Source Job

$130,000–$165,000/yr
US

  • Lead multiple client-facing incident response engagements, guiding clients through the entire lifecycle from detection to recovery.
  • Conduct scoping calls and coordinate with cross-functional teams, legal counsel, and insurers to ensure high-quality service.
  • Produce clear reports on incident findings and share knowledge to foster continuous learning within the team.

Digital Forensics Incident Response Cybersecurity Linux Windows

20 jobs similar to Principal Engagement Lead

Jobs ranked by similarity.

$185,000–$200,000/yr
US

  • Lead and oversee complex client-facing incident response engagements from detection to recovery.
  • Manage and mentor a team of 3-5 forensic professionals, fostering a collaborative environment.
  • Collaborate with internal teams, external partners, and clients to refine incident response processes.

Surefire Cyber redefines incident response by delivering swift, stronger responses to cyber incidents like ransomware and data theft. The company was founded by industry veterans who have worked with law firms, insurance carriers, and law enforcement.

US

  • Perform incident response and forensic analysis of compromised systems, identifying and recommending remediation.
  • Formulate and direct incident response efforts, prioritizing actions and creating detailed reports on compromise vectors and attacker methodologies.
  • Build incident response plans, playbooks, and attack scenarios for customer tabletop exercises, maintaining sandbox environments to evaluate malicious code.

Check Point Software Technologies is the world's leading vendor of cyber security, facing sophisticated threats and attacks. Honored by Time Magazine as one of the World's Best Companies and on Forbes' list of the World's Best Places to Work, we have a global team of driven and innovative people.

US

  • Lead and mentor a team of Incident Response analysts during active security incidents.
  • Serve as the primary customer-facing lead during investigations and crisis situations.
  • Coordinate incident triage, containment, eradication, and recovery efforts.

Check Point Software Technologies is the world's leading vendor of cyber security, facing the most sophisticated threats and attacks. The company has been recognized by Time Magazine, Newsweek, and Forbes as a top employer, with a global team of driven and innovative employees.

Global

  • Handle complex security incidents, leading deep investigations and driving remediation actions.
  • Participate in a 24/7 on-call rotation to ensure timely response to critical security incidents.
  • Mentor L1/L2 analysts and drive improvements in detection capabilities and incident readiness.

Eurofins is an international life sciences company providing analytical testing services to ensure products are safe and authentic. With over 65,000 staff across 950+ laboratories in 59 countries, it offers a multicultural and entrepreneurial work environment.

UK

  • Monitor security events and provide technical analysis on alerts.
  • Lead information security incidents and employee insider investigations.
  • Coordinate building of services and technologies to support security operations.

Samsara is the pioneer of the Connected Operations Cloud, enabling organizations to harness IoT data for actionable insights. A recently public company, it fosters a collaborative and growth-minded culture focused on safety, efficiency, and sustainability.

$135,481–$182,160/yr
US

  • Monitor security events and provide technical analysis on alerts.
  • Lead information security incidents and employee investigations, developing response strategies.
  • Deliver security guidance and coordinate building services to support security operations.

Samsara is the pioneer of the Connected Operations Cloud, helping organizations that depend on physical operations harness IoT data to improve safety, efficiency, and sustainability. As a recently public company with a culture that encourages rapid career development, they support a flexible, employee-led remote model.

US 2000w PTO

  • Support post-incident recovery by collaborating with DFIR teams to assess the scope of cyber incidents.
  • Restore compromised systems to pre-incident states through data recovery, system configuration, and hardening.
  • Reimage and reconfigure endpoints, servers, and services such as Active Directory and Exchange.

Surefire Cyber is redefining incident response by delivering swift, strong responses to cyber incidents like ransomware and data theft. Backed by industry veterans, the company focuses on efficiency, predictability, and transparency for clients.

$71,640–$124,176/yr
US 4w PTO

  • Perform in-depth analysis, triage, and response to security threats following documented policies and playbooks.
  • Monitor and analyze security events using SIEM, EDR, and assess risk levels of cyber threats.
  • Escalate higher-risk events and collaborate with incident response teams to drive incident handling.

Experian is a global data and technology company that powers opportunities for people and businesses by redefining lending, preventing fraud, and creating digital solutions. With 23,300 employees across 32 countries, the company emphasizes inclusion, work-life balance, and has been recognized as a World's Best Workplace in 2024.

$60,000–$60,000/yr
US

  • Partner with business development teams to design tailored CIR solutions for clients.
  • Oversee end-to-end delivery of CIR services including intake, operations, and quality assurance.
  • Drive adoption of advanced tools and develop training programs for global teams.

Integreon is a global provider of legal and business solutions to law firms, corporations, and professional services firms. With over 3,000 employees worldwide, they offer multi-lingual support and a culture of continuous learning.

India

  • Lead daily MDR operations and guide security investigations.
  • Coach and mentor security analysts to improve performance.
  • Collaborate with engineering teams to enhance detection capabilities.

