Cybersecurity Incident Commander

SoFi

Quick summary

Work type
On-site
Location
Seattle, WASan Francisco, CA
Salary
$134,400–$231,000 / yr
Posted
20 days ago
Nearby
99+ roles within 25 mi

Market check

Salary context

Competitive pay

How this pay compares to similar roles

Similar $169k
This role $183k
$117k most similar roles pay here $243k

This role pays more than 61% of similar roles. Most pay $142,400–$195,250 — the shaded band above. At the midpoint, this role pays about $183k versus about $169k for comparable roles.

Based on 239 similar postings.

Employer

About SoFi

SoFi Technologies is a fintech company offering student and personal loans, mortgages, credit cards, investing, banking, and insurance products, positioning itself as a one-stop financial services platform. Industry: Financial Technology & Personal Finance

SoFi currently has 31 open roles on FindRole.

Listed pay typically runs $153,600–$253,000 across 31 roles with salary data.

Most-posted roles

View all roles at SoFi

At a glance

TL;DR · Cybersecurity Incident Commander

Apply Now Log in to save

We are seeking a Cybersecurity Incident Commander to join SoFi’s Cyber Defense program at the senior level, responsible for leading incident command efforts across the organization. This role involves managing security incidents from detection through resolution, coordinating cross-functional teams including SOC Analysts, Threat Research, and Engineering, and ensuring effective communication and documentation throughout active events. The ideal candidate will have 3-7+ years of experience in cybersecurity operations with a strong understanding of incident response frameworks like NIST 800-61, and the ability to handle high-severity incidents such as ransomware attacks or data exfiltration. Familiarity with security technologies including SIEM, EDR, and cloud-native tools is preferred, along with excellent communication skills for both technical and non-technical stakeholders in fast-paced environments.

Skills

NIST 800-61 SIEM EDR IAM AWS GCP Azure MITRE ATT&CK CISSP CISM GCIA GCIH GCED PCI SOX GLBA

What you'll do

  • Serve as primary Security Incident Commander for incidents identified by the SOC.
  • Manage end-to-end lifecycle of security incidents from triage to resolution.
  • Establish and maintain incident command during high-severity or large-scale events.
  • Facilitate cross-functional collaboration and decision-making across technical teams.
  • Ensure consistent documentation of incident timelines, impact assessments, and actions.
  • Coordinate post-incident reviews for root cause analysis and remediation tracking.

What we're looking for

  • 3-7+ years of experience in cybersecurity operations, incident response, or SOC environments.
  • Direct experience coordinating or leading security incident response efforts in enterprise settings.
  • Strong understanding of the incident response lifecycle and frameworks like NIST 800-61.
  • Experience handling high-severity incidents such as ransomware, insider threats, and data exfiltration.
  • Excellent written and verbal communication skills for both technical and non-technical stakeholders.
  • Ability to facilitate cross-functional communication and drive accountability during live incidents.
  • Strong organizational skills with the ability to manage multiple concurrent incidents independently.

Related searches

More Cybersecurity Incident Commander jobs Cybersecurity Incident Commander jobs in Seattle All jobs at SoFi

More like this

Similar roles

Cyber Defense Incident Responder

Booz Allen Hamilton

Arlington, VA +1 2 days ago $99,000$225,000
SIEM Cyber Threat Intelligence Incident Response Network Monitoring Security Vulnerability Scans Threat Assessment Event Data Analysis MALWARE ANALYSIS SECURITY MONITORING TOOLS Remediation Efforts Risk Management Project Management Tools MS Project Excel PowerPoint Confluence
Save

Cybersecurity Specialist

Leidos

Beavercreek, OH 30 days ago $107,900$195,050
RMF DISA STIGs Nessus SCAP ICD 503 Risk Management Framework DoD Manual 8570 CISSP CompTIA Security+ Agile Atlassian JIRA Confluence Python Shell scripting AWS Azure Google Cloud Platform Kubernetes Terraform
Save

Cybersecurity Strategy and Communications Lead

3M

Maplewood, MN 40 days ago $164,612$201,193
PowerPoint Microsoft Office Suite SharePoint Online Adobe Creative Suite Project Management Tools Cybersecurity Platforms CI/CD Cloud Services Databases Python JavaScript HTML CSS Web Content Management Systems Digital Design Software Collaboration Tools Terraform AWS Kubernetes
Save

Cyber Incident Responder

Booz Allen Hamilton

Falls Church, VA +1 7 days ago $86,800$198,000
AWS IAM CloudTrail CloudWatch GuardDuty SecurityHub Inspector Config EC2 S3 VPC Lambda EKS RDS Route53 NIST incident response life cycle Python Bash Intrusion detection technologies
Save

Cybersecurity Technical Lead

Booz Allen Hamilton

Lexington, MA 34 days ago $112,900$257,000
AWS Azure SIEM SOC Agile Python Bash REST APIs SQL NoSQL Terraform CI/CD IaC NIST RMF Elastic SIPRNet JWICS
Save

Cybersecurity Shared Services Engineering Director

3M

Maplewood, MN +1 37 days ago $250,253$305,864
CrowdStrike ForcePoint Venafi MDE APIs containers CI/CD Terraform AWS Azure Python PostgreSQL Kubernetes Prometheus Grafana Docker GitLab Ansible SaltStack
Hybrid
Save