Incident Manager (CSIRT)

Do you want to be at the forefront of protecting our society against cyber threats? We are looking for an Incident Manager to team up with the most dedicated team of cyber specialists in our Incident Response domain.

About Truesec – A Leading Cybersecurity Company

Since 2005, Truesec has been a native cybersecurity company, driven by one single purpose: Creating safety and sustainability in a digital world by preventing cyber breach and minimizing impact. 

Over the years, we’ve earned the trust of organizations worldwide and gained a strong reputation internationally. Our team consists of dedicated specialists covering the entire spectrum of cybersecurity – with capabilities in Predict, Prevent, Protect, Respond, and Recover. 

Today, we employ around 340 employees – and as cybercrime grows, we need to grow. To support that goal, we are now looking for an Incident Manager who wants to make a difference in our CSIRT.

CSIRT (Cybersecurity Incident Response Team)

Our Cybersecurity Incident Response Team (CSIRT) manages most of the large cybersecurity incidents in Sweden and a lot internationally. The team consists of dedicated experts in forensics, advanced infrastructure, and incident management, and works tirelessly to solve the most challenging technical situations. Together, we have rescued countless global organizations from cyber attacks and helped them get back to business with minimal impact.

The Role

In this role, you will be a part of the Incident Response team (CSIRT) at Truesec, granting you the opportunity to work with some of the best security specialists in the world. When an IT environment is compromised, sensitive data is leaked or encrypted, or unauthorized activity is detected, customers call us. When we get the call, we respond immediately.

We then initiate a forensic investigation to determine the entry point, affected systems, and potential data extraction. The incident manager coordinates digital forensics, infra and recovery specialist and if needed crisis management and cyberlaw. Besides our own team you also communicate and coordinate together with the customers to be able to meet their requirements and priorities. Our priority is always to get the customers operational capacity back up in the most effective yet secure way possible so we in parallel to the forensics investigation we start to rebuild the infrastructure and salvage as much data as possible to be able to recover that operational capacity to minimize downtime for the customer’s business.

Customers often compare our arrival to an emergency response team, experiencing relief when we are onsite.

You will lead the incidents described above and the role can be compared to an IT project manager, but the project is running at hyper speed. You will also help our customers as an advisor in the IT security domain.

Your Potential Background

You must be good at communicating with stakeholders in the spectrum from developers to senior management in order to advise organizations, both in proactive engagements as well as reactive situations such as a breach. You have experience of leading IT projects and staff (both internal and external). You have solid experience with security solutions and security best practices in on-prem and cloud environments. 

You also must be familiar with information and data protection challenges and how they affect the business. To succeed in the role, we believe you have several years of experience of working in IT security. Experience in strategic customer relations, including negotiations and contracting is as well as knowledge and experience in cybersecurity incident response is meritorious.

To be able to lead, listen and advise customers during crisis is an important skill.

Required Skills:
• Technical understanding and knowledgeable in IT security (knowledge of security mechanisms and existing products and solutions)
• IT Architectural, infrastructure and/or system knowledge and experience
• Understanding of compliance, regulations, and legal requirements
• Be able to handle changing conditions, always solution-oriented and comfortable making decisions under pressure

Due to the sensitivity in our assignments, we require Swedish citizenship or citizenship in another EU country. Language skills in English and Swedish or Danish is required.

Join Our Mission Toward a Safe Digital Future

If you truly want to make a difference and make our world a little bit safer, this is the place for you. At Truesec, you’ll get to be at the forefront of fighting cybercrime instead of reading about it in the news. This is your chance to be part of an exciting journey in a leading cybersecurity company – and learn from some of the best in their field.

So, are you ready to team up with the most dedicated team of experts and be part of a meaningful mission? Then we are excited to get to know you!

Apply for this job