Incident Response Manager

We are Relativity. A market-leading, global tech company that equips legal and compliance professionals with a powerful platform to organize data, discover the truth, and act on it.  The US Department of Justice, 199 of the Am Law 200, and more than 329,000 enabled users trust Relativity during litigation, internal investigations, and compliance projects. Our SaaS product, RelativityOne, has become the fastest-growing product in the company's history and we have consistently been named a great workplace. As we grow, we continue to seek individuals that will bring their whole, authentic self to our team.  We believe that great talent is not bound by geography and that what you do matters more than where you do it. Relativity has assumed a hybrid work strategy, allowing choice and flexibility for employees to work either from home, a physical Relativity office location (once safe to do so), or a combination of the two, within certain logistical boundaries. Submit your application to learn more from our recruiters or contact us for more details.  
As the Incident Response Manager, you will ensure the security of Relativity’s Corporate IT, Azure, and Relativity One network / Infrastructure.  In this role, the main responsibilities will be lead and coordinate response to security incidents (attacks, vulnerability investigations, etc.), as well as provide subject matter expertise on emerging threats against our assets, identities, and clients.  You will also provide actionable remediation guidance to end users and collaborate with highly skilled cyber experts to anticipate and mitigate evolving threats using world-class toolsets and next generation capabilities.  

Responsibilities

• Provide escalations, status, and metric reports to upper management (SLAs, TTD, TTR) 
• Guide and advise stake holders (internal and external) 
• Assess the impact of security events by leveraging host and network-based indicators and evidence (logs, alerts, etc.) 
• Ability to quickly classify an incident and guide the team towards the necessary course of action. 
• Escalation point for all security events, including serving as Crisis Management point person. 
• Clearly document and communicate investigation findings to both technical and executive audiences 
• Manage Incident Response Service Level Agreements (SLAs) 
• Create and maintain strategic roadmap for the Incident Response team 
• Manage the execution of tabletops, vendor deliverables, and process improvements 
• Plan and validate organization’s Incident Response plan (IR).  
• Research the latest Cyber Security trends. 
• Drive lessons learned and remediation activities throughout the organization 
• Recommend security enhancements to management or senior staff. 

Preferred Qualifications

• Effective communication and people management skills 
• Bachelor’s Degree (or equivalent professional/military experience) 
• 3-5 years of experience in Incident Response 
• Strong scripting abilities (PowerShell, python, etc.) 
• Experience leading aspects of a Threat Detection team 
• Project ownership  
• Ability to delegate and assign investigation actions items 
• Outstanding work ethic with a passion for Cyber Security 
• Ability to mentor and develop Cyber Security Analysts 
• Certifications: One of more of the following certifications are preferred (GCFA, GCIA, GCIA, GCIH, GCFA, GNFA, GREM, OSCP, or CEH) 

Minimum Qualifications

• Strong cyber incident response skills 
• Understanding of infection mechanisms, malicious behavior, exploitation techniques, and mitigating controls.  
• Bachelor’s Degree in Cyber Security or related professional experience 

At Relativity, we live our core values and we thrive on solving complex problems. We’re dedicated to continually improving our product and providing relentless customer service, and we’re always looking for people to join us on the journey.   Relativity is a team of smart, passionate people always looking to grow, contribute, and make our product and customer service the best it can be. Our team members come from diverse backgrounds with different skills and life experiences—and we love and celebrate those differences. We believe that employees are happiest when they’re empowered to be their full, authentic selves, regardless how you identify.  So, please come as you are. We can’t wait to meet you. 

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, or national origin, disability or protected veteran status, or any other legally protected basis, in accordance with applicable law.