Can I apply directly for this job on this page?

Yes, you can begin your application on this page using a quick form. You'll then be redirected to the employer's career site to complete the full application process.

What type of employment is offered for this Senior Director, Digital Forensics and Incident Response role?

Full-time or part-time position

What is the expected salary for this Senior Director, Digital Forensics and Incident Response job?

Compensation will be discussed during the hiring process.

Senior Director, Digital Forensics and Incident Response job near me in United States, Other / Non-US at Jobgether

Senior Director, Digital Forensics and Incident Response

This position is listed on behalf of a partner company, who manages all applications and next steps. Our partner is looking for a Senior Director, Digital Forensics and Incident Response based in United States.

This senior leadership role sits at the forefront of high-stakes cyber incident response, guiding organizations through some of their most critical security events.
You will act as the incident commander for complex digital forensics engagements, leading investigations from initial detection through containment, recovery, and post-incident analysis.
The role combines deep technical DFIR expertise with executive-level advisory responsibilities, engaging directly with C-suite leaders, legal counsel, insurers, and technical teams.
You will oversee multiple concurrent investigations across ransomware, cloud compromise, identity attacks, insider threats, and advanced persistent threats.
In addition to hands-on incident leadership, you will play a key role in mentoring DFIR teams and shaping client readiness and response strategies.
This is a high-impact position where composure, precision, and leadership directly influence business continuity and security outcomes.

Accountabilities:

Lead end-to-end digital forensics and incident response engagements, acting as incident commander during complex cyber events.
Serve as the primary client-facing lead, advising executives, legal teams, insurers, and key stakeholders during active incidents.
Direct investigations across ransomware, cloud/identity compromise, email breaches, insider threats, and advanced attack scenarios.
Oversee forensic analysis across endpoints, cloud environments, identity platforms, SaaS applications, email, and networks.
Translate technical findings into clear business risk insights and actionable remediation recommendations.
Lead executive briefings, incident updates, and post-incident reviews to support recovery and resilience.
Manage multiple concurrent incidents in fast-paced, high-pressure environments with competing priorities.
Mentor and develop DFIR consultants and contribute to capability building across technical teams.
Support incident readiness activities, including tabletop exercises and preparedness planning for clients.

Requirements:

10+ years of experience in cybersecurity, including strong exposure to incident response and digital forensics.
6+ years in client-facing consulting, advisory, or security operations roles supporting enterprise or regulated environments.
Proven experience as an incident commander or senior DFIR lead managing high-severity security incidents.
Strong expertise in ransomware investigations, cloud/identity compromise, and complex threat actor analysis.
Deep technical knowledge of endpoint, cloud, identity, SaaS, email, and network forensic environments.
Experience with DFIR tools such as EnCase, FTK, Magnet AXIOM, Velociraptor, Splunk, Sentinel, or CrowdStrike.
Familiarity with platforms such as Microsoft 365, Azure, AWS, Entra ID, Okta, and Google Workspace.
Working knowledge of scripting or query languages such as KQL, SPL, SQL, PowerShell, Python, or Bash.
Strong executive communication skills with the ability to translate technical issues into business impact.
Proven leadership ability under pressure, with experience mentoring and guiding technical teams.
Bachelor’s degree in a related field or equivalent professional experience.
U.S. citizenship required for eligibility on certain federal engagements.

Benefits:

Competitive senior leadership compensation package with performance-based incentives.
Comprehensive health, dental, vision, and retirement benefits.
Opportunity to lead high-impact global cyber incident response engagements.
Exposure to advanced threat environments and complex enterprise investigations.
Work alongside highly experienced DFIR and former government cybersecurity experts.
Strong professional development opportunities, including leadership growth in a global cybersecurity organization.
Remote flexibility within the United States with engagement in high-profile cases.

How Jobgether works:

We use an AI-powered matching process to ensure your application is reviewed quickly, objectively, and fairly against the role's core requirements. Our system identifies the top-fitting candidates, and this shortlist is then shared directly with the hiring company. The final decision and next steps (interviews, assessments) are managed by their internal team.

We appreciate your interest and wish you the best!

Why Apply Through Jobgether?

Data Privacy Notice: By submitting your application, you acknowledge that Jobgether will process your personal data to evaluate your candidacy and share relevant information with the hiring employer. This processing is based on legitimate interest and pre-contractual measures under applicable data protection laws (including GDPR). You may exercise your rights (access, rectification, erasure, objection) at any time.

#LI-CL1

Senior Director, Digital Forensics and Incident Response in United States at Jobgether

Explore Related Opportunities

Job Description

Scan to Apply

Job Location

Frequently asked questions about this position