At WHOOP, we’re on a mission to unlock human performance and healthspan. Our wearable technology provides personalized insights that help millions of members better understand their bodies and make smarter decisions about training, recovery, and lifestyle.
We are seeking a Incident Response Lead to drive security incident response across the enterprise. In this role, you will serve as the primary internal escalation point and hands-on responder for security incidents, partnering closely with WHOOP’s 24x7 SOC provider and cross-functional stakeholders to investigate, contain, and remediate threats.
This is a highly technical individual contributor role with significant ownership and visibility across Security, IT, GRC, and Legal.
RESPONSIBILITIES:
Lead hands-on incident response activities, serving as the primary internal escalation point for security events
Serve as the central incident commander across Security, IT, GRC, and Legal during active incidents
Partner with the SOC to validate alerts, guide investigations, and drive containment and eradication efforts
Conduct host, cloud, and log-based investigations, and coordinate with external forensic firms when needed
Maintain and continuously improve incident response playbooks, escalation procedures, and communication workflows
Lead post-incident reviews and root cause analysis, ensuring remediation actions are clearly defined and tracked
Develop and execute tabletop exercises and incident simulations to test and strengthen response readiness
Partner with GRC and Legal to support breach impact assessments and regulatory notification processes
Drive continuous improvement of detection and response capabilities across SIEM, EDR, cloud monitoring, and identity systems
Own incident metrics and reporting, including response times, trends, and systemic risk reduction initiatives
Participate in an on-call escalation rotation to provide after-hours incident leadership when required
QUALIFICATIONS:
7+ years of experience in incident response, digital forensics, threat detection, or SOC operations
Proven experience leading incident investigations in complex, cloud-native environments
Strong experience conducting host, cloud, and log-based investigations
Hands-on expertise with SIEM platforms, EDR tools, and cloud security monitoring
Experience working with external SOC or MDR providers
Strong understanding of attack frameworks (MITRE ATT&CK) and their application to detection and response
Experience supporting breach response obligations under GDPR, HIPAA, PCI, or similar regulatory frameworks
Excellent communication skills with the ability to coordinate cross-functional stakeholders under pressure
Bachelor’s degree or relevant certifications (GCIH, GCFA, CISSP, or equivalent)
Top Skills
WHOOP Boston, Massachusetts, USA Office
1 Kenmore Sq, Boston, MA, United States, 02215
Similar Jobs at WHOOP
What you need to know about the Boston Tech Scene
Key Facts About Boston Tech
- Number of Tech Workers: 269,000; 9.4% of overall workforce (2024 CompTIA survey)
- Major Tech Employers: Thermo Fisher Scientific, Toast, Klaviyo, HubSpot, DraftKings
- Key Industries: Artificial intelligence, biotechnology, robotics, software, aerospace
- Funding Landscape: $15.7 billion in venture capital funding in 2024 (Pitchbook)
- Notable Investors: Summit Partners, Volition Capital, Bain Capital Ventures, MassVentures, Highland Capital Partners
- Research Centers and Universities: MIT, Harvard University, Boston College, Tufts University, Boston University, Northeastern University, Smithsonian Astrophysical Observatory, National Bureau of Economic Research, Broad Institute, Lowell Center for Space Science & Technology, National Emerging Infectious Diseases Laboratories
