Sign up to access all features of our service.
  • Job search
  • Favorites
  • Create a CV
    New
  • Salaries
  • Subscriptions

Digital Forensics & Incident Response (DFIR) Manager

$107k - $214.5k

Dormont Manufacturing Company

We are the leading provider of professional services to the middle market globally, our purpose is to instill confidence in a world of change, empowering our clients and people to realize their full potential. Our exceptional people are the key to our unrivaled culture and talent experience and our ability to be compelling to our clients. You’ll find an environment that inspires and empowers you to thrive both personally and professionally. There’s no one like you and that’s why there’s nowhere like RSM. The RSM Cyber Response team leads organizations through some of their most consequential cyber events. The DFIR Manager serves as both incident commander and engagement leader, overseeing multiple complex matters while aligning technical, legal, executive, and insurance workstreams. This role requires strong incident command authority, deep ransomware experience, and the ability to guide cross‑functional response efforts at the executive level. Managers maintain oversight across engagements, provide escalation guidance to Supervisors, and ensure investigative quality, consistency, and defensibility across the practice. The DFIR Manager is accountable not only for technical excellence, but also for engagement delivery, stakeholder alignment, and operational leadership during crisis response. Responsibilities Serve as incident commander during high‑severity events, particularly ransomware and enterprise‑scale breaches. Oversee multiple concurrent engagements, ensuring quality, consistency, and appropriate resource allocation. Define investigative strategy and escalation thresholds for complex incidents. Align technical response with legal, regulatory, insurance, and executive considerations. Review and approve investigative findings, containment validation, and executive reporting. Act as senior advisor to client executives, legal counsel, and cyber insurers. Provide guidance to Supervisors on advanced investigative decisions and complex threat actor scenarios. Maintain executive‑level communication cadence during incidents. Support development of standardized methodologies, playbooks, and quality controls across the practice. Mentor Supervisors and Consultants in both technical depth and client leadership. Participate in on‑call rotation and provide oversight during critical incidents. Preferred Qualifications Expertise in all areas is not required; however, candidates should demonstrate strong foundational knowledge and a willingness to continuously learn and expand their capabilities. Bachelor’s degree in Cybersecurity, Computer Science, Information Technology, or equivalent experience. Proven experience leading enterprise‑scale ransomware and breach investigations. Deep understanding of: Threat actor operations and ransomware tradecraft Identity compromise and domain‑level persistence Cloud and hybrid environment incident response Data exfiltration risk assessment and reporting Strong hands‑on familiarity with EDR platforms, SIEM technologies, and forensic toolsets. Demonstrated ability to manage multiple high‑pressure engagements simultaneously. Experience coordinating with legal counsel, cyber insurance carriers, and executive leadership. Strong executive presence and crisis communication ability. Experience mentoring and developing DFIR leaders. Certifications such as GCFA, GCIH, CISSP, OSCP, or equivalent preferred. Willingness to participate in on‑call rotation. At RSM, we offer a competitive benefits and compensation package for all our people. We offer flexibility in your schedule, empowering you to balance life’s demands, while also maintaining your ability to serve clients. Learn more about our total rewards at All applicants will receive consideration for employment as RSM does not tolerate discrimination and/or harassment based on race, color, creed, sincerely held religious beliefs, practices or observances, sex (including pregnancy or disabilities related to nursing), gender, sexual orientation, HIV status, national origin, ancestry, familial or marital status, age, physical or mental disability, citizenship, political affiliation, medical condition (including family and medical leave), domestic violence victim status, past, current or prospective service in the US uniformed service, US Military/Veteran status, pre‑disposing genetic characteristics or any other characteristic protected under applicable federal, state or local law. Accommodation for applicants with disabilities is available upon request in connection with the recruitment process and/or employment. RSM is committed to providing equal opportunity and reasonable accommodation for people with disabilities. At RSM, an employee’s pay at any point in their career is intended to reflect their experiences, performance, and skills for their current role. The salary range for this role represents numerous factors considered in the hiring decisions including, but not limited to, education, skills, work experience, certifications, location, etc. As such, pay for the successful candidate(s) could fall anywhere within the stated range. Compensation Range: $107,000 - $214,500 Individuals selected for this role will be eligible for a discretionary bonus based on firm and individual performance. #J-18808-Ljbffr

