Apply

Ready to go for it?

AI Apply speeds things up—apply directly if you prefer.

FREE ACCESS
5,000–10,000 jobs/day
JobTailor Logo

See all jobs on JobTailor

Search thousands of fresh jobs every day.

Discover
  • Fresh listings
  • Fast filters
  • No subscription required
Create a free account and start exploring right away.
Arrive

Incident Response Lead – Global Security

Arrive

Leading Incident Response function to handle security incidents and enhance organizational cybersecurity resilience at Arrive. Working collaboratively with cross-functional teams to manage incident response and improvements.

Posted 5/19/2026full-timeŁódź • 🇸🇪 SwedenSeniorWebsite

ATS Keywords

Tailor your resume
Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills
incident responsedigital forensicsthreat huntingincident response methodologiesdetection use casesplaybook developmentsecurity technologiesnetwork protocolsoperating systemsenterprise infrastructure
Soft Skills
leadershipcommunicationanalytical skillsproblem-solvingcollaborationdecision-makingattention to detailteam culture developmentaccountabilitycontinuous improvement
Tools & Technologies
EDRSIEMSOARMSSPsecurity operationsautomation toolsincident management systemsthreat intelligence platformscrisis management toolsreporting tools
Certifications & Qualifications
GCIHGCFAGSOM
Industry Keywords
cybersecurityincident managementthreat intelligenceregulatory compliancebusiness impact assessmentsescalation proceduresroot cause analysisadversary tacticsoperational maturitytabletop exercises

Tech Stack

Tools & technologies
Cyber Security

About the role

Key responsibilities & impact
  • Own and lead the Incident Response function, including strategy, governance, and operational execution.
  • Direct and optimize daily IR operations, ensuring efficient handling of security incidents, escalations, and threat hunting activities.
  • Act as the central coordination point during major incidents, ensuring structured response, clear communication, and minimal business disruption.
  • Design, maintain, and continuously improve incident response playbooks, workflows, and escalation procedures.
  • Review and quality-assure investigations, ensuring consistency in analysis, evidence handling, and decision-making.
  • Collaborate with internal teams and external partners to ensure seamless incident management.
  • Lead, mentor, and develop the IR team, promoting technical excellence, accountability, and continuous learning.
  • Support crisis management activities, including participation in tabletop exercises and real-world incident coordination.
  • Ensure alignment with regulatory, legal, and compliance requirements related to incident response and breach handling.
  • Drive integration between detection engineering, threat intelligence, and response to enhance overall security effectiveness.
  • Proactively hunt for threats and integrate intelligence to anticipate attacks. Develop and refine detection content and rules (e.g., SIEM, EDR) to map against adversary tactics.
  • Identify gaps in current capabilities and lead initiatives to enhance tooling, automation, and operational maturity.
  • Build and maintain a strong collaboration with all are strategic MSSP and security vendors to enhance security operations and fully utilize available resources and expertise.
  • Produce and present executive-level reporting, including incident trends, root cause analysis, and business impact assessments.

Requirements

What you’ll need
  • Bachelor’s or Master’s degree in Cybersecurity, Information Technology, or a related discipline - a plus.
  • 10+ years of experience in cybersecurity, with significant hands-on involvement in Incident Response and Detection & Response functions.
  • Demonstrated experience leading and managing IR or SOC teams in complex environments.
  • Strong expertise in incident response methodologies, digital forensics, threat hunting, and attacker tactics, techniques, and procedures (TTPs).
  • Relevant certifications such as GCIH, GCFA, GSOM, or equivalent industry-recognized credentials - a plus.
  • Solid understanding of security technologies (EDR, SIEM, SOAR), network protocols, operating systems, and enterprise infrastructure.
  • Proven ability to translate technical findings into business-relevant insights and communicate effectively with senior stakeholders.
  • Experience developing and operationalizing playbooks, detection use cases, and response frameworks.
  • Strong analytical and problem-solving capabilities, with attention to detail under pressure.
  • Ability to lead in high-stress situations, make informed decisions quickly, and manage competing priorities.
  • Experience fostering a high-performing team culture focused on collaboration, ownership, and continuous improvement.
  • Excellent written and verbal communication skills, including experience delivering executive briefings.

Benefits

Comp & perks
  • Professional development opportunities
  • Flexible working hours