Managing Director, Cyber Risk

About the job

Managing Director, Digital Forensic and Incident Response (DFIR)

As the Managing Director for our DFIR business, you will lead a high-performing team of cybersecurity professionals in providing rapid response to cyber incidents and strategic guidance to clients across various industries. You will oversee incident investigations, manage executive relationships, and drive the growth of our DFIR business.

Responsibilities

• Lead and manage complex cyber incident response engagements including ransomware, data breaches, business email compromise, and insider threats.
• Serve as a trusted advisor to C-level executives, legal counsel, and board members during and after cyber incidents.
• Direct digital forensics, threat intelligence gathering, root cause analysis, and remediation planning.
• Develop and implement playbooks, frameworks, and best practices for incident response.
• Build and scale the incident response consulting team, including hiring, training, and mentoring.
• Drive business development by building client relationships and identifying new service opportunities.
• Oversee engagement delivery, ensuring quality, timeliness, and compliance with industry and regulatory standards.
• Collaborate with legal, insurance, and law enforcement stakeholders as necessary.
• Represent the firm at industry events and in the media as a thought leader in incident response and cyber resilience.

Qualifications:

Requirements

• 12+ years of experience in cybersecurity, including at least 7 years in incident response or digital forensics.
• 5+ years of leadership experience in a consulting or professional services environment.
• Deep expertise in cyberattack lifecycle, threat actor TTPs, and security frameworks (e.g., NIST, MITRE ATT&CK).
• Strong business acumen and client-facing skills, including experience presenting to executives and boards.
• Proven track record of managing large-scale incidents and crisis situations.
• Relevant certifications such as CISSP, CISM, GCFA, GCIH, or CISA are preferred.
• Bachelor's or Master's degree in cybersecurity, information technology, or a related field.

We know how to fine-tune corporate security because we've led effective and efficient Fortune 500-level security programs. The SEC helps businesses find the best balance of risk mitigation, cost and innovation.

Want insight delivered to your inbox? Subscribe to Security Insight newsletter.