This job is no longer available.
You can view related vacancies or set-up an email alert notification when similar jobs are added to the website using the buttons below.

Incident Response Team Leader

jk0713_1531548812
Negotiable

Managing this Role

Josh Keeley

Manager - Cyber Specialist 0207 759 7878

With six years’ experience as an IT engineer within the Royal Marines, Josh has a strong network of ex-services CTI analysts and CCTIM qualified managers. Bringing sound technical knowledge and in-depth market expertise, Josh works with consultancies, defence, MSSPs and TIPs; from rapidly-growing start-ups to established global enterprises.

 

Roles recruited: CTI analysts, CCTIM managers

Seniority: Junior-Senior

Job Type: Permanent

Geographical coverage: London

Market: Cyber threat intelligence, TIP’s and Professional Services

Incident Response Team Lead - London - £Competitive

We have partnered with a global Cyber Security Consultancy who are currently looking for an Incident Response Team Leader to compliment an already world class Incident Response team. This team respond to and contain security incidents for their clients with a particular focus on advanced targeted attacks.

Responsibilities

As a Team Lead you will focus on strategic initiatives and operational management to deliver sustainable capability improvement over time. Your key focus areas are innovation and optimisation of our services; development of junior team members; and coordination and integration with global teams.

While the role is predominantly managerial, for effectiveness it requires a strong technical background in Incident Response, and the Team Lead will be expected to be able to demonstrate experience dealing with many different types of compromises in different environments, including advanced nation state attacks.

Requirements

A deep understanding of the motivations and methods adopted by a range of threat actors with an understanding of how exploitation of systems occurs is essential. You will have experience in examining data from various sources including network traffic, volatile memory, host data, log files and other sources of information.

  • Significant industry experience as part of a CSIRT, Security Operations or Investigations team in a data regulated and mission-critical environment.
  • Experience responding to and containing live security incidents such as crimeware, data breaches and advanced targeted attacks following a standard incident handling lifecycle.
  • Solid understanding of technical and security domains fundamental to investigations and incident response, including:
    • Client-server infrastructures, security architectures and related logging and alerting
    • TCP/IP networking with the ability to perform deep-dive network forensic analysis
    • File-system analysis including FAT, NTFS, HFS and/or EXT2/3/4 and ability to find and extract common disk-based indicators of compromise
    • Windows, Linux and/or OS X internals with emphasis on memory structures and ability to find common memory-based indicators of compromise
    • Malware analysis activities using behavioural techniques. Ability to perform dynamic and static analysis is an advantage
  • Ability to report key findings in a clear and concise manner both at technical and senior management level.
  • Vendor independent qualifications in Incident Response and Forensics such as SANS and CREST.

Huntress Search Ltd does not discriminate on the grounds of 'protected characteristics' as defined under the Equality Act and other relevant UK legislation.

Huntress Search Ltd acts as a Recruitment Agency in relation to all Permanent roles and as a Recruitment Business in relation to all Temporary roles.

PLEASE NOTE: We can only consider applications from candidates who have the right to work in the UK.


This job has now been filled but you may be interested in:

 

Cyber Security Analyst

Are you wanting to work in an incredibly dynamic and flexible environment and be involved in a Cyber Security team that is tasked to help this well known media company grow whilst maintaining current security practices. My client is looking for passionate, Innovative and creative individuals to join their team.

My client is a leading media company based in Central London and is always implementing new technologies across all sectors of the business. This role will offer a vast amount of training and exposure to all things Cyber, you will gain 5 years of experience within 2 in this role!

The Role

  • To take part in various security practises such as Data Loss Prevention, 3rd Party Supplier Risk assessments and Incident response
  • Respond to technical and non-technical Cyber Security enquires
  • Provide technical security expertise to our project teams where required
  • Review projects to ensure security controls are built in from the start
  • Respond to Cyber Security incidents generated from our Security Operations Team
  • Participate in Cyber war gaming and simulations

A little about you

  • Highly analytical and methodical in approach
  • Strong MS Office Excel, Visio, PowerPoint and Word skills
  • Strong technical foundation in infrastructure security or application security controls
  • Ability to pick up new technical concepts and apply security principles
  • Must have documented Cyber Security processes/ policies and procedures for a large enterprise

Additional

  • Some UK based travel will be required to assess vendors and meet with business stakeholders
  • Must be able to work effectively under pressure and work with technical and non-technical personnel at all levels of the organisation
  • Ability to prioritise and respond to Cyber Security Incidents (some of which may continue into out of normal business hours)
  • Degree in Computer Science or technical engineering based subject
  • A GIAC or SANS related Qualification
  • CISSP

This is an incredible opportunity to work for a great company who will sky rocket your career and give you invaluable experience within the Industry. Go ahead and apply now!

Huntress Search Ltd does not discriminate on the grounds of 'protected characteristics' as defined under the Equality Act and other relevant UK legislation.

Huntress Search Ltd acts as a Recruitment Agency in relation to all Permanent roles and as a Recruitment Business in relation to all Temporary roles.

PLEASE NOTE: We can only consider applications from candidates who have the right to work in the UK.

Cyber Defense Analyst

Are you looking for your next Incident Response position? Our Fintech client based in London are looking to add to their outstanding cyber credentials after creating a multi-million pound cyber fusion centre by bringing on a Cyber Defence Analyst. They pride themselves that Cyber Security is at the beating heart of their culture.

This would be an ideal role if you are incredibly passionate about Cyber Security and want to be a part of a well known company who would value your skill set!

The role:

  • We'll need you to identify Cyber Security threats and confidently perform analysis of anomalies on client's networks.
  • Monitor Cyber Security alerts though the SIEM to triage, mitigate and escalate issues.
  • Coordinate the initial workflow and response for different case types with both internal and external teams.
  • We'll need you to work closely with operational support staff to ensure they are actively engaged in potential security threats and concerns.
  • This role means you'll be providing round-the-clock support for our global security operations centre. Analysts work a 12-hour shift pattern, including holidays and weekends - so commitment is everything here.

Additional skills:

  • Display great problem solving skills - this coupled with the tenacity and resilience to resolve issues.
  • A solid foundational understanding of TCP/IP and networks to include packet analysis, firewalls, routers, and ACLs.
  • Strong working knowledge of malware in its varying forms, common delivery mechanisms, and common mitigation steps.
  • Ability to convey security concepts related Cyber Security events to both technical and non-technical audiences.
  • Experience with IDS/IPS, Endpoint protection, Network Security, WAF, Sandboxing and analysis toolsets.
  • Experience operating and administrating Security Information and Event Management (SIEM) platforms.
  • The ability to communicate and collaborate with other team members in a dynamic workforce
  • Preferred - security operations experience but candidates with Forensics or Penetration Testing background will also be considered.

If you are looking for your next Incident Response role then go ahead and apply now for immediate consideration.

Huntress Search Ltd does not discriminate on the grounds of 'protected characteristics' as defined under the Equality Act and other relevant UK legislation.

Huntress Search Ltd acts as a Recruitment Agency in relation to all Permanent roles and as a Recruitment Business in relation to all Temporary roles.

PLEASE NOTE: We can only consider applications from candidates who have the right to work in the UK.