Incident Management Lead
Why AIS?
When you join AIS, you’re joining a mission-driven team that’s passionate about making a difference. You’ll work on projects that matter, alongside industry-leading experts, in an environment that fosters innovation, driving client success, and empowering our team to make a lasting impact. As an employee-owned company, we value collaboration, inclusivity, continuous growth, and shared success.
What are we looking for?
We're looking for driven individuals who are passionate about making a difference, eager to grow, and aligned with our core principles.
What you will be doing?
This position is contingent upon contract award. We are currently pursuing a proposal and are seeking qualified candidates to include in our submission and identify candidates for future hiring needs on the program once awarded.
Core Knowledge & Skills
- Develops enterprise security architectures, frameworks, and standards;
- Utilizes advanced forensics and integrates solutions with IT systems;
- Designs secure architectures;
- Manages integration projects;
- Led strategic initiatives;
- Enforces policies and standards;
- Ensures integrity and scalability;
- Develops comprehensive strategies;
- Optimizes solutions for performance and efficiency;
- Leads architectural teams;
- Buils partnerships;
- Manages knowledge;
- Communicates strategies and executive reports;
- Provides architectural consulting;
- Led innovation initiatives;
- Evaluates enterprise technologies;
- Builds strategic partnerships.
Key Responsibilities
- Incident Response Leadership:
- Lead and manage incident response teams responsible for detecting, analyzing, containing, and eradicating cybersecurity incidents;
- Direct responses to cyber events involving advanced threats, malware, indicators of compromise (IOCs), and complex attack patterns;
- Oversee the development and execution of incident handling procedures, playbooks, and escalation processes;
- Conduct after-action reviews and drive continuous improvement across incident response capabilities.
- Threat Analysis & Cyber Defense Operations:
- Provide expert oversight for investigations involving threat actors, malware analysis, and digital forensics;
- Ensure timely analysis and dissemination of threat intelligence, indicators of compromise, and trends to stakeholders;
- Maintain readiness of incident response tools, technologies, and methodologies.
- Strategic Planning & Security Architecture:
- Formulate both short- and long-term strategies to strengthen cybersecurity controls, monitoring, and detection capabilities;
- Design, architect, and engineer security solutions that enhance threat visibility and reduce risk exposure;
- Collaborate with engineering and operations teams to support deployment strategies and ensure alignment with security requirements.
- Stakeholder Communication & Relationship Management:
- Serve as the primary liaison to senior managers regarding ongoing threats, incident updates, and intelligence sharing;
- Provide executive-level summaries and technical briefings on incidents, risks, and mitigation strategies;
- Build strong relationships across IT, security leadership, and operational teams to support a unified response posture.
- Team Development & Operational Oversight:
- Mentor and guide incident responders, analysts, and penetration testers to develop their technical and analytical skills;
- Establish operational metrics, reporting standards, and performance indicators for incident response activities;
- Ensure team members follow best practices in threat analysis, forensic handling, and incident documentation.
Required For This Opportunity
- Master of Science in Information Technology, Information Security, or related field;
- Minimum of 10 years of experience in incident response, security operations, and penetration testing;
- Minimum of 5 years managing and directing incident response teams;
- Strong, hands-on experience with:
- Threat intelligence and threat sharing;
- Indicators of compromise (IOCs);
- Malware analysis techniques;
- Digital and network forensic analysis;
- Proven ability to design and implement cybersecurity strategies, controls, and solutions;
- Experience developing and executing incident response plans and cyber defense procedures;
- Excellent communication and relationship-building skills with senior leadership;
- Clearance: TS/SCI;
- EC-Council Certified Ethical Hacker (CEH);
- EC-Council Licensed Penetration Tester (LPT);
- EC-Council Certified Security Analyst (ECSA).
Nice To Have Skills
- Experience in highly regulated, federal, or complex enterprise environments;
- Familiarity with SIEM/SOAR platforms, EDR solutions, and threat intelligence platforms;
- PMP certification (preferred).
Pay
The targeted base salary range for this role is $138,000-$209,000 per year. Please note that this range is provided as a guideline and the final offer will be based on several factors, including but not limited to, skillset and competencies, level of experience, education, certifications, and location.