Vacancy posted 2 days ago
Similar jobs that could be interesting for youBased on the Digital Forensics & Incident Response (DFIR) Manager in Chicago, IL vacancy
  • $70.35k - $205.8k

     ...Cyber Investigation and Forensic Response (CIFR) practice is at...  ...consequential cyber incidents. We deliver around-...  ...have deep expertise in Digital Forensics, Incident...  ..., Incident Response (DFIR) experience with demonstrated...  ...patterns Project management, analytical, and... 
    Digital
    Work experience placement
    Live in
    Work at office
    Local area

    Accenture

    Chicago, IL
    4 days ago
  •  ...Overview A leading tech-enabled digital intelligence, investigation, and risk advisory firm is looking to appoint a Senior Associate, Digital Forensics and Incident Response (DFIR). The firm is seeking a dynamic new team member to help grow its Digital Forensics... 
    Digital
    Chicago, IL
    a month ago
  • Accenture is seeking a hands-on technical leader for their Cyber Investigation and Forensic Response (CIFR) practice in Chicago. The candidate will excel in incident response and digital forensics, conducting complex analyses, mentoring investigators, and communicating... 
    Digital

    Accenture

    Chicago, IL
    4 days ago
  • $140k - $170k

     ...Associate Principal/Cybersecurity & Incident Response Boston, MA, United States;...  ...services – economic and management consulting – are delivered...  ...industries. Position Overview CRA's Forensic Services practice supports...  ...forensic analysis of digital information using standard computer... 
    Digital
    Work at office
    Local area
    Remote work
    Work from home
    3 days per week

    Charles River Associates

    Chicago, IL
    3 days ago
  • Flynaut LLC. is seeking a Cybersecurity Analyst in Chicago, IL to protect clients’ digital assets. As part of the Cybersecurity team, you will monitor security events, conduct incident response, and assist clients in compliance with security frameworks. Experience with... 
    Digital

    Flynaut

    Chicago, IL
    1 day ago
  •  ...Job Responsibilities Provide direct day-to-day management to an initial team of 5 security analysts. Oversee and continuously optimize end-to-end incident response workflows. Leverage specialized expertise to hunt for, detect, and neutralize sophisticated cyber threats... 

    Jobtailor

    Chicago, IL
    2 days ago
  •  ...our services. Join us at Crowe and embark on a career where you can help shape the future of our industry. Job Description: Incident Response Manager Position Summary The Incident Response Manager serves as a senior technical leader responsible for managing complex... 

    Crowe

    Chicago, IL
    1 day ago
  •  ...using ICT to tackle poverty and overcome disadvantage, working closely with local communities. We are seeking an accomplished Incident Response Manager. Job Description Must Have: 5+ years’ hands‑on experience in IT Experience with legal operations Experience working... 
    Local area
    Night shift

    360-IT-Professional

    Oak Brook, IL
    1 day ago
  •  ...Continue to develop the company's incident response program. Utilize and adhere...  ...analysis, create metrics, management dashboards, administer...  ...cyber incidents. Leverage forensic tools, techniques, and capacities...  ...who have experience as a Digital Forensics and Incident Response... 
    Digital
    Work at office
    Local area
    Remote work
    Relocation
    Visa sponsorship

    Niche Talent Finders

    Chicago, IL
    1 day ago
  • A leading global food retailer is seeking a Security Engineering Manager to safeguard their technology environment in Chicago. This role involves enforcing security policies, managing incident responses, and collaborating with IT and business teams. The ideal candidate... 
    Flexible hours

    ViziRecruiter,LLC.

