Reports to: CISO Location: Remote US Compensation Range: $220,000 to $240,000 base plus bonus and equity What We Do: Huntress is a fully remote, global team of passionate experts and ethical badasses on a mission to break down the barriers to cybersecurity. Whether creating purpose-built security solutions, hunting down hackers, or impacting our community, our people go above and beyond to change the security game and make a real difference. Founded in 2015 by former NSA cyber operators, Huntress protects all businesses—not just the 1%—with enterprise-grade, fully owned, and managed cybersecurity products at the price of an affordable SaaS application. The Huntress difference is our One Team advantage: our technology is designed with our industry-defining Security Operations Center (SOC) in mind and is never separated from our service. We protect 4M+ endpoints and 7M+ identities worldwide, elevating underresourced IT teams with protection that works as hard as they do. As long as hackers keep hacking, Huntress keeps hunting. What You’ll Do: As the Director of Product Security and Incident Response, you will protect Huntress from the adversaries we wreck daily with our products. You will be responsible for managing our attack surface, ensuring it is free of vulnerabilities, preparing our organization for incident response, and owning the offensive security team. This role will partner closely with the CISO and our Product and Engineering teams, and our Security Operations Center. Responsibilities: Strategic Leadership: - Unified Security Vision: Develop and execute a roadmap that integrates the Secure SDLC with continuous adversary simulation. Ensure that findings from Offensive Security (Red Team) exercises are directly incorporated into the Product Security backlog. - Board-Level Communication: Translate complex technical metrics (Drift, Detection Coverage) into business risk narratives for the executive leadership team (ELT) and the Board of Directors. - Talent Development: Recruit, mentor, and retain top-tier talent in highly competitive fields (Offensive Security, AppSec). Build a culture of psychological safety where failure is viewed as a learning opportunity. Adversary Informed Defense: - Resilience Testing: Lead the Offensive Security team to conduct "Threat-Led Defense" operations. Simulate realistic APT campaigns to test the organization's ability to withstand and recover from attacks. - CSIRT Readiness: Own the Incident Response capability for the company. Drive continuous improvement in incident response through rigorous drilling and automation. - Drift Management: Implement automated systems to measure and remediate Configuration Drift and Detection Drift across the enterprise. - Purple Teaming: Institutionalize collaboration among Offensive Security Analysts, CSIRT analysts, the broader Security Department, and other parts of the company to validate and tune detection logic in real time. Product Security: - Secure Infrastructure: Direct the security architecture for our cloud-native environment (AWS and Azure), ensuring immutable infrastructure and strict IAM governance. - Vulnerability Management (VM): Oversee a risk-based VM program that prioritizes remediation based on exploitability and asset criticality. - Regulatory Alignment: Ensure the product architecture supports SOC 2 and other regulatory requirements through partnership with our Governance team. - AppSec Integration: Champion the use of automated security testing (SAST/DAST/SCA) within our engineering pipelines. What You Bring To The Team: - Minimum of 10+ years of progressive experience in Information Security, with at least 5 years in a senior leadership role (Director/VP) managing multi-disciplinary teams (e.g., Offensive Security, AppSec, Incident Response). - Demonstrable experience developing and executing a multi-year security roadmap that aligns technical controls with enterprise business objectives and risk tolerance. - Proven ability to communicate complex technical risks and metrics (e.g., detection coverage, drift rate, remediation velocity) to executive leadership (ELT) and the Board of Directors, effectively translating security posture into business language. Technical and Programmatic Expertise: - Deep, hands-on experience leading and maturing an Offensive Security (Red Team) function, specifically conducting Adversary Simulation and Threat-Led Defense operations. - Expertise in Cloud-Native Security Architecture across major providers (AWS and/or Azure) - Extensive experience designing, implementing, and running a risk-based Vulnerability Management (VM) program at scale. - Comprehensive knowledge of Secure Software Development Lifecycle (SSDLC) principles, including the successful implementation and integration of automated security testing tools (SAST, DAST, SCA) into CI/CD pipelines. - Expert-level understanding of Incident Response (IR) and CSIRT operations, including owning the IR process, coordinating complex incidents, and driving continuous improvement through post-mortem analysis and rigorous drilling. - Direct experience with "Purple Teaming" methodologies to improve the efficacy of detection and response capabilities in collaboration with security engineering and operations teams. Leadership and Culture: - Exceptional talent acquisition, development, and retention skills, with a focus on mentoring high-performing, specialized security professionals in highly competitive domains (e.g., Offensive Security, AppSec). - Demonstrated ability to build a positive, high-trust team culture that emphasizes psychological safety, continuous learning, and cross-functional collaboration. - Proven ability to drive consensus and influence change across engineering and product organizations without direct authority. - Experience in aligning security practices with regulatory and compliance frameworks such as SOC 2, ISO 27001, or similar. What We Offer: - 100% remote work environment - since our founding in 2015 - Generous paid time off policy, including vacation, sick time, and paid holidays - 12 weeks of paid parental leave - Highly competitive and comprehensive medical, dental, and vision benefits plans - 401(k) with a 5% contribution regardless of employee contribution - Life and Disability insurance plans - Stock options for all full-time employees - One-time $500 reimbursement for building/upgrading home office - Annual allowance for education and professional development assistance - $75 USD/month digital reimbursement - Access to the BetterUp platform for coaching, personal, and professional growth Huntress is committed to creating a culture of inclusivity where every single member of our team is valued, has a voice, and is empowered to come to work every day just as they are. We do not discriminate based on race, ethnicity, color, ancestry, national origin, religion, sex, sexual orientation, gender identity, disability, veteran status, genetic information, marital status, or any other legally protected status. We do discriminate against hackers who try to exploit businesses of all sizes. Accommodations: If you require reasonable accommodation to complete this application, interview, or pre-employment testing or participate in the employee selection process, please direct your inquiries to accommodations@huntresslabs.com. Please note that non-accommodation requests to this inbox will not receive a response. Huntress uses artificial intelligence tools to assist in reviewing and evaluating job applications, including resume screening, skills assessment, and candidate matching and comparisons. These AI tools support our human recruiters in the initial review process but do not make final hiring decisions without human involvement. By submitting your application, you acknowledge this use of AI in our recruitment process. Please review our Candidate Privacy Notice for more details on our practices and your data privacy rights. #BI-Remote

