Position Overview
As our Program Manager for the Security Incident Response department, you’ll be at the nexus of Autodesk’s global IR mission, stitching together data‑driven insights, stakeholder input, and cross‑regional collaboration into a living, breathing program that keeps pace with today’s threats. You’ll deep‑dive into the dashboards you architected to uncover subtle upticks in mean time to detection (prompting playbook tweaks), and then lead Quarterly Business Reviews by weaving SOAR pipeline metrics, Legal and Product feedback, and executive priorities into a concise slide deck that guides our roadmap.
You’ll be partnering with Product, Engineering, and Risk stakeholders to blueprint the new Security Onboarding program, mapping out telemetry checkpoints, designing interactive IR workshops for major businesses, and ensuring every product has the right sensors feeding our SIEM. In summary, you combine storytelling, engineering discipline, and global collaboration to continuously raise the bar on incident investigation and organizational learning.
Responsibilities
Program direction
* Work with department manager to develop incident response charter, strategy and multi‑year roadmap
* Define service level objectives and agreements and establish audit frameworks with regular drills
* Embed regulatory frameworks such as FedRamp, NIST, ISO, and GDPR into incident response policies
* Track program spend and calculate return on investment for tools
* Development and presentation of dashboards for Key Performance Indicators and lead monthly business reviews
Stakeholder leadership
* Share IR program with security operations, legal, product, engineering, and business teams
* Coordinate executive briefings, post‑incident reviews, and steering‑committee sessions
* Design and deliver security onboarding for business units and track completion metrics
Operational excellence & process improvement
* Map incident workflows to identify gaps and drive process improvements
* Partner with the Triage Manager and Detections Engineering to implement SOAR and SIEM automation and enhance telemetry pipelines
* Ensure consistency of triage and investigation processes across regions
Capacity building
* Develop and deliver recurring training modules, simulation scenarios and tabletop exercises
* Collaborate with operations and engineering teams to validate readiness and refine playbooks
Minimum Qualifications
Experience
* 5+ years in cybersecurity, with 2+ years managing or program‑managing IR/SOC functions in a large, 24/7/365 environment
* Proven track record of scaling IR processes and tooling across multiple regions
Technical Acumen
* Familiarity with SIEM (Splunk preferred), SOAR platforms, ticketing systems (JIRA), and metrics dashboards
* Solid understanding of the incident lifecycle, forensics basics, and telemetry pipelines
Program Management Skills
* Certified PMP, PgMP, or equivalent; Agile/Scrum experience a plus
* Expertise in areas i.e., OKR, developing program road maps, budget planning, SOW development, and vendor negotiation
Core Skills
* Exceptional communicator and collaborator; comfortable with executive‑level presentations
* Strong analytical mindset with a bias for action and continuous improvement
Education & Certifications
* Bachelor's in computer science, Information Security, or related field; advanced degree a plus
* Relevant certifications (CISSP, CISM, CRISC) highly desirable
#J-18808-Ljbffr