Lead Cyber Incident Response Manager

• Lead, mentor, and develop the incident response and business resumption team, promoting a culture of technical excellence and continuous improvement.
• Define and drive the strategic direction for incident response services, ensuring they align with emerging threats and evolving client requirements.
• Act as a trusted advisor to executive leadership and clients, presenting technical findings and risk insights clearly and effectively for board-level audiences.
• Oversee the response to major cyber incidents, ensuring consistent, timely, and high-quality incident handling and recovery.
• Collaborate with senior stakeholders across internal teams and client organisations to coordinate containment, remediation, and post-incident reporting.

• At least 5 years of experience in incident response, including 2+ years in a leadership or team management capacity.
• Proven experience handling major cyber incidents across diverse environments and technologies.
• In-depth understanding of cyber threat actor tactics, techniques, and procedures (TTPs) and frameworks such as MITRE ATT&CK, NIST, and Cyber Kill Chain.
• Strong experience in cloud and hybrid environments (M365, Azure, AWS, Google Cloud).
• Demonstrated ability to communicate highly technical information to non-technical and executive stakeholders, including risk translation and board reporting.

Permanent opportunity

Remote (occasional travel to customer sites)

Consultancy work / External client facing

Paying up to £125,000 per annum (dependent on experience)

*Please note that this role requires NPPV3 clearance in addition to National Security Clearance (SC).

This is working for a leading UK provider of Digital Forensics, eDiscovery, and Cyber Security services, working with law firms, corporate organisations, and law enforcement agencies. We're looking for passionate and ambitious individuals who want to make a real impact through technology.