    Chicago, IL
    10 hours ago
  •  ...consider a career in Advisory. We are currently seeking a Manager, Incident Response to join our Advisory practice. Responsibilities Lead...  ..., and cross functional stakeholder management (legal, forensics, privacy, communications, and leadership) during high impact... 
    Full time
    Work experience placement
    H1b
    Local area

    KPMG

    Chicago, IL
    10 days ago
  • $108.08k - $192.46k

     ...Manager II Choosing Capgemini means choosing a company where you...  ...’ unique requirements. Responsible for software-specific design...  ...team to eliminate recurring incidents and to minimize the impact of...  ...accelerate their dual transition to a digital and sustainable world, while... 
    Digital
    Permanent employment
    Full time
    Contract work
    Local area
    Remote work
    Relocation
    2 days per week
    3 days per week

    Capgemini

    Chicago, IL
    5 days ago
  •  ...KPMG is currently seeking a Manager, Forensic Technology to join our...  ...Services practice. Responsibilities: Manage and advise...  ...Windows platforms to uncover digital evidence Consult...  ...line Digital Forensics and Incident Response (DFIR) tools and techniques to... 
    Digital
    H1b
    Local area

    KPMG

    Chicago, IL
    4 days ago
  •  ...empower and facilitate trust for a digital-first world. Today,...  ...handle crucial security and PR incidents daily. Champion Outtake'...  ...how we can transform incident response and brand protection on a global...  ...remains the premier incident management and brand protection platform... 
    Digital
    Work at office
    Immediate start
    Flexible hours

    Outtake

    Chicago, IL
    4 days ago
  • $12 per day

     ...Summary & Objectives The Senior Marketing Manager will spearhead the development and...  ...’s specialized services in cyber incident response, digital asset security, and crypto investigations...  ...incident response and cryptocurrency forensics and investigations. Cultivate and... 
    Digital
    Local area
    Immediate start
    Remote work
    Flexible hours

    DigitalMint

    Chicago, IL
    2 days ago
  •  ...enforces school protocols in response to emergency situations....  ...administration on best practices for managing student movement throughout...  ...of student or staff incidents. Assists the administration...  ...to operate functionally in a digital environment for communication... 
    Digital
    Full time
    Local area
    Day shift
    Afternoon shift

    Meridian Charter Schools

    Chicago, IL
    28 days ago
  •  ...01(c)(3) organization. This position is responsible for coordinating the effective operation...  ...solution when violations occur. Utilize our digital guest registry system to create room...  ...and other needs of the families. Complete incident reports and submit within 24 hours of... 
    Digital
    Temporary work
    Work experience placement
    Work at office
    Monday to Friday
    Monday to Thursday
    Flexible hours
    Shift work
    Night shift
    Day shift

    Ronald McDonald House Chicago

    Chicago, IL
    3 days ago
  • $150k - $170k

    The Microsoft 365 Platform Manager owns the definition, evolution,...  ...The role partners closely with Digital Workplace leadership, Cyber...  ...ensure intentional, scalable, and responsible use of Microsoft 365...  ...365 administration. Routine incident management or operational escalation... 
    Digital
    Full time

    UL, LLC

    Chicago, IL
    2 days ago
  • $80k - $100k

    Onsite Manager - Workplace Services The Onsite Manager - Workplace Services is responsible for end-to-end management of onsite IT support, collaboration, and digital workplace services. This role oversees Desktop...  ...point for high‑severity incidents and service disruptions.... 
    Digital
    Shift work
    2 days per week

    Genpact

    Chicago, IL
    2 days ago
  •  ...We are seeking an IT Service Manager to support and strengthen core IT service management practices across the firm. Reporting...  ...trading environment. The role will have significant responsibility across Major Incident Management, Problem Management, Change Management, and... 

