Key skills
LeadershipRisk ManagementCommunicationDecision MakingCritical ThinkingCollaboration
About this role
Cisco is a leading technology company that focuses on revolutionizing how data and infrastructure connect and protect organizations. They are seeking a seasoned Engineering Program Manager to lead incident response efforts, ensuring effective communication and collaboration among various teams during security incidents.
Responsibilities:
- Lead and ensure alignment across the working teams responsible for all phases of incident response, including detection, containment, analysis, mitigation, recovery and communication
- Drive decision making and implementation of action plans to manage incidents, coordinating efforts across technical and business teams, as well as leaders and trusted subject matter experts
- Identify gaps that are delaying decision-making and assign owners or call out to leadership to close such gaps
- Ensure alignment to the organization's incident response frameworks, playbooks, and regulatory requirements
- Capture/document all facts, decisions, action items, partner team involvement, investigation progress, and core communication in the case management system, and ensure evidence materials are archived
- Provide detailed, actionable reports during and after incidents, including root cause analysis and mitigation strategies
- Serve as the main point of contact for incident updates to executive leadership and internal team members. And partner with external-facing stakeholders to ensure messaging is clear and consistent
- Collaborate with S&TO incident teams (such as CSIRT, PSIRT, DCI), as well as Legal, IT, Engineering, Risk Management, Privacy and other organizations to ensure a unified response
- Engage with customer-facing teams, third-party vendors, and customers when necessary
- Update and refine UIC documentation and processes to further define, streamline, and improve security incident response efforts, and ensure thoroughness/clarity of case documentation
- Develop, maintain, and test incident response plans, playbooks, and escalation procedures
- Conduct and support tabletop exercises and simulations to train and prepare teams
- Drive post-mortem sessions, capture and share key findings, and clearly assign ownership for long-term fixes / preventative measures identified during the sessions
- Support Cisco's effort to ensure compliance with regulations, certification obligations, and organizational policies during incident response
- Stay informed about emerging threats and trends in cybersecurity to improve response capabilities
Requirements:
- Bachelor's degree
- 3+ years of experience of security-related work in the Technology/IT Industry
- Demonstrated experience managing incidents or crisis response, or leading multi-functional teams to deliver large-scale projects
- Excellent written and verbal communication abilities in English
- Experience engaging with senior-level security executives
- Exceptional leadership skills, and the ability to make decisions under pressure
- An ability to learn and apply new information quickly
- Strong critical thinking, analytical, and problem-solving skills
- A team-oriented, collaborative mentality, with the ability to coordinate/delegate an occasional 24 x 7 workload across geographic participants
- Strong understanding of regulatory requirements and industry certifications and standards (e.g., CSL, DSL, PIPL, GDPR, HIPAA, FedRAMP, ISO, PCI-DSS)
- Certifications such as GIAC Certified Incident Handler (GCIH), CISSP, CISM, Security+, or Certified Information Systems Auditor (CISA)