Job DescriptionManaging Director, Digital Forensic and Incident Response (DFIR)As the Managing Director for our DFIR business, you will lead a high-performing team of cybersecurity professionals in providing rapid response to cyber incidents and strategic guidance to clients across various industries. You will oversee incident investigations, manage executive relationships, and drive the growth of our DFIR business.
Responsibilities: - Lead and manage complex cyber incident response engagements including ransomware, data breaches, business email compromise, and insider threats.
- Serve as a trusted advisor to C-level executives, legal counsel, and board members during and after cyber incidents.
- Direct digital forensics, threat intelligence gathering, root cause analysis, and remediation planning.
- Develop and implement playbooks, frameworks, and best practices for incident response.
- Build and scale the incident response consulting team, including hiring, training, and mentoring.
- Drive business development by building client relationships and identifying new service opportunities.
- Oversee engagement delivery, ensuring quality, timeliness, and compliance with industry and regulatory standards.
- Collaborate with legal, insurance, and law enforcement stakeholders as necessary.
- Represent the firm at industry events and in the media as a thought leader in incident response and cyber resilience.
Requirements: - 12+ years of experience in cybersecurity, including at least 7 years in incident response or digital forensics.
- 5+ years of leadership experience in a consulting or professional services environment.
- Deep expertise in cyberattack lifecycle, threat actor TTPs, and security frameworks (e.g., NIST, MITRE ATT&CK).
- Strong business acumen and client-facing skills, including experience presenting to executives and boards.
- Proven track record of managing large-scale incidents and crisis situations.
- Relevant certifications such as CISSP, CISM, GCFA, GCIH, or CISA are preferred.
- Bachelor's or Master's degree in cybersecurity, information technology, or a related field.
About KrollJoin the global leader in risk and financial advisory solutions-Kroll. With a nearly century-long legacy, we blend trusted expertise with cutting-edge technology to navigate and redefine industry complexities. As a part of One Team, One Kroll, you'll contribute to a collaborative and empowering environment, propelling your career to new heights. Ready to build, protect, restore and maximize our clients' value? Your journey begins with Kroll.
Kroll is committed to equal opportunity and diversity, and recruits people based on merit.
In order to be considered for a position, you must formally apply via careers.kroll.com.
#LI-Remote.
