Security Incident Response Manager
[c. £170-200k Comp Package, Remote Working on Fridays]
On behalf of a premier investment firm, we are seeking an astute Incident Response Manager to initiate and shape our client's nascent cyber defence infrastructure. This greenfield role offers a unique opportunity to construct and refine the security landscape from the ground up, requiring a hands-on approach in automating security operations and leading the charge against complex threats. Your pivotal role involves not just safeguarding critical assets and upholding client trust but also laying the foundation for a robust, resilient, and responsive cybersecurity environment.
- Develop and maintain incident response processes, guidelines and readiness
- Lead coordinated responses to security events across endpoints, cloud, networks
- Enrich monitoring and enable rapid triage through automation
- Analyse log data from diverse sources to uncover anomalies
- Validate alerts leveraging threat intelligence and custom detections
- Concisely document incidents, including detailed analyses, and collaborate with the CISO to strategise the IR roadmap for board-level review
- Promote continuous improvement of detection and response capabilities
- Manage Sentinel SIEM implementation and configuration, optimising performance for security event management
- 8+ years in incident response, security operations or cyber threat analysis
- Experience securing cloud platforms like Azure and Kubernetes
- Experience working with OWASP ZAP or Burp Proxy
- Proficiency with Python, PowerShell, Bash or other languages
- Working knowledge of SIEM tools such as Splunk and Microsoft Sentinel
- Understanding of compliance standards like NIST 800-53, PCI, etc.
- Advanced skills in Endpoint Detection, and managing Networks and Firewalls
- Ability to deliver complex projects independently
- Excellent problem solving skills and learning agility
Apply for this role
All fields marked with * are required.