This job is no longer available.
You can view related vacancies or set-up an email alert notification when similar jobs are added to the website using the buttons below.

Incident Response Manager

jk1307_1531549000
Negotiable

Managing this Role

image

Josh Keeley

Manager - Cyber Specialist 0207 759 7878

With six years’ experience as an IT engineer within the Royal Marines, Josh has a strong network of ex-services CTI analysts and CCTIM qualified managers. Bringing sound technical knowledge and in-depth market expertise, Josh works with consultancies, defence, MSSPs and TIPs; from rapidly-growing start-ups to established global enterprises.

 

Roles recruited: CTI analysts, CCTIM managers

Seniority: Junior-Senior

Job Type: Permanent

Geographical coverage: London

Market: Cyber threat intelligence, TIP’s and Professional Services

Incident Response Manager - London - £Competitive

We have partnered with a global Cyber Security Consultancy who are currently looking for an Incident Manager to compliment an already world class Incident Response team. This team respond to and contain security incidents for their clients with a particular focus on advanced targeted attacks.

Responsibilities

Acting as a key member of the Incident and Response team, you will coordinate and direct activity internally and for our clients in the event of a security incident to ensure it is resolved effectively and expeditiously. The Incident Manager will also assist clients with incident readiness and services intended to ensure clients develop the broader capabilities to respond to such incidents. As an Incident Manager you will be involved in:

  • Building Incident Management Plans
  • Map stakeholders and manage communications, being the focal point for all communications during incidents.
  • Define and agree governance arrangements with the client crisis management team and senior stakeholders.
  • Plan and schedule resources for the team in response to incidents.
  • Manage the sharing of secure information.

Requirements

  • Defensive security, Forensic Security or law enforcement background is ideal
  • Ability to manage time on multiple investigations, both personally and on behalf of investigators
  • A deep understanding of investigations, computer forensics and the recent cyber threat landscape
  • Broad overview of applicable legal and privacy frameworks
  • Strong communication skills and confident with stakeholders of all levels and ability to challenge constructively
  • Analytical thinking (including analysis of competing hypothesis and assessment based on limited information)
  • Ability to manage and take control in high pressure situations
  • This role will require travel and vary working hours in some instances, dependent on live Incidents.

Do you have the below qualifications? If so, what are you waiting for?

  • CREST Incident Manager (CIM)
  • GIAC Certified Incident Handler (GCIH)

Huntress Search Ltd does not discriminate on the grounds of 'protected characteristics' as defined under the Equality Act and other relevant UK legislation.

Huntress Search Ltd acts as a Recruitment Agency in relation to all Permanent roles and as a Recruitment Business in relation to all Temporary roles.

PLEASE NOTE: We can only consider applications from candidates who have the right to work in the UK.


This job has now been filled but you may be interested in:

 

Threat Hunter

My client provides an elite threat detection capability to a large array of clients using the latest tooling to help detect and respond to the latest threats. Using these tools provides my client with the capability to detect both internal and external threats.

This is your chance to provide an elite threat detection service to a broad spectrum of clients, whilst due to the rapid growth of my client you will be exposing yourself to a level of career progression that is hard to match.

The Role

As a Cyber Security Analyst you will have the ability to monitor the networks for threats and report your findings to all audiences.

You will be expected to monitor the client's assets and environments using our high end security tools. Identifying, analysing and alerting the client's to existing and emerging threat actors, the following will be the main focus of the role:

  • Perform detailed network analysis to identify potential threat actors.
  • Create clear, concise and analytical reports on threats.
  • Keep on top of current threats and informing Clients of the risk.

Key Skills

You will need to be a quick thinker who can quickly analyze threats and the impact they will have. You will have the ability to think of ways to prevent the future attacks and to be one step ahead of the threat at all times.

  • Knowledge of current Cyber Threats.
  • Understanding of typical malware functionality and capabilities.
  • Understanding of tools used with Blue Teams.
  • Packet Capture experience.
  • Familiarity with typical security technologies such as firewalls and SIEM tools.
  • An understanding of large scale networking technologies.
  • Windows and Linux exposure.
  • Scripting exposure - Python and Bash.

If you can demonstrate that you have the knowledge of current Cyber Threats, and the ability to discuss Cyber Security concepts revolving around Network IDS and malware then apply now to be apart of this professional team!

Huntress Search Ltd does not discriminate on the grounds of 'protected characteristics' as defined under the Equality Act and other relevant UK legislation.

Huntress Search Ltd acts as a Recruitment Agency in relation to all Permanent roles and as a Recruitment Business in relation to all Temporary roles.

PLEASE NOTE: We can only consider applications from candidates who have the right to work in the UK.

Cyber Security Analyst

The role

Our client a leading provider of professional services is looking for an experienced Cyber/ Information Security professional that will complement our existing team, and who will be responsible for the delivery of key security initiatives and activities.

