At WithSecure™, we protect businesses all over the world. Our SaaS solutions safeguard against modern cyber threats, and our innovative Co-security approach reflects our belief that true protection requires collaboration and shared expertise. No one can solve every cyber security problem alone. Our vision is to become Europe’s flagship in cyber security. Every day, our talented teams work to prevent cyber extortion, secure critical infrastructure, and prevent misuse of sensitive data. At WithSecure, it’s our people who make us exceptional – a diverse community that values passion, purpose, and a commitment to workplace well-being. If you’re ready to make an impact with a company that’s transforming cybersecurity, we’d love to hear from you.

Are you a cybersecurity leader who thrives under pressure and knows how to navigate both technical complexity and business strategy? We're seeking an Incident Response Manager to lead our IR function—someone who can handle high-stakes incidents like ransomware attacks and confidently engage with customers, parners and stakeholders.

What You’ll Do

• Lead and manage end-to-end incident response investigations, including critical incidents such as ransomware, data breaches, advanced persistent threats, and pro active table top endeavors.

• Act as an escalation point when needed.

• Develop and maintain incident response processes, procedures and tools.

• Collaborate with clients to understand their needs and tailor IR services accordingly.

• Draft and respond to RFPs, prepare proposals, and create Statements of Work (SoWs).

• Oversee the day-to-day operations of the IR team, including resource planning, case management, and reporting.

• Provide executive-level briefings and post-incident reports to internal and external stakeholders.

What You Bring

• 5+ years in cybersecurity, with at least 2 years in incident response or threat detection.

• Proven experience managing high-impact incidents, including ransomware and coordinated cyberattacks.

• Strong technical background in areas such as malware analysis, digital forensics, SIEM, EDR, and network security.

• Experience managing or mentoring technical teams.

• Excellent written and verbal communication skills—able to translate technical findings into business language.

• Proven experience with client-facing documentation: RFPs, SoWs, proposals, and executive summaries.

• Familiarity with frameworks like NIST, MITRE ATT&CK, and ISO 27035 is a plus.

Bonus Points For

• Certifications such as GCFA, GCIH, CISSP, or CISM.

• Experience working in a consulting or MSSP environment.

• Ability to thrive in high-pressure, fast-paced environments

What will you get from us

· Competitive remuneration (plus overtime and on-call allowances)

· Research time

· Fully funded certifications

· The opportunity to lead investigations into some of the most significant cyber incidents globally.

· Client variety, work across technologies, sectors and industries, tackling diverse and challenging cases.