    Balyasny Asset Management

    Chicago, IL
    1 day ago
  • $80k - $90k

     ...Overview The Safety & Security Manager contributes to the...  ...voluntary long-term disability. Key Responsibilities Ensure compliance with state...  ...;; Assists with the incident management process including...  ...coordinate Audits TAS Safety digital files to maintain a clean working... 
    Digital
    Temporary work
    Work at office
    Local area
    Shift work
    Weekend work

    Transdev

    Chicago, IL
    2 days ago
  •  ...Overall ownership of Major Incident Management shall be established, including leadership and governance of all P1 and P2 incidents to ensure...  ..., minimal business impact, and adherence to agreed response and resolution targets. Command and control during... 

    Diverse Lynx

    Chicago, IL
    5 days ago
  • $19.35 - $21.53 per hour

     ...Opportunity The Service Leader is responsible for maintaining a positive...  ...Helping to resolve customer incidents and working to ensure...  ...dental, and vision insurance Digital Tips Paid time off Holiday...  ...Opportunities for advancement (80% of managers started as Crew) PAY... 
    Digital
    Work at office
    Local area
    Shift work

    Chipotle Mexican Grill

    Chicago, IL
    1 day ago
  • $125k - $150k

     ...Job Description Job Title: Engineer Manager - Forensics Department: Engineering Reports...  ...5,000 - $150,000 / year Summary: Responsible for being a qualified and/or licensed...  ...Desktop IP Phone and/or Cell phone • Digital camera • Ladder • Moisture meter... 
    Digital
    For contractors
    Work experience placement
    Work at office

    LaBeau Collective Talent Partners

    Chicago, IL
    4 days ago
  •  ...AI-powered identity platform manages and governs human and non-human...  ...Saviynt to safeguard their digital assets, drive operational efficiency...  .... This person is ultimately responsible for the entire enterprise...  ...& Handling Policy Incident Response Policy/Procedures... 
    Digital

    Saviynt

    Chicago, IL
    3 days ago
  • $100k - $140k

     ...processes across cloud-based claims management, virtual vehicle appraisals,...  ...and influencers. Responsibilities: Manage sales activities...  ...and decision-makers in the digital Property and Casualty claims...  ...EAP) with 6 sessions per life incident to support your mental well-... 
    Digital
    Full time
    Temporary work
    Casual work
    Local area
    Remote work
    Visa sponsorship
    Work visa
    Flexible hours

    Snapsheet

    Chicago, IL
    4 days ago
  • $151.2k - $226.8k

     ...Sustainability, Commercial, Digital and E-commerce, Technology and more. Overview Senior Manager, Service Now Platform Operations...  ...managers and engineers responsible for delivering capabilities,...  ...technical debt, stepping into incident and root‑cause analysis when... 
    Digital
    Full time
    Work at office
    Remote work
    Flexible hours

    ViziRecruiter,LLC.

    Chicago, IL
    1 day ago
  •  ...Solina is looking for an IT Project Manager (US) to lead the delivery of...  ...Level 3 expertise for complex incidents. This position will be based in US. Key Responsibilities Demand intake & scoping Gather...  ...demand against the Group digital roadmap and standard solutions... 
    Digital
    For subcontractor
    Local area

    Solina

    Oak Brook, IL
    1 day ago
  • $147.76k - $240.11k

     ...Career Area: Technology, Digital and Data Job Description:...  ...technology arm of Caterpillar Inc., responsible for bringing world class...  ...improvement of quality management practices across the Cat® Foresight...  ...and release plans. Leads incident response and coordination... 
    Digital
    Part time
    Work at office
    Worldwide
    Flexible hours

    Caterpillar

    Chicago, IL
    3 days ago
  • $187k - $250k

     ...executive leadership role is responsible for ensuring the reliability...  ...business operations, digital transformation initiatives,...  ...Drive technology lifecycle management, modernization initiatives,...  ...best practices. Oversee incident, problem, change, request, asset... 
    Digital
    Remote work

    Sterling Engineering Inc.

    Chicago, IL
    6 days ago

Do you want to receive more vacancies?

Subscribe and receive similar vacancies to Digital Forensics & Incident Response (DFIR) Manager. Be the first to apply!