VP, Incident Response

Job Description:

Role Summary/Purpose:

The VP, Senior Incident Responder is a member of the Security Incident Response Team within the Joint Security Operations Center (JSOC). As a member of this team, you will lead the investigation and mitigation of complex cyber intrusions across on-premises, cloud and hybrid environments. You will drive improvements across the entire detection and response lifecycle, collaborating with cross-functional teams to develop and refine incident response protocols, enhance detection capabilities, and implement automated workflows. Your expertise will be pivotal in creating and maintaining runbooks, tuning existing detection analytics, and building new detection methodologies to enable faster, more efficient responses to emerging threats.

Our Way of Working

We’re proud to offer you choice and flexibility. At Synchrony, our way of working allows you to have the option to work from home, near one of our Hubs or come into one of our offices. Occasionally you may be required to commute to our nearest office for in person engagement activities such as business or team meetings, training and culture events.

Essential Responsibilities:

• Lead the investigation of advanced security incidents across multiple environments (cloud, on-premises, hybrid).

• Develop and lead incident response plans, ensuring all team members follow established protocols and procedures.

• Drive the enhancement of incident response capabilities by identifying gaps, proposing innovative solutions, and recommending automation opportunities to streamline processes, improve efficiency, and reduce response time across security operations.

• Coordinate with multidisciplinary teams across intel, detection engineering, and technology to develop and fine-tune detection rules, signatures, and playbooks to improve incident detection capabilities at scale.

• Proactively identify and address unique and complex detection and response challenges, applying innovative thinking and creative problem-solving to enhance the effectiveness of security operations and incident mitigation

• Mentor and guide junior team members within the JSOC by providing technical expertise, feedback, and formal reviews of security incident tickets and responses to ensure adherence to best practices, continuous learning, and overall team development.

• Perform other duties and/or special projects as assigned.

Qualifications/Requirements:

• Bachelor's degree in computer science or a related discipline, or equivalent work experience in information systems or intelligence required, advanced degree preferred.

• Minimum seven years of cyber security experience with at least five years focused on Incident Response, Threat Hunting, Detection Engineering, or other similar role withing cyber operations.

• Advanced expertise in collecting, analyzing, and interpreting forensic artifacts from a wide range of operating systems, including Windows, Linux, and macOS, with a deep understanding of their unique file systems, event logs, and incident-related data structures.

• In-depth understanding of EDR platforms and how they can be leveraged during incident response

• Proficient in using query languages such as SQL, SPL, KQL, and similar tools to extract, analyze, and correlate security data for incident investigation and threat detection.

• In-depth attack surface knowledge of one or more major cloud providers (AWS, Azure, GCP)

• Proficiency in using python or other similar scripting language to interact with APIs or manipulate large datasets for analysis.

• One or more relevant security certifications (GCIH, GCIA, GCFE, GCFA, SANS, AWS Certified Cloud Practitioner, AWS Certified Security Specialty, or comparable).

Desired Characteristics:

• Experience and familiarity with analytic standards and tradecraft

• Experience in the financial services sector

• Strong oral and written communications skills

• Strong analytical & critical thinking capabilities

• Expertise to clearly define complex issues despite incomplete or ambiguous information

Grade/Level: 12

The salary range for this position is 130,000.00 - 210,000.00 USD Annual and is eligible for an annual bonus based on individual and company performance.

Actual compensation offered within the posted salary range will be based upon work experience, skill level or knowledge.

Salaries are adjusted according to market in CA, NY Metro and Seattle.

Eligibility Requirements:

• You must be 18 years or older

• You must have a high school diploma or equivalent

• You must be willing to take a drug test, submit to a background investigation and submit fingerprints as part of the onboarding process

• You must be able to satisfy the requirements of Section 19 of the Federal Deposit Insurance Act.

• New hires (Level 4-7) must have 9 months of continuous service with the company before they are eligible to post on other roles. Once this new hire time in position requirement is met, the associate will have a minimum 6 months’ time in position before they can post for future non-exempt roles. Employees, level 8 or greater, must have at least 18 months’ time in position before they can post. All internal employees must consistently meet performance expectations and have approval from your manager to post (or the approval of your manager and HR if you don’t meet the time in position or performance expectations).

Legal authorization to work in the U.S. is required. We will not sponsor individuals for employment visas, now or in the future, for this job opening. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status.

Our Commitment:

When you join us, you’ll be part of a diverse, inclusive culture where your skills, experience, and voice are not only heard—but valued. We celebrate the differences in all of us and believe that our individual, unique perspectives is what makes Synchrony truly a great place to work. Together, we’re building a future where we can all belong, connect and turn ideals into action. Through the power of our 8 Diversity Networks , with more than 60% of our workforce engaged, you’ll find community to connect with an opportunity to go beyond your passions.

This starts when you choose to apply for a role at Synchrony. We ensure all qualified applicants will receive consideration for employment without regard to age, race, color, religion, gender, sexual orientation, gender identity, national origin, disability, or veteran status.

Reasonable Accommodation Notice:

• Federal law requires employers to provide reasonable accommodation to qualified individuals with disabilities. Please tell us if you require a reasonable accommodation to apply for a job or to perform your job. Examples of reasonable accommodation include making a change to the application process or work procedures, providing documents in an alternate format, using a sign language interpreter, or using specialized equipment.

• If you need special accommodations, please call our Career Support Line so that we can discuss your specific situation. We can be reached at 1-866-301-5627. Representatives are available from 8am – 5pm Monday to Friday, Central Standard Time

Job Family Group: