Role Description Nscale's Incident Management and Change Management processes lack a single owner driving them as operational discipline. As the company onboards large scale workloads, we need a dedicated process champion sitting inside Support — the team that owns both functions — to own the processes, implement them in tooling, train the organization, advocate across teams, run the daily operational rhythm, and report on program health to leadership. This is a hands-on, operational role. You will be the person in the bridge when MI/SEV-1s fire, the chair of the Change Advisory Board, the author of postmortem templates, the trainer of new Incident Commanders, and the analyst presenting monthly process metrics to the SLT. The work spans process design, tooling configuration and culture change. What You Will Own - Own the processes. - Take the in-flight Incident Management and Change Management process documents to a v1.0 state. - Close the gaps that are already known: - Severity declaration authority - IC/scribe/comms-lead role separation - SLA/SLO tables for ack and resolution - Customer communication ladder - War-room scaling beyond -red/-blue - Change risk classification - Emergency change path - Change freeze policy - Postmortem template - RCA SLA/SLO - Implement in tooling. - Drive the Jira Service Management implementation for incident and change workflows as part of the active Servicely-to-Jira migration. - Define required fields, ticket hygiene standards, escalation routing, automation, and integrations. - Ensure the service catalogue is accurate, current, and properly referenced by both incident and change tickets so impact analysis is reliable. - Run the operational rhythm. - Act as Incident Commander or Major Incident Manager for SEV-1 and complex SEV-2 events. - Chair the Change Advisory Board on a defined cadence. - Facilitate postmortems and drive action items to closure with measurable SLAs. - Manage the change calendar including freeze windows around customer-critical periods. - Coordinate communications during incidents — internal updates, customer notifications, executive escalation, regulatory notification where sovereign workloads require it. - Train and advocate. - Build and certify a pool of Incident Commanders across Support, SRE, and adjacent engineering teams. - Run tabletop exercises and game days on a quarterly cadence (immediate priority: three tabletops in May, June, and July leading into first production customer go-live). - Onboard engineers to both processes as they join. - Be the visible champion for blameless postmortem culture, mitigate-first response, and disciplined change practice. - Report on health program. - Define the metrics that matter — mean time to acknowledge, mean time to mitigate, mean time to resolve, postmortem closure rate, recurrence rate, change success rate, change-caused incident rate, action-item ageing — and publish a monthly program report to the SLT. - Identify systemic issues from trend analysis and feed them back into runbooks, training, and process revisions. Qualifications - 5+ years in ITSM / Service Management roles with direct ownership of Incident Management and Change Management processes. - Hands-on experience facilitating major incidents end-to-end as Incident Commander or Major Incident Manager in a 24/7 production environment. - Demonstrable experience running a Change Advisory Board or equivalent change-review forum. - Proven track record configuring Jira Service Management, ServiceNow, or equivalent ITSM tooling for both incident and change workflows. - Strong writing skills — process documents, postmortems, executive incident reports, training material. - Comfort holding the room under pressure with senior stakeholders, engineers, and customers concurrently on the bridge. Strongly Preferred - Experience in cloud, hyperscaler, AI infrastructure, or HPC environments. - Familiarity with SRE concepts — SLOs, error budgets, blameless postmortems, runbook discipline. - Experience designing and running tabletop exercises and game days. - Experience operating processes for regulated or sovereign customer workloads where notification timing has regulatory weight. - Familiarity with Jira's automation, JSM portals, and integration ecosystem (the migration is in flight). - Comfortable working across time zones and cultures — Nscale spans Norway, UK, Finland, Portugal, and the US. Benefits - Collaborative, supportive, and innovative environment where your contributions spark real impact. - Highly competitive package (base + equity) with reviews every 12 months. - Join the fastest-growing tech startup, your chance to push boundaries, collaborate with brilliant minds, and make your mark on cutting-edge AI. - Dynamic progression plan tailored to your ambitions. - Human-First Flexibility: We treat you as humans first. Our flexible workplace trusts Nscalers to deliver, giving you the autonomy to shape your day around life's moments. - Join our thriving remote-first team. Geography is no barrier to impact or connection. Equal Opportunities Statement We strongly encourage applications from people of colour, the LGBTQ+ community, people with disabilities, neurodivergent people, parents, carers, and people from lower socio-economic backgrounds. If there’s anything we can do to accommodate your specific situation, please let us know. The responsibilities outlined in this job description are not exhaustive and are intended to provide a general overview of the position. The employee may be required to perform additional duties, tasks, and responsibilities as assigned by management, consistent with the skills and qualifications required for the role.

• Design, build, and improve automated evidence collection capabilities that increase the speed, consistency, and completeness of incident investigations. • Create and maintain SOAR playbooks that orchestrate investigation, enrichment, containment, notification, and recovery workflows. • Integrate SIEM, EDR, IAM, cloud, email, case management, and threat intelligence platforms to enable unified response actions and stronger analyst context. • Develop and deploy response tooling that may utilize AI to improve response capabilities across cloud, endpoint, identity, SaaS, email, and data platforms. • Develop scripts, tools, and integrations that support triage, containment, enrichment, forensic collection, and operational response workflows. • Ensure responders have the logs, telemetry, access, and tooling needed to investigate and respond without unnecessary delay. • Build dashboards, operational views, and incident metrics that measure response performance, workflow health, and process effectiveness. • Identify repeated manual analyst tasks and turn them into safe, scalable, and repeatable automation. • Review incident response plans, identify readiness gaps, and help develop practical strategies to improve preparedness. • Design and optimize incident response playbooks aligned to relevant threats, operating models, and business needs to allow for quick identification and response to potential incidents. • Collaborate with Response Operations and Automation team stakeholders for prioritization, automation creation, and integrations with security tooling. • Facilitate or support tabletop exercises, drills, and readiness activities to validate plans and improve operational performance. • Lead or support complex investigations involving host, network, identity, email, and cloud artifacts to determine nature, scope, and root cause. • Partner with cross-functional teams to guide containment, remediation, recovery, and post-incident improvement activities. • Brief technical teams and leadership on findings, risks, recommendations, and response decisions during and after incidents. • Contribute to incident response standards, methodologies, documentation, and internal knowledge sharing. • Participate in an incident response on-call rotation, including weekend coverage, as required.

