Cybersecurity Incident Response Lead

nTech WorkforceHyderabad, Republic Of India, IN

16 hours ago

Job description

Role : Digital Forensics and Incident Response (DFIR) Manager

Duration : 6-months' contract

Location : Hyderabad or Bengaluru

Mode of Employment : Hybrid

The DFIR Manager leads client-facing incident response and forensic engagements, serving as both a technical lead and engagement manager. This role requires strong incident command skills, particularly with ransomware cases, and the ability to align technical, legal, and business workstreams. The manager will oversee multiple engagements, ensuring quality, consistency, and effective coordination across the team. They will also serve as a mentor and escalation point for supervisors and consultants while maintaining strong relationships with clients, counsel, and insurers. The ideal candidate combines technical expertise, leadership presence, and sound judgment to manage the full lifecycle of an incident and keep all stakeholders aligned.

Responsibilities :

Lead multiple client-facing incident response and forensic engagements, ensuring quality and consistency across delivery.
Serve as incident commander during active crises, coordinating technical, legal, and business response efforts.
Define engagement scope, objectives, and communication plans from the outset.
Act as a trusted advisor to clients, external counsel, and cyber insurers, providing clear direction under pressure.
Supervise and mentor team members, fostering accountability, growth, and strong client communication.
Review and deliver concise reports that translate technical findings into actionable insights for executives.
Support practice development through playbook refinement, process improvement, and knowledge sharing.
Participate in on-call rotation and provide oversight during critical incidents.

Qualifications :

5+ years of experience in DFIR domain

Bachelor’s degree in Cybersecurity, Computer Science, Information Technology, or equivalent experience.

Proven experience leading complex cybersecurity incidents such as ransomware, data theft, and insider threats.

Strong background in incident response and EDR tools (CrowdStrike, SentinelOne, Carbon Black, etc.).

Familiarity with forensic tools and analysis in Windows, Linux, and cloud environments (AWS, Azure, GCP).

Skilled in managing multiple engagements and maintaining composure under pressure.

Excellent communication skills with the ability to brief executives and technical teams effectively.

Experience mentoring and developing DFIR team members.

Relevant certifications preferred (GCIH, GCFA, GCFE, CISSP, or similar).

Willingness to participate in after-hours or weekend rotations as needed.

Ability to provide after-hours (on-call / weekend rotational) support as required to address critical incidents and maintain continuous coverage.

Create a job alert for this search

Lead Incident Incident Response • Hyderabad, Republic Of India, IN

Related jobs

Promoted

Cybersecurity Operations Lead

ConfidentialHyderabad / Secunderabad, Telangana, India

The Cybersecurity Lead is responsible for driving the organization's cybersecurity strategy, leading investigations, and guiding the operational execution of critical security initiatives.This posi...Show moreLast updated: 6 days ago

Major Incident Response Technical Lead

CapgeminiHyderabad, TS, IN

Quick Apply

Our Client is one of the United States’ largest insurers, providing a wide range of insurance and financial services products with gross written premium well over US$25 Billion (P&C).They proud...Show moreLast updated: 12 days ago

Promoted

Cybersecurity Strategy and Implementation Lead

Tata Consultancy ServicesHyderabad, Republic Of India, IN

Need an SME with over 6+ years of experience in GRC and specialization in SEBI’s CSCRF.The candidate should be able to guide and drive the organization’s CSCRF implementation.Expert on Cyber Securi...Show moreLast updated: 2 days ago

Promoted

Incident Manager

ConfidentialBengaluru / Bangalore, Hyderabad / Secunderabad, Telangana

Lead day to day cyber security incident response and management engagements covering incident handling and coordination, in-depth technical analysis, and investigation through to recovery.Oversee t...Show moreLast updated: 30+ days ago

Promoted
New!

Lead

Yotta Data Services Private Limitedhyderabad, telangana, in

Yotta Data Services | Powering Digital Transformation with Scalable Cloud, Colocation, and Managed Services.Yotta Data Services offers a comprehensive suite of cloud, data center, and managed servi...Show moreLast updated: 7 hours ago

Promoted

Cloud Solutions Architect & Incident Management Specialist

TEKsystems Global Services in IndiaHyderabad, Republic Of India, IN

AWS infrastructure operations, with at least.AWS Certified Solutions Architect – Professional or equivalent.Excellent analytical, problem-solving, and decision-making skills.Managed Service Provide...Show moreLast updated: 2 days ago

Promoted

Incident Lead Manager

ConfidentialWarangal, Hyderabad / Secunderabad, Telangana, Nizamabad

Chubb s Infrastructure organization has responsibility for the coordination, development and support of all activities related to the production, operations and engineering of Chubb s core infrastr...Show moreLast updated: 30+ days ago

Promoted

Lead Cybersecurity Architect

ConfidentialHyderabad / Secunderabad, Telangana, India

Join one of the world's most influential companies and leverage your skills in cybersecurity to have a real impact on the financial industry. As a Lead Cybersecurity Architect at JPMorgan Chase with...Show moreLast updated: 6 days ago

Major Incident Response Analyst

CapgeminiHyderabad, TS, IN

Quick Apply

Promoted

Major Incident Manager

ConfidentialHyderabad / Secunderabad, Telangana, Pune, Chennai

Key Accountabilities and Main Responsibilities.Ticket triage / categorisation / prioritisation / assignment.Escalation of Major IT Incidents,. AD user record currency, network Share access, account ...Show moreLast updated: 30+ days ago

Promoted
New!

Incident Response & Forensics Team Lead

nTech WorkforceHyderabad, Republic Of India, IN

Digital Forensics and Incident Response (DFIR) Manager.Location : Hyderabad or Bengaluru.The DFIR Manager leads client-facing incident response and forensic engagements, serving as both a technical ...Show moreLast updated: 16 hours ago

Promoted
New!

Digital Forensics & Incident Handling Manager

nTech WorkforceHyderabad, Republic Of India, IN

Promoted

Cybersecurity Metrics Lead

ConfidentialHyderabad / Secunderabad, Telangana, India

Zelis is modernizing the healthcare financial experience in the United States (U.We serve more than 750 payers, including the top five national health plans, regional health plans, TPAs and million...Show moreLast updated: 6 days ago

Promoted

Incident Management

ConfidentialHyderabad / Secunderabad, Telangana

Teamware Solutions is seeking a proficient.Incident Management Specialist.You'll be crucial in minimizing the impact of IT service disruptions, overseeing the entire incident lifecycle from detecti...Show moreLast updated: 30+ days ago

Promoted

Digital Forensics and Incident Response (DFIR) Manager

nTech Workforcehyderabad, telangana, in

Promoted

Digital Forensics And Incident Response (Dfir) Manager

nTech WorkforceHyderabad, Republic Of India, IN

Promoted

Major Incident Response Analyst

ConfidentialHyderabad / Secunderabad, Telangana, India

Our Client is one of the United States' largest insurers, providing a wide range of insurance and financial services products with gross written premium well over US$25 Billion (P&C).They proudly s...Show moreLast updated: 4 days ago

Promoted

Specialist Cybersecurity

ConfidentialHyderabad / Secunderabad, Telangana, India

The Cybersecurity Risk Management team is part of Chief Security Office (CSO) and responsible for managing multiple teams that facilitate external audits, internal audits, analyze policy exceptions...Show moreLast updated: 6 days ago