This company provides advanced Managed Detection and Response (MDR) services to protect organizations worldwide. It fosters a collaborative, inclusive culture with remote-first work and continuous learning opportunities.

US Unlimited PTO 12w maternity 12w paternity

  • Monitor logs, alerts, and telemetry to detect threats across infrastructure and cloud environments.
  • Perform in-depth security analysis and investigations to assess risk and identify root causes.
  • Coordinate and execute incident response efforts including containment, mitigation, and recovery.

Binance.US is a licensed and regulated U.S. crypto platform providing secure access to over 190 cryptocurrencies. As a remote-first team, we innovate to bridge traditional finance and Web3, helping bring financial freedom within reach for all.

UK 5w PTO

  • Research and create defensive security labs and crisis simulation content for the platform.
  • Work with the Product team on innovations and deploy new features.
  • Compile technical research into clear content for both technical and non-technical audiences.

Immersive Labs provides a cyber resilience platform that simulates real-world threats to test skills and measure performance. Founded in 2017, the company has grown to over 300 employees globally, secured over £150 million in funding, and been voted a best place to work.

Canada

  • Support cybersecurity operations by monitoring threats, improving security controls, and protecting systems and data.
  • Respond to security incidents, analyze threats, and assist with vulnerability management and remediation.
  • Collaborate with technical and business teams to assess risks and implement effective security solutions.

The company is a large, technology-driven organization focused on cybersecurity. It offers a collaborative environment with experienced security professionals and an inclusive workplace culture.

UK

  • Lead and support the response to all security events and incidents across Twilio's global infrastructure, services, and applications.
  • Work cross-collaboratively to solve challenges related to a broad spectrum of threat actors and improve security posture.
  • Own the security incident lifecycle, participate in on-call rotation, and conduct post-incident betterments.

Twilio shapes the future of communications with innovative solutions for hundreds of thousands of businesses, empowering millions of developers worldwide. The company embraces a remote-first work culture and a strong culture of connection and global inclusion, fostering a vibrant and diverse team.

$113,800–$139,000/yr
US

  • Protect on-premise and cloud infrastructure, detect and respond to advanced threats, and improve security posture through risk analysis and vulnerability management.
  • Manage and optimize security tools like SIEM, EDR, and IDS/IPS, and perform proactive threat hunting to anticipate new attack techniques.
  • Assess security controls for compliance, analyze threat trends, and participate in infrastructure initiatives to adhere to industry best practices.

Clear Capital is a national real estate analytics, data solutions, and valuation technology company. Since 2001, the company has focused on building confidence in real estate decisions, with a team that values integrity, kindness, and attention to detail.

Germany 4w PTO

  • Lead and oversee security operations, including SOC activities, detection engineering, incident response, and exposure management.
  • Build, mentor, and develop the Cyber Defense team through hiring, coaching, and talent retention.
  • Continuously improve detection capabilities and response procedures using threat intelligence and lessons learned.

Jobgether is an AI-powered job matching platform that connects candidates with hiring companies. It processes applications and shares shortlists with employers for final decisions.

Europe

  • Respond to security incidents as part of a distributed 24x7 on-call schedule, triaging and containing events.
  • Conduct security investigations and forensics across data sources to determine event timelines and impact.
  • Build automations leveraging AI and agentic platforms to expedite incident response and scale team impact.

Databricks is the data and AI company, providing a unified platform for data, analytics, and AI. More than 10,000 organizations worldwide, including over 50% of the Fortune 500, rely on Databricks, which fosters a diverse and inclusive culture.

$80,900–$137,600/yr

  • Monitors, investigates, and responds to cybersecurity events and alerts across various security platforms.
  • Manages data loss prevention and insider risk alerts, collaborating with IT and business stakeholders.
  • Supports continuous improvement of detection capabilities through alert tuning and process optimization.

USAP is a company that safeguards organizational data and technology assets through cybersecurity operations. The size and culture are not specified, but the job emphasizes collaboration, continuous improvement, and a secure technology environment.

$115,000–$176,000/yr
US UK Global

  • Support the lifecycle management of cybersecurity offerings, including ideation, design, and launch.
  • Partner with leadership to standardize services and create go-to-market sales collateral.
  • Perform competitive analysis and pricing to inform packaging and growth strategies.

Coalfire is on a mission to make the world a safer place by solving clients' hardest cybersecurity challenges. They are a team of thought leaders and consultants headquartered in Chicago with offices across the U.S. and U.K., supporting clients worldwide.

India

  • Investigate and analyze security alerts and incidents across endpoint, network, cloud, and identity environments.
  • Conduct proactive threat hunting, malware analysis, and deobfuscation of suspicious scripts.
  • Collaborate with senior analysts, document findings, and provide remediation recommendations.

The company operates a global Managed Detection and Response environment, protecting organizations from cyber threats. It has a remote-first culture with a collaborative team and opportunities for professional growth.