Job Description

About Sygnia

Sygnia is a leading global cyber readiness and incident response firm. Our teams operate on the digital frontlines of today’s most sophisticated cyber battles, helping the world’s top organizations withstand and recover from complex attacks, often in high-pressure, high-stakes environments. We combine technical excellence, elite talent, and battle-tested methodologies to help our clients build resilience and respond with confidence.

Sygnia is rapidly expanding its presence in the United States, growing our incident response capabilities and client base across key industries. Joining now means playing a formative role in shaping our U.S. operations while benefiting from the backing and expertise of an established global leader.

The Role

We’re seeking an experienced and decisive Incident Response Manager to lead high-impact investigations and response efforts for organizations worldwide. This is a hands-on leadership role, combining deep technical expertise with team management, client advisory, and crisis leadership responsibilities.

When an organization is facing a sophisticated attack, it needs the strongest capabilities on its side. Sygnia’s incident response teams operate like digital commandos, delivering clarity and control during crises and helping organizations contain threats before they escalate. As an Incident Response Manager, you will lead complex engagements, often on-site, and serve as both a technical subject matter expert and a trusted advisor to clients. You will play a central role in crisis management, helping executive teams make fast, informed decisions in high-stakes situations, often under intense scrutiny and pressure.

What You’ll Do

• Lead incident response investigations and threat hunting efforts, including containment and remediation of large-scale, advanced attacks.
• Manage teams of cybersecurity experts and forensic analysts in the execution of complex investigations and proactive assessments.
• Act as a crisis leader during high-impact incidents, bringing structure, clarity, and focus to chaotic situations while managing timelines and stakeholder expectations.
• Serve as a trusted advisor to C-level executives, providing briefings, strategic recommendations, and updates tailored to business risk and organizational impact.
• Collaborate directly with client IT and security teams throughout the engagement, aligning technical efforts with business priorities.
• Contribute to the design, improvement, and standardization of Sygnia’s internal incident response methodologies and processes.
• Deliver status updates and final reports that clearly articulate findings, impact, and actionable recommendations to both technical and executive stakeholders.

Requirements

What We’re Looking For

• 5+ years of experience in leading high-performing cybersecurity teams, in either a military or industry setting.
• Proven ability to lead with calmness, focus, and decisiveness in high-pressure, fast-paced environments.
• Strong communication and interpersonal skills, with the ability to build trust quickly and maintain clarity in complex and time-sensitive situations.
• Demonstrated experience managing crisis situations and communicating effectively with senior executive and board-level stakeholders.
• Deep understanding of the attack lifecycle, threat actor behaviors, and advanced exploitation techniques.
• Solid technical knowledge of network architecture, internet protocols, endpoint systems, and common security controls.
• Hands-on experience with incident response tools and techniques, such as SIEM, endpoint detection, memory analysis, forensic imaging, and malware triage.
• Prior experience in cybersecurity consulting or advisory services is a strong advantage.
• Willingness to travel.

Bonus Points For

• Industry-recognized certifications (e.g., GCFA, GCIH, GNFA, GCIA, GREM, CISSP).
• Experience responding to ransomware, business email compromise (BEC), and advanced threat actor incidents.
• Experience presenting findings to legal counsel, regulators, or board-level stakeholders.
• Multilingual skills and experience in multinational or cross-cultural environments.
• A degree in Computer Science, Information Security, or a related field; or equivalent education or training in cybersecurity.

Why Sygnia

• Work with some of the best minds in cybersecurity on the world’s most high-impact cases.
• Operate in a fast-paced, elite-tier environment where your technical expertise is trusted and valued.
• Take part in meaningful, challenging work that directly shapes the outcomes for Fortune 500 organizations.
• Grow your career while staying hands-on in incident response and mentoring a highly capable team.