Job Description:Cyber Incident LeadCollaborate with Innovative 3Mers Around the WorldChoosing where to start and grow your career has a major impact on your professional and personal life, so it’s equally important you know that the company that you choose to work at, and its leaders, will support and guide you. With a variety of people, global locations, technologies and products, 3M is a place where you can collaborate with other curious, creative 3Mers.This position provides an opportunity to transition from other private, public, government or military experience to a 3M career.The Impact You Will Make in this Role:The Cyber Incident Lead will drive and coordinate our organization's cybersecurity incident response initiatives and is responsible for implementing a continuous testing strategy and conducting full-scale cyber exercises to identify and address inefficiencies and gaps in incident management. Based on these tests and exercises, the Cyber Incident Lead will design remediation plans with impacted groups to enhance their readiness and capabilities. This role will centralize the command center, streamline communication, and facilitate cross-functional collaboration among teams such as IAM, Infrastructure, and Network, ensuring comprehensive management of cyber incidents.Key Responsibilities: Management ​Lead and coordinate cross-functional response teams during cybersecurity incidents, ensuring timely decision-making and clear communication.Design, facilitate, and lead cyber tabletop exercises to test and enhance organizational preparedness, coordination, and decision-making under simulated attack scenarios.Develop and maintain the organization’s cyber incident response strategy, playbooks, and escalation protocols.Conduct regular incident response exercises and simulations to ensure readiness across technical and business teams.Mentor and guide incident response personnel, fostering a culture of preparedness, accountability, and continuous improvement. ​Technical​Direct the technical investigation of security incidents, including root cause analysis, impact assessment, and containment strategies.Coordinate and oversee the documentation of activities, analysis, and remediation actions for cybersecurity incidents.Ensure incident documentation is thorough, accurate, and aligned with regulatory and legal requirements.Continuously evaluate and improve incident response tools, processes, and capabilities based on lessons learned and threat landscape evolution. ​Organizational​Serve as the primary liaison between technical teams, executive leadership, legal, communications, and external stakeholders during incidents.Communicate incident status, risks, and business impact clearly and effectively to both technical and non-technical audiences.Partner with IT, OT, and business units to ensure incident response coverage across all environments.Ensure compliance with internal policies, industry standards, and regulatory requirements related to incident response and breach notification.Lead post-incident reviews and drive remediation efforts to strengthen the organization’s cyber resilience.Your Skills and Expertise:To set you up for success in this role from day one, 3M requires (at a minimum) the following qualifications:Bachelor’s degree in Cybersecurity, Information Assurance, or a related field completed and verified prior to start from an accredited institution8+ years of experience in cybersecurity, with 3+ years in a senior incident response or leadership roleAdditional qualifications that could help you succeed even further in this role include:Master’s degree preferredProven experience leading major incident response efforts, including ransomware, insider threats, and supply chain attacksDeep knowledge of digital forensics, malware analysis, and incident containment strategiesFamiliarity with legal and regulatory requirements for breach notification and evidence handlingStrong leadership and crisis management skills, with the ability to coordinate across technical, legal, and executive teamsExcellent verbal and written communication skills, including executive-level reporting and stakeholder engagementCertifications such as CISM, CISSP, GCFA, or C-CISO are highly desirable​Work location: On site at least 4 days a week in Minneapolis, MNTravel: up to 15%Relocation Assistance: is authorizedMust be legally authorized to work in country of employment without sponsorship for employment visa status (e.g., H1B status).Supporting Your Well-being 3M offers many programs to help you live your best life – both physically and financially. To ensure competitive pay and benefits, 3M regularly benchmarks with other companies that are comparable in size and scope. Chat with MaxFor assistance with searching through our current job openings or for more information about all things 3M, visit Max, our virtual recruiting assistant on 3M.com/careers. Applicable to US Applicants Only:The expected compensation range for this position is $228,040 - $278,715, which includes base pay plus variable incentive pay, if eligible. This range represents a good faith estimate for this position. The specific compensation offered to a candidate may vary based on factors including, but not limited to, the candidate’s relevant knowledge, training, skills, work location, and/or experience. In addition, this position may be eligible for a range of benefits (e.g., Medical, Dental & Vision, Health Savings Accounts, Health Care & Dependent Care Flexible Spending Accounts, Disability Benefits, Life Insurance, Voluntary Benefits, Paid Absences and Retirement Benefits, etc.). Additional information is available at: https://www.3m.com/3M/en_US/careers-us/working-at-3m/benefits/.Good Faith Posting Date Range 10/28/2025 To 11/27/2025 Or until filledAll US-based 3M full time employees will need to sign an employee agreement as a condition of employment with 3M. This agreement lays out key terms on using 3M Confidential Information and Trade Secrets. It also has provisions discussing conflicts of interest and how inventions are assigned. Employees that are Job Grade 7 or equivalent and above may also have obligations to not compete against 3M or solicit its employees or customers, both during their employment, and for a period after they leave 3M.Learn more about 3M’s creative solutions to the world’s problems at www.3M.com or on Instagram, Facebook, and LinkedIn @3M.Responsibilities of this position include that corporate policies, procedures and security standards are complied with while performing assigned duties.Safety is a core value at 3M. All employees are expected to contribute to a strong Environmental Health and Safety (EHS) culture by following safety policies, identifying hazards, and engaging in continuous improvement.Pay & Benefits Overview: https://www.3m.com/3M/en_US/careers-us/working-at-3m/benefits/3M does not discriminate in hiring or employment on the basis of race, color, sex, national origin, religion, age, disability, veteran status, or any other characteristic protected by applicable law.Please note: your application may not be considered if you do not provide your education and work history, either by: 1) uploading a resume, or 2) entering the information into the application fields directly.3M Global Terms of Use and Privacy StatementCarefully read these Terms of Use before using this website. Your access to and use of this website and application for a job at 3M are conditioned on your acceptance and compliance with these terms.Please access the linked document by clicking here, select the country where you are applying for employment, and review. Before submitting your application, you will be asked to confirm your agreement with the terms.