Manager, Cybersecurity Incident Handler

Manager, Cybersecurity Incident Handler (GCP Environments) - Advanced English 1 week ago Be among the first 25 applicants Get AI-powered advice on this job and more exclusive features. We are KTSA – KPMG Technology Services Americas. A Service Delivery Center of KPMG US, with offices in Mexico City, Guadalajara, and a growing network of remote talent across the country. We deliver high-value technology, consulting, and corporate support services to KPMG US and its clients. At KTSA, our Employer Value Proposition is clear: Explore . Explore isn’t just a word — it’s how we grow, lead, and thrive. It’s the mindset that drives our culture and shapes every opportunity: Experience a collaborative, inclusive, and multicultural workplace where you belong. Excel by creating impact and leaving your mark on global projects. Expand your potential with real career paths, learning programs, and mentorship. Express your individuality — come as you are, and thrive as your authentic self. And because we know that thriving at work also means thriving in life, we back this mindset with KTSAMÁS , our total rewards program, designed to support your well-being, goals, and personal milestones. Key Responsibilities and Qualifications Key Responsibilities: Apply your knowledge of IT security, security operations, and incident response with a focus on Google Cloud Platform (GCP) specific knowledge to manage and oversee a shift of 24x7 cyber security operations and incident responders. Document processes and procedures comprehensively in the form of playbooks and reference guides. Handle and coordinate tasks such as incident management, threat hunting, forensic analysis, and remediation efforts to mitigate threats. Conduct regular assessments to identify vulnerabilities and insecure configurations, and review security change requests to ensure robust protective measures. Define and configure security monitoring tools, including alerts, correlation rules, and reporting mechanisms. Implement automation and orchestration to improve the efficiency and effectiveness of security monitoring and response processes, aiming for a unified "single pane of glass" solution. Leverage intelligence to lead and manage incorporating threat monitoring and vulnerability detections to evaluate and respond effectively to events and develop risk severity level and mitigation approaches, incorporating feedback and lessons learned into enhanced preventive and detective controls. As a subject matter expert, stay updated on the latest security practices and technologies, mentor the team through knowledge‑sharing sessions, and build strong relationships with internal tech groups to ensure strategic alignment and foster collaboration. Oversee work product(s) and lead small to medium size projects, managing deadlines, expectations, and often contributing to staffing decisions and supervising the work performed by junior staff. Qualifications: Bachelor’s degree with 3‑5 years of experience in cyber security operations, strong security knowledge of Google Cloud Platform and relevant certifications such as CISSP, Google Professional Cloud Security Engineer, CCSP, CCSK, GSEC, GCIH, GCFE, GCFA, SC‑200, CEH, and AZ‑900. Both project and operational experience in security monitoring, security operations, and incident response activities; experience implementing processes, including playbooks and policies. Experience with scripting or automation, and ServiceNow is a plus. Excellent verbal/written communication, collaboration, analytical and presentation skills to lead an environment driven by customer service and teamwork. Experience leading meetings and operating effectively in a matrixed environment. Ability to participate in development of resource plans and project estimation. Working Hours and Scheduling Monday to Friday from 7am to 4pm Depending on the operation, the work schedule may be subject to the following changes: Sunday - Wednesday or Wednesday to Saturday 7:00am to 5:00pm or 1pm to 11:00pm Benefits and Total Rewards Extended maternity, paternity, and adoption leaves Learning opportunities, training, and certification programs Extended marriage leave and daycare support Wellness and Employee Assistance Programs (EAP) Comprehensive medical plan, life insurance, car insurance, and funeral assistance Visit to learn more. At KTSA, we celebrate and support everyone’s individuality. We do not discriminate against any race, religion, color, national origin, gender, sexual orientation, gender identity or expression, age, marital status, or disability. We are supportive of helping you to achieve a balance between your home and work demands. We are happy to discuss specific requirements and our range of flexible working arrangements could be of interest. Please ask to find out more. We strongly state that we DO NOT require a certificate of non‑pregnancy or HIV in order to participate in any of our processes. Explore KTSA, we dare to be different #J-18808-Ljbffr