• Investigates security incidents • Recommends enhancements to improve security • Identifies common attack patterns • Contributes to the implementation of scalable and preventative security measures • Assists with the execution of enterprise-wide Incident Response Plan • Partners with business units to accomplish enterprise-wide remediation • Develops and delivers presentations to senior leadership team • Participates in the review of current configurations of Centene’s production information systems and networks against compliance standards • Assists with the prevention and resolution of security breaches • Ensures incident and response management processes are initiated • Collaborates with Information Security Architects and Engineers

Role Summary The Review Manager leads strategic and operational initiatives for cyber incident response services, overseeing client engagement, delivery, technology strategy, and team development to ensure high-quality outcomes. Responsibilities and Duties - Partner with business development teams to design tailored CIR solutions for clients. - Support pre-sales activities, proposals, and client presentations. - Oversee end-to-end delivery of CIR services, including: Intake and onboarding processes.Phase 1 data operations and review management.Overall operations management and quality assurance. - Drive adoption of advanced tools for incident detection, analysis, and reporting. - Develop training programs to upskill CIR teams globally. - Foster a culture of continuous learning and professional growth - Ensure compliance with global regulatory standards and industry frameworks - Ensure adherence to SLAs and client expectations. Required Skills/Abilities - Strong knowledge of incident response lifecycle, data analytics, and security technologie - Proven ability to manage large teams and complex projects across geographies. - Strategic thinking and problem-solving. Education and Experience 8+ years in cybersecurity or incident response, with leadership experience in global operations. Benefits Health, vision, dental, 401k and tuition discount Company Information Integreon is a trusted, global provider of award-winning legal and business solutions to leading law firms, corporations and professional services firms. Our highly trained, experienced staff of over 3,000 employees globally service a comprehensive range of client needs that require scale and expertise, enabling clients to become more operationally efficient. Integreon works with corporations and law firms who rely on our team’s experience and expertise in documents, administrative and business services. With delivery centres on three continents, Integreon offers multi-lingual, around-the-clock support, as well as onshore, offshore and onsite delivery of our award-winning services. If you are exceptional at what you do, we would love to put you to work in an exceptional company in an exceptional position. We are One. We are On. Follow us https://www.linkedin.com/company/integreon/ Visit us at www.integreon.com Pay Range USD $95,000.00 - USD $95,000.00 /Yr.

cFocus Software seeks a Incident Response Manager to join our program supporting the Housing and Urban Development. This position is remote.This position requires a Public Trust clearance. Qualifications: - Bachelor’s Degree or Higher in Cyber Security or related field or Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), GCIH (GIAC Certified Incident Handler). - 7+ years of relevant experience in cybersecurity incident identification, response, remediation or mitigation. - Experience analyzing incidents, preserving evidence, identifying root causes, and developing effective mitigation/remediation solutions. - Familiarity with frameworks like NIST, ISO 27001, and CIS Controls. - Experience collecting intrusion artifacts (e.g., source code, malware, trojans) and use discovered data to enable mitigation of potential cyber defense incidents within the enterprise. - Experience coordinating and providing expert technical support to enterprise-wide cyber defense technicians to resolve cyber defense incidents. - Experience, managing, leading or coordinating incident response functions. - Experience monitoring external data sources (e.g., cyber defense vendor sites, Computer Emergency Response Teams, Security Focus) to maintain currency of cyber defense threat conditions and determine which security issues may have an impact on the enterprise. - Experience managing, leading or performing initial, forensically sound collection of images and inspect to discern possible mitigation/remediation on enterprise systems. - Experience receiving and analyzing network/system/security alerts from various sources within the enterprise and determining possible causes of such alerts. - Experience with Federal Incident Reporting requirements, writing and publishing after-action reviews/reports.