Key Responsibilities

  • You will act as the primary contact for all security related incidents
  • Engage with business stakeholders to maintain information security across the business
  • Prepare accurate reports for all levels in a language and tone appropriate for the audience
  • Maintain awareness of developments in the information security industry
  • Assist the organisation in securely delivering existing and new solutions to the market
  • Assist CTI in obtaining and maintaining certifications (ISO 27001)
  • Assist the organisation in adhering to regulatory requirements (GDPR)
  • Assist in the organisation in due diligence responses
  • Conduct due diligence on potential partners and new solutions
  • Identify security control gaps and implement solutions
  • Work with 3rdparty SOC
  • Point of contact for suspected incidents
  • Provide business context and ensure they are kept up to date with environment changes
  • Continuous focus on tuning and automation of alerts
  • Act as security representative at the Change Advisory Board
  • Act as a consultant to our Infrastructure team during projects and proposed changes

Required skills

  • Security Architecture design and implementation
  • Experience developing MSSP SOC
  • Incident Detection/Response experience
  • Experience working with a SIEM solution
  • Exposure to SIEM & Vulnerability management solutions
  • Strong Active Directory experience
  • Securing Windows environments (desktop/server)
  • 3 years' experience in an Information Security role
  • Strong knowledge of network security within a corporate environment
  • Experience working in an ITIL environment

Huntress Search Ltd does not discriminate on the grounds of 'protected characteristics' as defined under the Equality Act and other relevant UK legislation.

Huntress Search Ltd acts as a Recruitment Agency in relation to all Permanent roles and as a Recruitment Business in relation to all Temporary roles.

PLEASE NOTE: We can only consider applications from candidates who have the right to work in the UK.

Tier 2 SOC Analyst

Do you want to respond to real events that require a SC clearance in a state of the art SOC? We are looking for a TIER 2 Analyst to join my client in Reading to help detect, analyse and respond to the latest security threats.

You will be working for one of the leading communication companies in the world, one of the first to be established. They will provide training on their own bespoke tooling and you will not have to work the standard security shift pattern. You will help the team in escalation and classification of live events as well as remediation by applying current security methodologies and processes, whilst also training the more junior members of the team.

Skill set:

  • Knowledge of TCP/IP Protocols, network analysis, and network/security applications
  • Knowledge of common Internet protocols and applications
  • Knowledge and hands on experience of IP networks and their key components
  • Ability to apply non standard processes to incidents and investigations
  • Motivated and ambitious to work on your own initiative without needing direction with a genuine enthusiasm and drive to work within Cyber Security
  • Strong attention to detail
  • Ability to multi-task, prioritise, and manage time effectively
  • Excellent interpersonal skills and professional demeanour
  • Excellent verbal and written communication skills

Additional Skills:

  • Recognised qualifications such as CompTia Network , Security , CySA and/or CEH or equivalent
  • Knowledge of Security management, network and information security, people security and running of one or more services within a Security Operations Centre.
  • Proficient in Microsoft Office Applications
  • Recent experience of working within an IT/IP network based environment
  • Experience working in a customer facing environment
  • Leadership experience

This is an incredible opportunity for someone who wants to be apart of a global company who will take you to the next step of your career. Get in touch now for more information.

Huntress Search Ltd does not discriminate on the grounds of 'protected characteristics' as defined under the Equality Act and other relevant UK legislation.

Huntress Search Ltd acts as a Recruitment Agency in relation to all Permanent roles and as a Recruitment Business in relation to all Temporary roles.

PLEASE NOTE: We can only consider applications from candidates who have the right to work in the UK.

Cyber Threat Analyst

Blackthorn Trace have partnered with a global leading financial services industry who are building a Cyber Threat team across the UK, US and Canada. With the financial services industry constantly under attack by sophisticated cyber adversaries that range from nation states to criminals. In response, my client is adding a Cyber Threat Center associate, charged with ensuring all equities are secure against all tiers of adversaries. 

You will work within the central hub for Computer Operations and be on the front lines of security incident response, threat hunting, and intelligence. Hours - 6am – 2.30pm, 2 days per week from home.

Responsibilities

  • Act a senior member of the Cyber Threat Center who handles security events and incidents on a daily basis in a fast-paced environment.
  • Acts as an Incident Handler who can handle minor and major security incidents within the defined Computer Security Incident Response process.
  • Role embodies Cyber Network Defense and a successful Cyber Threat Analyst will be able to quickly analyze threats, understand risk, deploy effective countermeasures, make business critical incident response decisions, and work as part of a team of individuals dedicated to protecting the firm.
  • Maintains situational awareness for cyber threats across the global firm and take action where necessary.
  • Countermeasure deployment across various technologies.
  • Malware and exploit analysis.
  • Assessing alerts and notifications of event activity from intrusion detection systems and responding accordingly to the threat.
  • Continuing content development of threat detection and prevention systems.

 

Experience and Skills

  • Systems administrator experience in Linux, Unix, Windows or OSX operating systems.
  • Knowledge of networking and the common network protocols.
  • Demonstrated ability to create scripts, develop tools, or automate processes
  • Knowledge of vulnerabilities and a comfort in manipulating exploit code for analysis.
  • Demonstrated ability to perform static and dynamic malware analysis.
  • Demonstrated ability to analyze large data sets and identify anomalies.
  • Demonstrated ability to quickly create and deploy countermeasures under pressure.
  • Familiarity with NIST framework for incident handling.
  • Understand OSINT techniques.
  • Experience leading and managing IR investigations.

 

One or more of the following certifications or the ability to obtain within 1 year:

  • CISSP: Certified Information Systems Security Professional
  • CCNA: Cisco Certified Network Associate
  • SANS: GCIH – Incident Handler
  • SANS: GCIA – Intrusion Analyst
  • CREST: Certified Incident Manager