Cyber Incident Response and Vulnerability Lead

In this role, you will lead cyber incident response and vulnerability management activities across the Air sector, helping to ensure incidents are managed effectively and security risks are identified, prioritised and addressed.

Working closely with technical teams and stakeholders across the business, you will support cyber investigations, drive continuous improvement of incident response processes and help strengthen cyber resilience across a complex technology environment.

Core duties:

• Lead and coordinate cyber incident response activities in line with defined processes and governance requirements
• Support cyber investigations including containment, recovery, root cause analysis and resolution activities
• Maintain and improve cyber incident response processes, playbooks and supporting documentation
• Manage vulnerability alerts and support vulnerability management activities across the business
• Support lessons learned reviews and continuous improvement activities following incidents
• Work closely with stakeholders across the business to support incident readiness and response activities
• Contribute to cyber exercises, awareness activities and resilience planning
• Collate and report on cyber incident and vulnerability management KPIs and metrics

Essential Skills:

• Experience conducting or managing cyber incident response and investigation activities
• Broad technical understanding of IT infrastructure and technologies
• Understanding of cyber security threats, standards and industry best practice
• Experience working within cyber security, incident response or vulnerability management environments
• Ability to analyse, prioritise and respond to cyber incidents in a structured manner
• Experience producing or maintaining cyber security processes, documentation or governance artefacts

The Cyber Risk and Governance team:

You'll be joining a collaborative cyber team supporting incident response and vulnerability management activities across the Air sector. The team works closely with technical and business stakeholders to improve cyber resilience, strengthen governance and support secure operations across a complex technology landscape.

Why BAE Systems?

Here you'll build a career with purpose and limitless possibilities. With lifelong learning and meaningful work, this is a place where you can grow your career with confidence and be empowered to be your best. You'll be recognised for your contribution and enjoy rewards tailored to what's most important to you and your family, support for your financial and personal wellbeing, as well as a balanced lifestyle. In an environment embracing sustainable ways of working and with a strong sense of shared purpose, our supportive culture is a place you can feel you belong and proud of the difference you make.

Do you have experience in Root cause analysis?

Join BAE Systems and you'll be part of something bigger. As a valued member of our global colleague network, you'll bring your unique skills and perspectives to help pioneer progress and protect what matters most. You'll be trusted to play your part in delivering the advanced, technology-led defence, aerospace and security solutions of tomorrow, shaping a safer future, for all of us. From the depths of the ocean, to the far reaches of space, there's no limit to where a career at BAE Systems could take you., Please be aware that many roles at BAE Systems are subject to both security and export control restrictions. These restrictions mean that factors such as your nationality, any nationalities you may have previously held, and your place of birth can restrict the roles you are eligible to perform within the organisation. All applicants must as a minimum achieve Baseline Personnel Security Standard. Many roles also require higher levels of National Security Vetting where applicants must typically have 5 to 10 years of continuous residency in the UK depending on the vetting level required for the role, to allow for meaningful security vetting checks.