Divisional Manager – Permanent Appointments - IT & Data, Forsyth Barnes
Job Title - Senior Security Incident Response Specialist
Location - Manchester
Salary - Up to £56k + 10% bonus
Shift Pattern - Day shifts (Monday–Friday) in-office x 3 - 2 days remote - Night shifts and weekend work to be remote.
Ability to pass SC Clearance required
Forsyth Barnes is recruiting on behalf of an exciting and rapidly expanding organisation, seeking a Senior Security Incident Response Specialist to lead their Security Response efforts. This pivotal role will be key in enhancing the organisation's Cyber Security capabilities, specifically within their Security Operations Centre (SOC). You’ll be instrumental in shaping processes, providing expert advice, and managing security incidents to safeguard the organisation’s systems and infrastructure.
Responsibilities:
1. Take charge of investigating and responding to security incidents identified by the SOC or triggered by security tools, ensuring timely and accurate reporting in line with established procedures.
2. Lead the analysis and escalation of potential incidents, collaborating with team members to determine the severity and response required.
3. Provide expert technical escalation during security events, assessing the impact, offering containment strategies, and recommending mitigations to prevent future incidents.
4. Support and mentor junior team members, fostering development through training and practical exercises.
5. Review and enhance operational processes and procedures, contributing to the development of performance metrics and reporting dashboards.
6. Collaborate with internal and external teams to continuously improve security capabilities and evaluate new tools, technologies, and practices.
7. Conduct root cause analysis, collecting and analyzing forensic data to identify security gaps.
8. Contribute to developing new security detection capabilities, including machine learning and automation tools.
Required Skills & Experience:
1. Proven ability to independently drive objectives and coordinate with relevant teams under pressure.
2. Solid experience in Security Operations, with expertise in tools such as IDS, SIEM, Firewalls, and Vulnerability Management.
3. Strong understanding of the cyber threat landscape, adversary tactics, and frameworks like MITRE ATT&CK.
4. Technical proficiency in operating systems (Windows/Linux), Active Directory, networking, and cloud environments (AWS, Azure, Office 365, etc.).
5. Demonstrable experience in incident management with 3+ years of experience.
6. Must hold or be able to obtain HMG Security Clearance at “Security Check” (SC) level.
7. Previous senior-level experience within a SOC environment (e.g., Senior SOC Analyst, Level 3 Analyst).
8. Familiarity with tools such as Elasticsearch, Tenable, ServiceNow, and Remedy.
If this role is of interest please send through an up to date CV for consideration.
Seniority level
Mid-Senior level
Employment type
Full-time
Job function
Information Technology
Industries
Utilities
#J-18808-Ljbffr