Principal, Cyber Security-Deputy Incident Commander

Description

Ingram Micro is the business behind the world’s brands, providing more ways to realize the promise of technology®. We are an integral part of the technology ecosystem, helping our partners grow and thrive through the creation and delivery of Information Technology, Cloud solutions and Lifecycle services. With more than $54 billion in revenue and the ability to reach 90% of the global population, we are one of the world’s largest technology distributors, serving our partners through operations in 61 countries with 29,000 associates.

Ingram Micro has earned Great Place to Work Certification™ for 2022-2023 in the United States! This prestigious recognition reflects our commitment to our people and our culture.

Come join our team where you’ll make technology happen in surprising ways. Let’s shape tomorrow - it’ll be a fun journey!

Position Summary

We are looking for a highly experienced Deputy Incident Commander and Information Security Principal to assist in the management of information security incidents.  The Deputy will also be responsible to assist in disaster recovery planning, testing, and execution as well as preparing and maintaining incident response documentation.  The Deputy will interface with information security incident responders and other IT organizations to aid in resolving serious incidents by organizing the response.

As a principal, you will not be resolving incidents every day.  You will also need to work with internal teams to plan, test and execute disaster recovery activities. Additionally, you will work with the team to plan and execute training exercises as well as prepare and maintain incident planning documentation.  The principle will need to interface on other information security, IT, and business teams and demonstrate excellent communication and organizational skills.

Key Responsibilities

• Assist in developing an incident response management structure based on the National Incident Management System and the Incident Command System
• Be a resourceful part of the talented team responsible for security incident response, major vulnerability remediation efforts and disaster recovery.
• Building, executing, and practicing a best-in-class security incident response plan.
• Develop comprehensive, accurate reports and presentations for both technical and executive audiences
• Interface with disaster recovery assets
• Own and manage tools for disaster recovery.
• Experienced with cyber investigations and forensic level analytics as well as insider threat programs.
• Experienced in the security aspects of multiple platforms, operating systems, software, communications, and network protocols along with malware analysis in support of incident analysis and response.
• Ability to anticipate and respond to changing priorities and operate effectively in a dynamic, demand-based environment, requiring flexibility and responsiveness to client matters and needs.
• Demonstrated ability to manage projects and tasks within an agile and dynamic operational environment
• Previous experience managing cross functional and interdisciplinary project teams to achieve tactical and strategic objectives.

Skills and Experience

• 5+ years of incident response in fast paced environments
• 5+ years of strong hands-on experience in digital forensics examinations and/or investigations using the EnCase tool or similar tool suites such as Magnet Axiom
• 2 + years leading incident response
• Advanced knowledge and understanding in various disciplines such as security engineering, system and network security, authentication and security protocols, cryptography, and application security.
• Experience with cloud services
• Strong understanding of vulnerabilities, common attack vectors and has attacker mindset: ability to think about creative threats and attack vectors.
• Strong communication (i.e., written and verbal), presentation, teamwork skills and resourcefulness)
• Experience using the National Incident Management System and Incident Command System or similar highly structured, flexible management system
• Required Certifications: EnCE, FEMA IS-100.c, or IS-200.c, or IS-700.b
• Preferred Certifications: CISSP, CISM, GCIH

Job Qualifications and Educational Requirements

Bachelor’s degree from an accredited University

Work Experience: 8+ years; 5+ directly related to role; 5+ years of digital forensics/Incident Response

Provide three current work references & pass a criminal background check

Pass a proficiency exam related to the role

 This is not a complete listing of the job duties.  It’s a representation of the things you will be doing, and you may not perform all these duties.

Please be prepared to pass a drug test and successfully pass a pre-employment (post offer) background check that includes verification of vaccination status.

Ingram Micro requires all new associates to be fully vaccinated against COVID-19. Therefore, this position requires applicants to submit proof, prior to start date, that the successful applicant is fully vaccinated against COVID-19. Ingram Micro will comply with applicable laws regarding the reasonable accommodation of individuals with disabilities and/or sincerely held religious beliefs.  Applicants will be notified of the requirements of Ingram Micro’s COVID-19 policy and process for verification of vaccination status prior to the start of employment.

Ingram Micro believes there is no place in our society for social injustice, discrimination or racism. As a company we do not – and will not – tolerate these actions.

Ingram Micro Inc. is committed to creating a diverse environment and is proud to be an equal opportunity employer.  All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, veteran status, or any other protected category under applicable law. 

 #LI-RT1 #LI-Hybrid