×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity

CSIRT Director

Job in Lansing, Ingham County, Michigan, 48900, USA
Listing for: Ally
Full Time position
Listed on 2026-01-28
Job specializations:
  • IT/Tech
    Cybersecurity
Salary/Wage Range or Industry Benchmark: 100000 - 125000 USD Yearly USD 100000.00 125000.00 YEAR
Job Description & How to Apply Below

Overview

General information

# 21517

Remote? Yes

Ally and Your Career

*

Ally Financial only succeeds when its people do - and that’s more than some cliché people put on job postings. We live this stuff! We see our people as, well, people - with interests, families, friends, dreams, and causes that are all important to them. Our focus is on the health and safety of our teammates as well as work-life balance and diversity and inclusion.

From generous benefits to a variety of employee resource groups, we strive to build paths that encourage employees to stretch themselves professionally. We want to help you grow, develop, and learn new things. You’re constantly evolving, so shouldn’t your opportunities be, too?

The Opportunity

At Ally, you get a startup feel, but experience the benefits of a company that has worked out the kinks and is fulfilling its purpose. We are always evolving and see that as a good thing. From owning our work to seeing its impact in the real world, our team is relentless in finding new ways technology can help make experiences better and help people.

We are problem solvers, we value diverse thinking, we support one another, and we challenge ourselves to think bigger in the journey to deliver customer-obsessed tech solutions. To read more about what our tech team does, be sure to visit our tech blog h

The CSIRT Incident Response position at Ally is a member of the Information Protection and Risk Management team and works closely with other members of the IPRM program to develop and implement a comprehensive approach to the management of security risks  candidate will work with subject matter experts drawn from other teams within IPRM to manage the response to cyber security threats and incidents.

This role is also responsible for working with other team members in responding to security incidents according to established policies and best practices. It will also require strong organizational, workflow / process flow, Use Case development, and documentation capabilities.

At this time, Ally will not sponsor a new applicant for employment authorization for this position.

The Work Itself

  • Manage a team of CSIRT Leads responsible for leading investigations into cyber security Events of Interest / Incidents
  • Maintain and improve Ally’s Cyber Security Incident Response plan.
  • Bring efficiencies and risk reduction through use of automation and incorporation of AI
  • Function as stakeholder to strengthen the overall Response framework inclusive of SOC and CSIRT.
  • Lead audit management responsibilities to ensure identified gaps are addressed in respect to required timing to reduce risk.
  • Contribute to the development of use cases / alert conditions in efforts to reduce gaps in visibility
  • Contribute to process improvement and the development of documentation
  • Assemble and coordinate with technical teams and third-party vendors to resolve incidents as quickly and efficiently as possible.
  • Ensure that all incidents are recorded and tracked to meet audit and legal requirements where necessary.

The Skills You Bring

Required:

  • Minimum of 7 years of information security specific experience.
  • Minimum of 7 years of direct leadership experience.
  • Broad understanding and experience managing security mitigation solutions at all layers and protocols.
  • Bachelor s degree in information systems or equivalent experience
  • Ability to analyze large data sets and unstructured data for the purpose of identifying trends and anomalies indicative of malicious activity, as well as demonstrated capability to learn and develop new techniques.
  • Strong knowledge of current security threats, techniques, and landscape, as well as a dedicated and self-driven desire to research current information security landscape
  • Ability to research, develop, and keep abreast of tools, techniques, and process improvements in support of security detection and analysis in accordance with current and emerging threat and attack vectors
  • Experience with cyber hunting practices/exercises using SIEM, Enterprise search tools, or other solutions.
  • Excellent communications skills (verbal and written) are required
  • Excellent problem-solving skills and troubleshooting skills with a strong…
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)

Job Posting Language
Employment Category
Education (minimum level)
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search