Incident Response Commander

We are looking for a knowledgeable Incident Manager for our Integrated Global Services branch located in Calgary, Vancouver, Edmonton or Toronto to support our clients with utilizing strong technical, incident management, and leadership skills to support our large enterprise clients. This role will ensure high-priority incidents are resolved effectively, following ITIL best practices, and in alignment with client-specific requirements! Our anticipated date of hire for this role is April/May 2026.

A Day in the Life::
• Ability to work evenings and weekends

• Lead and oversee complex, high‑profile cyber incident response and investigation engagements, guiding clients through preparation, response, and recovery

• Direct and participate in hands‑on investigative work during critical or high‑impact incidents, including ransomware investigations

• Manage multiple concurrent incident response projects across a diverse client base, spanning various industries, technologies, and geographies

• Act as the primary point of contact for clients, building trusted‑advisor relationships and ensuring high‑quality, consistent service delivery

• Oversee technical investigations to ensure thorough analysis of large‑scale cyber incidents and data breaches

• Design and facilitate both technical and executive workshops covering incident response, network security, vulnerability management, and related topics

• Provide strategic guidance on incident containment, remediation, and recovery using best‑practice frameworks such as NIST and SANS

• Lead and support the execution of tabletop simulation exercises for technical teams and executive stakeholders

• Oversee the creation of high‑quality deliverables, including detailed investigation reports, executive briefings, and remediation recommendations

What You Bring::
• 5+ years of experience in digital forensics and incident response, or a closely related field

• 2+ years in a leadership or managerial role

• Experience managing incident response engagements:

• ransomware, data breaches, business email compromise, network intrusions, cloud incidents

• Ability to investigate and respond to ransomware attacks, including familiarity with ransomware TTPs, negotiation processes, and decryption/recovery strategies

• Experience with industry-standard digital forensic tools:

• Magnet Axiom, Encase, XWays, FTK, Velociraptor, etc

• Experience with EDR tools:

• CrowdStrike Falcon, Carbon Black EDR, Microsoft Defender for Endpoint, etc

• Familiarity with security monitoring solutions:

• Splunk, Microsoft Sentinel, Elastic/ELK, etc

• Understanding of SOC operations, operating systems, file systems, cloud platforms (Azure, AWS, GCP), and enterprise IT infrastructure

• Experience leading and mentoring teams in high-pressure, dynamic environments

• Strong ability to communicate complex technical concepts to both technical and non-technical stakeholders, including executive leadership

• Demonstrated client management and relationship-building skills

• Excellent time management and organizational abilities

What Makes You Extra Awesome::
• Digital forensics and incident response certifications:

• SANS GIAC GCFA, GCFE, GCIH, GREM, EnCE, CCE

Why Work at Long View::
• Great people and culture

• RSP Plan

• Career growth – Permanent staff positions, paid training, career life planning, and relocation and travel opportunities

• Interesting work – Be part of exciting projects while accessing all the latest technologies

Want to learn more about our culture and life at Long View? Check us out on LinkedIn and Instagram!