Role Description - Own and deliver security governance and control activities, including ITGC execution, audit readiness, and evidence tracking. - Maintain and update the ISO27001 ISMS, including policy and standards refresh and controlled publication. - Drive Segregation of Duties (SoD) remediation across finance systems within defined timelines. - Coordinate and complete third-party assurance questionnaires, including SIG Lite and broader SIG processes. - Support GIA governance audits, ensuring evidence readiness and action tracking. - Deliver operational resilience and BCP artefacts, ensuring alignment with regulatory expectations. - Support cloud/platform security onboarding (GCP VMSP), ensuring controls and reporting are in place. - Manage IAM/IDAM onboarding, role management, and reporting discipline. - Drive data classification and labelling rollout activities aligned to global standards. - Coordinate penetration testing preparation, stakeholders, and follow-up actions. - Establish and maintain monthly security reporting, including 1st and 2nd line inputs. - Standardise and embed Security KRIs across reporting cycles. - Support TechComm reporting (UK and VN) ensuring clarity and consistency. - Drive Wiz deployment and operationalisation, embedding it into BAU processes. - Support security awareness and notification processes, including joiners/leavers activities. Company Description At Zensar, we’re “experience-led everything”. We are committed to conceptualizing, designing, engineering, marketing, and managing digital solutions and experiences for over 130 leading enterprises. We are a company driven by a bold purpose: Together, we shape experiences for better futures. Whether for our clients, our people, or the world around us, this belief powers everything we do. At the heart of our culture is ONE with Client - a set of four core values that reflect who we are and how we work: One Zensar, Nurturing, Empowering, and Client Focus. Part of the $4.8 billion RPG Group, we’re a community of 10,000+ innovators across 30+ global locations, including Milpitas, Seattle, Princeton, Cape Town, London, Zurich, Singapore, and Mexico City. Explore Life at Zensar and join us to Grow. Own. Achieve. Learn. to be the best version of yourself. We believe the best work happens when individuality is celebrated, growth is encouraged, and well-being is prioritized. We are an equal employment opportunity (EEO) and affirmative action employer, committed to creating an inclusive workplace. All qualified applicants will be considered without regard to race, creed, color, ancestry, religion, sex, national origin, citizenship, age, sexual orientation, gender identity, disability, marital status, family medical leave status, or protected veteran status.

Role Description Reporting to the Manager of Cyber Defense, the Cyber Incident Handler will be a highly technical individual who will, along with internal and external partners, drive the monitoring, detection and incident management capabilities within Kontoor’s Global Information Security organization. This position will heavily influence the implementation of a forward thinking cyber defense program, including next generation cloud based monitoring solutions; developing threat hunting capabilities within that platform. The Cyber Incident Handler must be comfortable working in a fast-paced, collaborative, entrepreneurial environment. The person in this role must be comfortable working with ambiguity and demonstrate outstanding communication skills. Responsibilities - Provide Tier 2 support for escalations from an MDR service - Drive improvements to event analysis operations and security automation - Develop threat hunting capabilities and new Use Cases for implementation in the SIEM - Review and take a proactive approach to false positives and work with the various Security teams to tune and provide feedback to improve accuracy of the alerts - Lead small to medium size projects as directed by management Qualifications - Intern or similar entry level experience in an IT role desired - Security certification/accreditation from Offensive Security, ISC2 (CISSP), and/or GIAC are highly desired - Bachelor’s degree in computer science, information systems, computer engineering, electrical engineering, system analysis or related field of study, or equivalent experience Requirements - Exceptional interpersonal skills, including teamwork, facilitation, and negotiation - Excellent written, verbal, communication, and presentation skills Leadership Competencies Expected for this Role - Foundational Leader - Global Agility – Be open and adapt quickly when things change - Purposeful Integrity – Do the right thing, even when no one is watching - Strategic Foresight – Think ahead and plan for what’s coming - Customer Centric Innovation – Find better ways to serve our customers - Urgency for Impact – Act fast and get results that matter - Bold Accountability – Take ownership of your work and results - Empowered Collaboration – Work well with others to get things done Benefits - Comprehensive benefit package to fit your lifestyle - Competitive benefits program that provides choice and flexibility - Resources to support your physical, emotional, social, and financial wellbeing - Discounts on our apparel - Four weeks of Paid Parental Leave to eligible employees who are new parents - Flexible Fridays - Tuition Reimbursement Company Description Kontoor Brands is a portfolio of three of the world’s most iconic lifestyle, outdoor and workwear brands: Wrangler®, Lee® and Helly Hansen®. Kontoor Brands is a purpose-led organization focused on leveraging its global platform, strategic sourcing model and best-in-class supply chain to drive brand growth and deliver long-term value for its stakeholders.