Cyber Incident Response Manager

About Fever

We’re Fever, the world’s leading tech platform for culture and live entertainment. Our mission is to democratize access to culture and entertainment. With our proprietary cutting-edge technology and data-driven approach, we’re revolutionizing the way people engage with live entertainment.

Every month, our platform inspires over 300 million people in +40 countries to discover unforgettable experiences while also empowering event creators with our data and technology, helping them scale, innovate, and enhance their events to reach new audiences.

Our results? We’ve teamed up with major industry leaders like Netflix, F.C. Barcelona, and Primavera Sound, presented international award-winning experiences, and are backed by several leading global investors! To achieve our mission, we are looking for bar-raisers with a hands-on mindset who are eager to help shape the future of entertainment! Ready to be part of the experience?

Now, let’s discuss this role and what you will do to help achieve Fever’s mission.

About the Role

We are seeking a Cyber Incident Response Manager to strengthen and scale Fever’s global security posture across both cloud and corporate IT environments. In this role, you will mature our end-to-end incident response lifecycle and elevate our security operations capabilities to protect a fast-moving, high-growth global organization. You will lead the enhancement of detection engineering, refine incident response processes and runbooks, and extend security coverage into new operational areas.

Additionally, you will help grow and empower a specialized team focused on reducing response and containment times while driving continuous improvements in detection logic, automation and tooling.

What would you do at Fever?

On your first month in Fever:

• Be fully integrated into the team. You will participate in planning and follow-up meetings with other areas.
• Have met the departments of Fever.
• Get familiar with Fever's technological structure and ecosystem (applications, infrastructure, architecture, etc.).
• Gain a deep understanding of Fever’s cloud infrastructure, security stack and current IR processes.

After 3 months in Fever:

• Assess the current cyber incident response posture, threat detections and monitoring capabilities.
• Conduct a maturity assessment of IR processes for our cloud service providers (e.g. AWS) and other critical platforms.
• Review existing runbooks and identify gaps or areas for rapid improvement.
• Lead cross-functional tabletop exercises with engineering, data and operations teams.

On your 6th month in Fever:

• Build a prioritized action plan for strengthening transversal incident response across teams.
• Operate a mature, measurable and scalable incident response process.
• Deliver improved detection logic and automation that reduces mean time to identify, contain and mitigate incidents.
• Propose new detection strategies and execute improvements to threat intelligence and monitoring coverage.
• Optimize KPIs and expand reporting to ensure progress against security objectives.

Key Responsibilities

• Strengthen and scale the incident response program.
• Design, update and maintain IR processes, playbooks and runbooks tailored to cloud and corporate IT environments.
• Enhance detection engineering capabilities by collaborating with infrastructure, data and engineering teams.
• Lead response coordination efforts during incidents, ensuring rapid containment, eradication and recovery.
• Enhance monitoring and detection with integrated threat intelligence and advanced threat detection capabilities.
• Manage and mentor a specialized incident response team.
• Continuously assess and improve IR metrics, KPIs, dashboards and reporting methodologies.
• Conduct IR training, simulations and preparedness exercises across the organization.

About You

Must have:

• Strong understanding of modern security tooling, including SOAR platforms, cloud-native detection services, EDR solutions (e.g. CrowdStrike), SIEM platforms and automation technologies.
• Skilled in analyzing and correlating large-scale security telemetry across cloud, SaaS, and endpoint sources using languages and tools such as Python, AWS Athena, Google BigQuery, etc.
• Ability to rapidly automate data handling, detection logic and remediation workflows.
• Hands-on experience responding to security incidents in cloud environments.
• Ability to design, document and maintain IR runbooks, playbooks and tabletop exercises.
• 5+ years of experience in cybersecurity, with at least 2–3 years dedicated to leading an incident response process.
• Fluent in English (written and spoken).
• Analytical mindset and strong problem-solving skills.
• Excellent communication skills.

It would be a plus if you have:

• Bachelor or Master’s Degree in Computer Science, Information Security, or another similar relevant degree (or equivalent experience in a technical security role).
• Professional certifications demonstrating technical IR expertise and cloud security proficiency, such as GCIH, GCIA, GCFA, GEIR, AWS Security Specialty, or similar industry-recognized credentials.

Benefits & Perks

• Opportunity to have a real impact in a high-growth global category leader.
• 40% discount on all Fever events and experiences.
• Position based in Madrid, home office friendly.
• Relocation package for international candidates.
• Responsibility from day one and professional and personal growth.
• Great work environment with a young, international team of talented people to work with!
• Health insurance and other benefits such as Flexible remuneration with a 100% tax exemption through Cobee.
• English Lessons.
• Gympass Membership.
• Possibility to receive in advance part of your salary by Payflow.
• Attractive compensation package consisting of base salary and the potential to earn a significant bonus for top performance.

Thank you for considering joining Fever. We cannot wait to learn more about you!

If you want to learn more about us: Fever's Blog | Tech.Eu |TechCrunch

Fever is committed to creating an inclusive and diverse workspace where everyone's background and ideas count. Our main goal is to find the best possible talent regardless of place of birth, racial or ethnic origin, gender, gender identity, religion, opinion, sexual orientation, disability, pregnancy, marital status, age or caring responsibilities. We encourage everyone to apply!

If you require any kind of accommodation during the selection process please contact our Talent team so we can help you by providing a welcoming and seamless journey.

If you want to know more about how Fever processes your personal data, click here Fever - Candidate Privacy Notice

Key skills/competency

• Incident Response
• Cloud Security
• Detection Engineering
• Security Operations
• SOAR Platforms
• EDR Solutions (CrowdStrike)
• SIEM Platforms
• Python for Automation
• AWS Security
• Runbook Development