Principal / Partner Incident Response

New York, United States | Posted on 06/11/2025 Overview This is a leadership role to create and grow Cyber Incident Response (CIR) in the Americas, specifically: To be an exceptional leader with the ambition, ability and commercial acumen to build a market leading CIR capability in the United States. To win a significant increase in retained and panel work, transforming our client traction and market penetration. To lead on the delivery of complex cyber incident response cases in the Americas, and elsewhere as appropriate. To oversee all aspects of regional commercial, financial, and operational management for CIR in the Americas. To recruit, develop, and manage high quality crisis management, technical forensics and client-facing resources. To work seamlessly with our global lead for CIR in London to ensure our go-to-market positioning and operational delivery is coordinated. To work side-by-side with our Threat Intelligence, Advisory, and Assurance teams to drive deeper market penetration across all parts of Digital Risks in the US. To work with the Digital Risks leadership team in the region and globally and to actively contribute to global initiatives. Leadership and enablement Provide clear, visible, and energetic leadership, generating a significant step change in a growing business. Recruit, motivate and lead an America-based team on strategy, operations, people and learning and development. Ensure the regional plan is aligned to the global strategy and fully integrated into the Digital Risks and wider business. Foster a culture of collaboration and One Firm behaviour. Brand and market Execute an ambitious US and regional market strategy, ensuring it is anchored in global priorities and focused on retained and panel channels to market. Actively promote as a trusted cyber responder and enhance our broader credentials as a strategic advisor on cyber and technology risk. Secure and expand critical corporate, legal, insurer, and underwriter relationships in the US as a key priority, as well as through more strategic, C-suite Tier-1 buyer relationships. Execute business development initiatives supported up by clear account, sales and marking plan. Act as a brand ambassador and thought leader for Digital Risks, both internally and in the market. Delivery Achieve major origination, with a focus on achieving a significant increase in corporate retainer and insurance/law firm panel work. Lead on the delivery of complex cyber incident response cases in the Americas, and elsewhere as appropriate. Co-develop with the global team technical response Standard Operating Procedures (SOPs), ensuring they kept up to date with the latest threats. Identify Partnership opportunities regionally/globally to drive business growth. Work with the global CIR team to identify technologies which improve efficiencies and client services. Response-specific expertise Have led the lifecycle of a cyber incident including identification, containment, eradication and recovery and senior stakeholders through key decisions during a major incident or crisis. Expertise in threat hunting using EDR tooling to evaluate an attacker's spread through a system and network, anticipating and thwarting further attacker activity, and in live compromise assessments for organisations who suspect a compromise. Demonstratable understanding of existing and emerging threat actors, as well as experience in identifying rapidly changing tools, tactics and procedures of attackers. Deep experience in advising on the safe technical recovery of an organisations IT systems balancing the need to understand what has happened but speed up recovery. Qualifications 15+ years’ experience in cyber security and related disciplines, particularly in cyber incident response. Track record of developing trusted advisor relationships with senior C-level decision makers in Fortune 500 companies and with law firms and insurers. Ability to respond to advanced threats leveraging forensics and threat hunting technology. Deep subject matter expertise, including considerable knowledge of current and emerging advanced threat actors. Significant experience of delivering high value and more commoditised CIR services in the US market. Proven experience of operating in senior security and commercial consulting roles. #J-18808-Ljbffr DWH Recruitment Limited