Principal Engineer - Cyber Incident Coordinator (Remote - US)

This position is posted by Jobgether on behalf of a partner company. We are currently looking for a Principal Engineer - Cyber Incident Coordinator in the United States.

The Principal Engineer - Cyber Incident Coordinator leads the organization’s response to significant cybersecurity events, ensuring swift and effective resolution while maintaining regulatory compliance and stakeholder confidence. This role involves coordinating incident detection, containment, mitigation, and recovery activities, while providing clear communication to technical teams and executive leadership. The coordinator develops and maintains incident response documentation, conducts post-incident reviews, and drives continuous improvement initiatives. By leading crisis exercises and collaborating across IT, security, legal, and HR functions, this role strengthens the company’s overall cybersecurity posture. The position requires advanced expertise in incident response frameworks, regulatory requirements, and hands-on leadership in high-pressure scenarios.

Accountabilities:

• Lead and coordinate major cyber incident response activities, including detection, containment, eradication, and recovery.
• Serve as the central point of contact for incident communications with internal and external stakeholders.
• Develop and maintain incident response documentation, reports, and after-action reviews.
• Drive lessons learned initiatives to improve response playbooks, processes, and detection strategies.
• Collect, analyze, and report incident metrics to support operational improvements and executive decision-making.
• Lead and contribute to cyber crisis exercises, tabletop simulations, and readiness drills.
• Ensure all incident response activities comply with applicable laws, regulations, and internal policies.
• Coordinate urgent remediation activities for vulnerabilities and high-risk findings.
• Collaborate with SOC, threat intelligence, legal, HR, and corporate security teams during incidents.

• Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or equivalent experience; Master’s degree preferred.
• 8–10+ years of progressive cybersecurity experience, with at least 5 years in incident response or crisis management.
• Deep understanding of incident response processes and cybersecurity frameworks (e.g., NIST CSF, ISO 27035).
• Familiarity with ITIL or other service management frameworks.
• Preferred certifications: CISM, CISSP, GCIH.
• Proven ability to manage multiple incidents simultaneously under high-pressure conditions.
• Strong communication skills for briefing both technical and executive stakeholders.
• Experience with regulatory frameworks such as GDPR, HIPAA, or PCI-DSS.