Job Description

The Cyber Crisis Manager is responsible for handling cybersecurity crisis operations, developing strategies to improve resilience and directing responses during cyber crises. This role includes designing defences, leading response efforts, and ensuring alignment with business goals.

͏

Key Responsibilities

• Crisis Operation: Lead and coordinate the response to cyber crisis situations, including data breaches, malware attacks, and other major security incidents.
• Serve as a strategic advisor and operational leader during live cyber crises, directing decisions on resource allocation, internal and external communications, and multi-stakeholder engagement to mitigate impact and safeguard reputation.
• Actively track and interpret attacker behaviours, and emerging cyber risks, embedding these insights into proactive strategies, response playbooks, and operational plans.
•  
• Develop, maintain, and regularly update detailed cyber crisis management plans and protocols.
•  
• Lead and organize simulations, live-fire exercises, and drills to improve cyber defence teams' skills in handling cyber crises.

͏

• Evaluate the scale, impact, and severity of cyber incidents promptly, offering real-time operational guidance on containment, mitigation, recovery actions, and business continuity.
• Facilitate post-crisis reviews, lessons-learned sessions, and after-action analyses with senior stakeholders, providing actionable insights to enhance future resilience and operational preparedness.
• Regulatory Compliance: .Perform in-depth research into regulatory mandates, risk frameworks, industry standards and security policies. Translate these complex requirements into clear operational strategies to advance organization’s resilience and crisis-readiness goals.
• Familiarity with industry leading SIEM/SOC platforms (e.g. Palo Alto XSIAM, Splunk, QRadar) and service management tools (e.g. ServiceNow) is required.

͏

Qualifications

• Education: Bachelor's degree in Engineering in Cybersecurity, Information Technology, or a related field. Advanced degrees or certifications (e.g., CISSP, CISM) are preferred.
• Experience: 12+ years of experience in information security, incident response, or a related field.
• Skills: Strong leadership, communication, and problem-solving skills.
• Ability to work under pressure and handle multiple tasks simultaneously.
• Knowledge: In-depth understanding of cyber threats, vulnerabilities, and mitigation techniques,

• Familiarity with regulatory requirements (GDPR, HIPAA, and PCI-DSS) and industry best practices, MITRE, NIST framework.

• Technical Proficiency: Proficient in using cybersecurity tools and technologies for monitoring, detecting, and responding to incidents.
• Willingness to manage incident response actions 24x7 as needed.

͏