resource for Security Operations during incident investigation and response.
  • Direct complex forensic investigations and evidence collection according to forensically sound procedures.
  • Coordinate with Legal and Privacy teams on regulatory compliance reporting requirements.
  • Perform damage assessments and guide mitigation strategies.
  • Manage relationships with the Security Operations Center (SOC) provider, ensuring comprehensive logging and alerting coverage across the IDEXX environment.
  • Lead proactive threat hunting program development and execution with quarterly reporting to the CISO on emerging threats, identified detection and response gaps, and proposed remediation options.
  • Monitor external threat intelligence sources to maintain current threat landscape awareness.
  • Coordinate purple team exercises to evaluate threat vectors and response capabilities.
  • Analyze network alerts and security events to determine root causes and attack patterns.
  • Develop and maintain IR playbooks and standard operating procedures.
  • Create and lead IR tabletop exercises based on NIST SP 800-61 guidelines.
  • Define incident categories, response procedures, and timeline requirements.
  • Support business continuity and disaster recovery planning.
  • Write and publish after-action reviews and incident reports.
  • Present IR metrics and KPIs to executive leadership.
  • Maintain current documentation of IR procedures and playbooks.
  • Mentor and guide security team members.
  • Coordinate with enterprise-wide cyber defense technicians.
  • Drive risk mitigation strategies across business units.
  • Build and maintain relationships with key security partners.

Requirements

  • 7+ years of hands-on incident response experience
  • 3+ years leading IR teams and/or programs
  • Demonstrated expertise with IR tools and frameworks
  • Strong forensics and malware analysis capabilities
  • Experience with enterprise security technologies
  • Relevant security certifications (e.g., GCIH, GCFA, CISSP)
  • Deep understanding of network security architecture and protocols (TCP/IP, DNS, etc.)
  • Communicate effectively with technical and non-technical stakeholders
  • Expertise in intrusion detection methodologies and techniques
  • Knowledge of system administration and hardening techniques
  • Strong background in malware analysis and containment
  • Understanding of cloud service models and their IR implications
  • Proficiency with security event correlation tools
  • Expertise in various attack classes, stages, and methodologies
  • Knowledge of vulnerability types and associated attacks.

Benefits

  • Competitive compensation
  • Incentives
  • Benefits package
  • Positive and respectful work culture
  • Opportunities for learning and discovery

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service