Cyber Incident Response Manager

A Cyber Incident Response Manager is needed for a high-impact contract where cyber security isn’t just talked about — it’s actively evolving.You’ll step into a critical role helping a financially regulated environment strengthen how it detects, responds to, and manages cyber threats. This is a hands-on leadership opportunity where your work directly improves how security operations perform day to day. You’ll be shaping how incidents are handled, how services are measured, and how a modern SOC capability continues to mature. Expect real influence across tooling, governance, and operational standards. What’s in it for you

• £550 per day PAYE on a 6-month contract with strong likelihood of extension
• Hybrid working with only two days per week in a central London office
• The opportunity to influence the evolution of a modern security operations capability
• Work closely with internal technology teams and external security partners
• Exposure to enterprise security tooling, monitoring frameworks, and operational governance
• A role where operational improvements you deliver will have immediate impact

What you’ll be getting stuck into as a Cyber Incident Response Manager

• Leading day-to-day security operations while helping shape the SOC roadmap
• Overseeing cyber incident response, detection monitoring, triage, and mitigation activity
• Managing security production incidents and contributing to problem and change forums
• Working with the MSSP to review service performance, SLAs, and operational metrics
• Improving policies, procedures, and security controls to support regulatory compliance
• Driving improvements across ticketing, service requests, root cause analysis, and operational reporting

What you’ll bring to the table as a Cyber Incident Response Manager

• Previous experience leading security operations or IT security service delivery
• Strong understanding of SIEM and monitoring frameworks such as Microsoft Sentinel and MITRE ATT&CK
• Knowledge of the Microsoft security ecosystem and associated tooling
• Experience across security technologies including DLP, EDR/XDR, CASB, email security, SWG, and ZTNA/SASE
• Certifications such as CISSP, CISM, CCSP, or SSCP would be beneficial

If you’re an experienced Cyber Incident Response Manager ready to strengthen and modernise security operations in a highly regulated environment, apply now.Candidate Source Ltd is an advertising agency.  Once you have submitted your application it will be passed to the third party Recruiter who is responsible for processing your application. This will include holding and sharing your personal data, our legal basis for this is legitimate interest subject to your declared interest in a job. Our privacy policy can be found on our website and we can be contacted to confirm who your application has been forwarded to.