Incident Response Planning and Operations, Vice President
MUFG · Jersey City, NJ · 3 wk ago
On-siteManagement$123k–$194k/yrFull-time
Key Responsibilities
- Develop and manage a comprehensive cyber wargaming and incident readiness program.
- Align tabletop exercises with enterprise risk management and incident response strategies.
- Cook up and coordinate with internal and external stakeholders to ensure exercises reflect realistic threat scenarios.
- Provide strategic leadership for incident response planning and operational readiness, setting priorities, governance, and success metrics.
- Drive continuous improvement by evolving the program to match rapidly changing incident response requirements, threats, and business objectives.
- Design and facilitate cyber incident tabletop exercises, red/blue team simulations, and strategic wargames.
- Develop injects, scripts, and after-action review processes.
- Incorporate threat intelligence and emerging risks into exercise scenarios.
- Lead and run exercises up to the Executive (CXO) level, tailoring scenarios and decision points to executive risk and business impact.
- Operate as a self-starter and team lead, coordinating multi-disciplinary planning teams and ensuring high-quality execution end-to-end.
- Evaluate organizational response capabilities and identify gaps in incident response plans.
- Produce detailed reports and recommendations for improvement.
- Track remediation efforts and maturity over time.
- Own readiness outcomes by proactively driving remediation plans, timelines, and accountability across stakeholders without direct authority.
- Provide leadership oversight of readiness metrics and maturity roadmaps across the Americas while aligning with global and regional expectations.
- Work closely within Enterprise Information Security teams to identify areas of improvement.
- Collaborate with IT, security operations, legal, communications, and executive leadership.
- Present findings and strategic recommendations to senior leadership.
- Serve as a trusted advisor and leader, enabling effective coordination during high-impact incidents and improving executive and cross-functional alignment.
- Monitor trends in cyber threats and incident response best practices.
- Integrate lessons learned from real incidents and exercises into future planning.
- Lead a continuous-improvement cycle that rapidly incorporates lessons learned, threat changes, and business shifts into plans, playbooks, and exercises.
- Champion modernization and operational excellence in incident response planning and operations, promoting repeatable processes and measurable improvements.
Qualifications
- Bachelor’s degree in Cybersecurity, Information Technology, or related field.
- 7 years or more in cybersecurity, with experience in incident response or threat management.
- Excellent communication, facilitation, writing and analytical skills.
- Experience designing and facilitating tabletop exercises or cyber simulations.
- Ability to document and explain technical details in a concise, understandable manner.
- Relevant technical and industry certifications in cybersecurity.
- Experience with information security risk management, including information security audits, reviews, and risk assessments.
- Strong understanding of CRI, NIST, MITRE ATT&CK, and other cybersecurity frameworks.
- Ability to work cross-functionally and influence without direct authority.
- Prior work experience in a global company preferred.
- Japanese language proficiency is a major advantage.
Desired Skills
- Knowledge in one or more security domains including Incident Response and Forensics, Security Governance and Oversight, Security Risk Management, Network Security, or Threat and Vulnerability Management.
- Knowledge of cloud security, AI security, networks, databases, and applications.
- Knowledge of the various types of cyber-attacks and their implementations.
- Experience in operational processes such as security monitoring, data correlation, troubleshooting, security operations, etc.