Incident Response Planning and Operations, Assistant Vice President

The AVP for Incident Response Planning and Operations is responsible for cyber security wargaming and incident readiness program. While the focus is the Americas, this role has strong engagement and collaboration with other regions and our Home Office in Japan. The main goals are to prepare our Global Incident Response team, as well as relevant stakeholders on cyber readiness.

• Develop and manage a comprehensive cyber wargaming and incident readiness program.
• Align tabletop exercises with enterprise risk management and incident response strategies.
• Coordinate with internal and external stakeholders to ensure exercises reflect realistic threat scenarios.
• Design and facilitate cyber incident tabletop exercises, red/blue team simulations, and strategic wargames.
• Develop injects, scripts, and after-action review processes.
• Incorporate threat intelligence and emerging risks into exercise scenarios.

Readiness Assessment:

• Evaluate organizational response capabilities and identify gaps in incident response plans.
• Produce detailed reports and recommendations for improvement.
• Track remediation efforts and maturity over time.

Stakeholder Engagement:

• Work closely within Enterprise Information Security teams to identify areas of improvement.
• Collaborate with IT, security operations, legal, communications, and executive leadership.
• Present findings and strategic recommendations to senior leadership.
• Monitor trends in cyber threats and incident response best practices.
• Integrate lessons learned from real incidents and exercises into future planning.

• Bachelor's degree in Cybersecurity, Information Technology, or related field.
• 5+ years or more in cybersecurity, with experience in incident response or threat management.
• Excellent communication, facilitation, writing and analytical skills.
• Experience designing and facilitating tabletop exercises or cyber simulations.
• Ability to document and explain technical details in a concise, understandable manner.
• Relevant technical and industry certifications in cybersecurity.
• Experience with information security risk management, including information security audits, reviews, and risk assessments.
• Strong understanding of NIST, MITRE ATT&CK, and other cybersecurity frameworks.
• Ability to work cross-functionally and influence without direct authority.
• Prior work experience in a global company preferred.

• Knowledge in one or more security domains including Incident Response and Forensics, Security Governance and Oversight, Security Risk Management, Network Security, or Threat and Vulnerability Management.
• Knowledge of cloud security, AI security, networks, databases, and applications.
• Knowledge of the various types of cyber-attacks and their implementations.
• Experience in operational processes such as security monitoring, data correlation, troubleshooting, security operations, etc.

The typical base pay range for this role is between $104K - $131K depending on job-related knowledge, skills, experience and location. This role may also be eligible for certain discretionary performance-based bonus and/or incentive compensation. Additionally, our Total Rewards program provides colleagues with a competitive benefits package that includes comprehensive health and wellness benefits, retirement plans, educational assistance and training programs, income replacement for qualified employees with disabilities, paid maternity and parental bonding leave, and paid vacation, sick days, and holidays.

For more information on our Total Rewards package, please click the link below.

We will consider for employment all qualified applicants, including those with criminal histories, in a manner consistent with the requirements of applicable state and local laws. We are proud to be an Equal Opportunity Employer and committed to leveraging the diverse backgrounds, perspectives and experience of our workforce to create opportunities for our colleagues and our business. We do not discriminate on the basis of race, color, national origin, religion, gender expression, gender identity, sex, age, ancestry, marital status, protected veteran and military status, disability, medical condition, sexual orientation, genetic information, or any other status of an individual or that individual's associates or relatives that is protected under applicable federal, state, or local law.