Cyber Security Engineer - Incident Management (8-11 yrs)

Posted on

Experience
8 - 11 yrs
Job Location
Hyderabad, India
Vacancy
1
Designation
Cyber Security Engineer
Job Type
ONSITE

Job Description

Job Summary:

The Incident Commander is a senior cybersecurity communications role responsible for leading stakeholder communication, coordination, and reporting during significant security incidents across Cubic. Working alongside the technical response lead, this person ensures updates to executives, customers, legal, compliance, and other key stakeholders are timely, accurate, and aligned with regulatory obligations, while also helping strengthen incident readiness through exercises, templates, and post-incident reviews.

Essential Job Responsibilities:

The responsibilities below provide a high-level view of what this role is expected to do and are intended to help external candidates quickly understand the scope of the position.

- Lead the coordination of communications and stakeholder engagement during significant cybersecurity incidents, ensuring information is shared clearly, consistently, and at the right level for each audience.

- Partner closely with technical incident responders and security leaders to understand developing events, assess business impact, and translate complex technical issues into clear, actionable updates.

- Prepare and deliver timely status updates, briefings, and situational reports for executives, internal business teams, customers, and other stakeholders throughout the incident lifecycle.

- Coordinate with legal, compliance, privacy, and business leaders to ensure incident communications are appropriate, accurate, and aligned with contractual, regulatory, and organizational requirements.

- Maintain accurate incident records, timelines, decisions, and communication logs so that key actions, updates, and outcomes are well documented during and after an event.

- Support customer and externally facing communication needs when incidents affect services, contractual obligations, or reporting expectations, helping ensure messaging is professional and consistent.

- Help drive incident readiness by maintaining communication templates, stakeholder contact information, notification processes, and other materials needed to support effective response.

- Participate in and help coordinate incident response exercises, simulations, and readiness activities that improve communication effectiveness and strengthen organizational preparedness.

- Contribute to post-incident reviews, executive summaries, and follow-up improvement actions by helping capture lessons learned and identify opportunities to enhance future response efforts.

- Provide escalation support and executive-ready communications during high-severity or high-visibility incidents, often under tight timelines and changing conditions.

- Build strong working relationships across cybersecurity, IT, legal, compliance, customer-facing teams, and business leadership to enable effective collaboration during complex incidents.

- Operate effectively in a fast-paced, high-pressure environment, maintaining sound judgment, attention to detail, and professionalism while supporting incidents that may require after-hours engagement or on-call participation.

Minimum Job Qualifications:

- The candidate must reside within commuting distance from the Cubic office in Hyderabad, Aparna Plaza, and be able to periodically travel within the region.

- University degree in Computer Science, Engineering, Cybersecurity, Information Technology, or Business Administration with relevant IT security experience; or equivalent professional experience at a commensurate level.

- A minimum of 10 years of related experience with a Bachelor's degree; or 8 years with a Master's degree; or equivalent work experience.

- A minimum of 5 years of hands-on experience in cybersecurity incident response, crisis communications, security operations, or a directly related field.

- Demonstrated experience managing complex, multi-stakeholder situations under time pressure, with the ability to produce accurate, clear, and concise written communications rapidly in high-stress incident conditions.

- Experience working in crisis communications, and working with communications to executive staff, legal and law enforcement, and external government officials. Experience needs to include work with North America and/or European jurisdictions.

- Excellent written and oral communication skills in English; strong analytical judgment and the ability to work effectively with executive leadership, legal counsel, technical engineers, and external stakeholders.

- Direct familiarity with ISO 27001 and PCI DSS incident response requirements or documented equivalent regulatory communications experience in a comparable regulated environment.

- Highly desired to familiarity with Incident Command System (ICS) Communication Hierarchy principles, NIST SP 800-61 Incident Response Communications, and/or Situational Crisis Communication Theory (SCCT).

- Experience running Disaster Recovery and Incident Response tabletop exercises.

Desirable Qualifications;

- Experience with ITIL-based incident management processes.

- Familiarity with Incident Command System / National Incident Management System (ICS/NIMS) communication principles.

- Crisis communications or public relations experience, particularly in a legal or regulatory environment.

- Experience in a regulated industry such as payment processing, defense contracting, healthcare, or financial services.

- Knowledge of or willingness to develop familiarity with relevant security and operational technologies including Microsoft Azure and AWS cloud environments, ITSM/ServiceNow, SIEM platforms (Splunk), and enterprise GRC tools (OneTrust).

- Wide-ranging experience with in-depth professional knowledge; capable of independently determining methods and procedures on new assignments, exercising judgment in selecting and adapting complex techniques, and producing results that may impact the entire security function. Networks with key contacts outside own area of expertise; uses persuasion in delivering messages that relate to the wider business. May be accountable through team for delivery of tactical business targets.

- Demonstrated experience developing or mentoring junior team members and managing a security exercise or communications training program.

No Referrers Available

There are currently no referrers available for this job. You can still apply, will let you know once there is any referrer available.