About Us
Sophos is a cybersecurity leader defending 600,000 organizations globally with an AI-driven platform and expert-led services. Sophos meets organizations wherever they are in their security maturity and grows with them to defeat cyberattacks. Its solutions combine machine learning, automation, and real-time threat intelligence with frontline human expertise from Sophos X-Ops to deliver advanced, 24/7 threat monitoring, detection, and response.
Sophos offers industry-leading managed detection and response (MDR) alongside a comprehensive portfolio of cybersecurity technologies — including endpoint, network, email, and cloud security, extended detection and response (XDR), identity threat detection and response (ITDR), and next-gen SIEM. Together with expert advisory services, these capabilities help organizations proactively reduce risk and respond faster, with the visibility and scalability needed to stay ahead of evolving threats.
Sophos goes to market with a global partner ecosystem, including Managed Service Providers (MSPs), Managed Security Service Providers (MSSPs), resellers and distributors, marketplace integrations, and cyber risk partners, giving organizations the flexibility to choose trusted relationships when securing their business. Sophos is headquartered in Oxford, U.K. More information is available at
www.sophos.com.
Role Overview
ソフォスのインシデントレスポンスチームでは、アドバイザリーサービス事業を拡大するため、各チームやインシデントレスポンス/レディネスコンサルタントと連携するシニアマネージャーを募集しています。インシデントレスポンスシニアマネージャーは、アドバイザリーサービス事業内のIRマネジメントチーム、IRチームリーダー、インシデントレスポンダー、インシデントレディネスコンサルタントと協力し、コンサルティング業務全般を統括します。業務内容は、予防的な取り組み(能力構築や脅威ハンティングなど)から、事後対応としてのインシデント/侵害対応まで多岐にわたります。サービス提供の質向上やコンサルティングスキルに関するチームメンバーへの指導、および顧客と直接連携して課題や障害を解決することも、この役職の重要な役割です。候補者には、契約案件への従事(請求可能業務の割合は最低15%)が求められます。
採用候補者には、インシデント対応能力の開発、管理、運用、トレーニング、演習、ワークショップの実施経験が求められます。また、脅威アクターが一般的に使用する戦術、手法、手順に精通している必要があります。組織がインフラやデータのセキュリティを確保しようとする際に直面する要因や制約について熟知していることが不可欠です。オンコール(プライマリ/サポート)対応が求められます。
The Sophos Incident Response team is looking for a Senior Manager who will work with various Sophos teams and Incident Response\Readiness consultants to grow the Sophos Advisory Services practice. The Incident Response Senior Manager will work with the IR management team, IR team leads, incident responders, and incident readiness consultants within the Sophos Advisory Services practice to oversee all consulting matters. Deliverables may be proactive (e.g. capability building or threat hunting) or reactive incident/breach response. Mentoring team members on service delivery excellence and consulting skills, as well as working directly with customers to resolve any blockers/issues, is a key component of the role. The candidate will be expected to work on engagements with a minimum requirement of 15% billable work.
The successful candidate will have experience in developing, managing, and operating incident response capabilities, conducting training, exercises, and workshops, and will be familiar with tactics, techniques, and procedures commonly employed by and used to thwart threat actors. Familiarity with the drivers and constraints that organizations are working with and against while trying to secure their infrastructure and data is a necessity. On call (primary / support) is required.
Manage teams of IR consultants to coordinate engagement work across multiple customers and teams.
Responsible for all aspects of people management, including recruiting, training, employee performance management and development.
Responsible for the success and the overall delivery of IR consulting engagements.
Directly lead and manage customer cyber security incidents by guiding customers through investigation, scoping, containment, and remediation.
Lead and manage incident readiness engagements that help prepare Sophos customers for a cyber security incident.
Work closely with other internal stakeholders, including leadership, the Resource Coordinators, Project Managers, Sales, Sales Engineering, Product, Marketing, Operations, other delivery practices.
Oversee, establish, and improve delivery governance, methodologies, best practices, procedures, and other practice initiatives.
Act as a point of escalation and resolution for customer satisfaction issues and strategic projects.
Understand skill gap on teams and create action plans to improve these gaps.
Track Key Performance Indicators KPI (utilization rates, consulting growth, engagement management) to ensure a steady case load and proper staffing.
Produce high-quality written and verbal reports, presentations, recommendations, and findings to customer management.
Demonstrate industry thought leadership through blog posts and other public speaking events.
Participate in leadership, cross-functional and sales meetings on a regular basis. For example, QBR’s, Executive Briefings, business performance and scoping calls. Serve as subject matter expert in a cyber incident response area.
Serve as a technical/managerial liaison between the senior/global practice leadership and the delivery consultants.
Identify pre-sales opportunities and assist with other pre-sales opportunities assigned to you.
Stay abreast of current industry trends, public disclosures and new technology through professional associations, trade journals, networking, and associated training and seminars.
Effectively communicate with clients, peers, leadership, and executives on the topic of incident response.
Mentor incident response team leads and consultants.
Team leadership experience in a consulting environment.
Experience conducting and managing incident response investigations for organizations, investigating targeted threats.
Strong understanding of targeted attacks and able to create customized tactical and strategic remediation plans for compromised organizations.
Strong technical communication skills (oral and written) including experience briefing executive management and desire to work with clients to solve complex security issues, including at times in crisis situations.
Excellent verbal and written communication skills with experience briefing executive management.
Possess a desire to work with clients to solve complex security issues, including at times of crisis.
Ability to drive cross functional teams towards a common objective.
Experience working with global, remote, multi-cultural teams.
Ability to prioritize, delegate and complete tasks within tight timeframes to meets deadlines.
High attention to detail with strong analytical skills.
Strong interpersonal skills, self-starting, proactive, motivated, team player.
Results orientated and customer focused.
Ability to demonstrate initiative and good judgment in resolving issues.
Effective at managing conflict and negotiating with stakeholders.
Experience mentoring and leading technical teams in a matrixed consulting environment.
Fluent Japanese and business level English
Desired
10+ years of information security experience.
Experience working with Cyber Insurers and Law Firms.
Professional degree relevant to cybersecurity or equivalent work experience.
Technical or professional certifications, such as GCFA, CISA or CISSP, are a plus.
ionos comunicaciones sl
Fanatics Inc.
DoordashusaRemote
Helsing