Technical Program Manager, Incident Response
San Francisco, CA

Job Description

Technical Program Manager, Incident Response

Location: San Francisco, CA- United States

Job ID: 19WD34141

Position Overview

Are you looking for an opportunity to join a fast-paced information security team in a global company that is enabling The Future of Making Things? Do you thrive when working collaboratively and cross-functionally to advise strategic initiatives that will strengthen the company's security posture? If so… we're looking for a new member of our Information Security team in San Francisco, California.

Autodesk is seeking an Information Security Incident Coordinator and Program Manager to be part of the Security Incident Response Team. This role manages the overall Security Incident Response Plan (SIRP) and coordinates the execution of the process during an incident.

A successful candidate for this job will work with multiple stakeholders including internal/external customers, the legal team, PR, business leaders and executive leadership to help deliver consistent response activities and identify enhancements to the Incident response process.

The role requires excellent communication, marketing and planning skills and ability to work with individuals and teams from across the organization. The incumbent should have excellent analytical thinking and ability to understand complex technical issues in compressed time frames.

Responsibilities

* Managing and maintaining the overall incident response process and plan
* Executing the incident response process as laid out in the incident response plan
* Convening appropriate resources to manage a security incident, capture timelines of events
* Creating and disseminating communications to internal & external customers and stakeholders including senior leadership
* Coordinating Post-Mortem activities to analyze and learn, maintain and track identified improvement activities
* Documenting and maintaining the communication plan
* Providing relevant Security incident related metrics and KPIs
* Coordinating war games and Table Top Exercises with Response Team and Senior Leadership
* Coordinating with Product Security and other Technical Teams to align Incident Detection and Response to the Autodesk SIRP
* Improving and development of documentations pertaining the Incident Response Capabilities
* Executing escalation procedures based on defined Incident Severity
* Leading role in activation of the cyber security incident response plan and follow up for post-mortem lessons learns sessions
* Coordinating efforts to identify root cause and recommended solutions for security and privacy incidents
* Compiling, updating and maintaining documentation associated with security processes and playbooks, managing the day to day operational tasks of incident response and remediation activities
* Generating reports for incident command management and help with the troubleshooting and coordination of major incidents based on outcomes of incidents analysis

Minimum Qualifications

* Master's degree (M.S) in computer science or related field, or Bachelor's degree (B.A.) and equivalent work experience
* 2-5 years' experience in investigating or coordinating incidents while being part of a response team or a Security Operations Center (SOC)
* Strong communication skills interacting with technical stakeholders including ability to convert technical language to business language for leadership
* Strong presentation skills to illustrate metrics, processes and incident updates
* Negotiation skills, interpersonal skills, project management, critical thinking and problem solving
* Excellent analytical skills, organizational skills, ingenuity and the ability to work as part of a team
* Deep understanding of Security Incidents, Risks, Threat, and incident handling phases and procedures - identification, detection, containment, and recovery
* Working under pressure and with multiple stake holders with sometimes conflicting priorities in high-intensity environment
* Understanding of Network, Infrastructure, computer and Product Security Incidents and the technical response activities entailed
* Security certifications like, CEH, CISSP, or a SANS certification like GMON, GCFA, or GCIH is a plus
* Knowledge of log correlation, forensics, security vulnerabilities and exploits, mobile security, including experience managing security tools
* Experience with cloud environments and infrastructure

About Autodesk

With Autodesk software, you have the power to Make Anything. The future of making is here, bringing with it radical changes in the way things are designed, made, and used. It's disrupting every industry: architecture, engineering, and construction; manufacturing; and media and entertainment. With the right knowledge and tools, this disruption is your opportunity. Our software is used by everyone - from design professionals, engineers and architects to digital scientists, students and hobbyists. We constantly explore new ways to integrate all dimensions of diversity across our employees, customers, partners, and communities. Our ultimate goal is to expand opportunities for anyone to imagine, design, and make a better world. '347848