9 of 9 Permanent Computer Incident Response Team Jobs in the UK

provides essential services to millions of people every year. We're seeking a hands-on and strategic Cyber Incident Response Team (CIRT) Manager to design, implement, and mature a group-wide cyber incident response function. This is a rare greenfield opportunity to build and shape … external teams Building relationships with stakeholders across business units to ensure risk-aligned response Developing a strategic business case to scale and insource CIRT capabilities Driving continuous improvement through post-incident reviews and threat landscape analysis Ensuring compliance with regulatory requirements and frameworks (e.g. GDPR, NIST, PCI-DSS … MITRE ATT&CK) Requirements 5–10 years of experience in Security Operations, CIRT, or senior SOC roles Strong leadership capability or experience managing incident response teams Deep technical knowledge of SIEM, SOAR, EDR, and forensic tooling Strong grasp of threat detection methodologies and security frameworks Proven ability to More ❯

provides essential services to millions of people every year. We're seeking a hands-on and strategic Cyber Incident Response Team (CIRT) Manager to design, implement, and mature a group-wide cyber incident response function. This is a rare greenfield opportunity to build and shape … external teams Building relationships with stakeholders across business units to ensure risk-aligned response Developing a strategic business case to scale and insource CIRT capabilities Driving continuous improvement through post-incident reviews and threat landscape analysis Ensuring compliance with regulatory requirements and frameworks (e.g. GDPR, NIST, PCI-DSS … MITRE ATT&CK) Requirements 5–10 years of experience in Security Operations, CIRT, or senior SOC roles Strong leadership capability or experience managing incident response teams Deep technical knowledge of SIEM, SOAR, EDR, and forensic tooling Strong grasp of threat detection methodologies and security frameworks Proven ability to More ❯

Cyber Incident Response Team (CIRT) Manager 📍 Location: Hybrid – West London 💼 Type: Permanent An exciting opportunity to join a global aviation and travel leader in a high-impact, greenfield cyber security role. We’re supporting a well-established organisation in their search for a CIRT Manager to build … play a pivotal role in shaping cyber resilience across multiple operating companies, working at the heart of a modernising SOC function. 🔧 The Role - As CIRT Manager, you’ll be responsible for: Designing and implementing the CIRT operating model and incident response processes Leading the selection and integration of … SLAs, and KPIs Acting as the primary escalation point for major incidents across the group Developing the business case for scaling an in-house CIRT capability Driving post-incident reviews, continuous improvement, and operational readiness You’ll also build trusted relationships across internal stakeholders and external partners, ensuring CIRT More ❯

Cyber Incident Response Team (CIRT) Manager Location: Hybrid – West London Type: Permanent An exciting opportunity to join a global aviation and travel leader in a high-impact, greenfield cyber security role. We’re supporting a well-established organisation in their search for a CIRT Manager to build … play a pivotal role in shaping cyber resilience across multiple operating companies, working at the heart of a modernising SOC function. The Role - As CIRT Manager, you’ll be responsible for: Designing and implementing the CIRT operating model and incident response processes Leading the selection and integration of … SLAs, and KPIs Acting as the primary escalation point for major incidents across the group Developing the business case for scaling an in-house CIRT capability Driving post-incident reviews, continuous improvement, and operational readiness You’ll also build trusted relationships across internal stakeholders and external partners, ensuring CIRT More ❯

and are ready to hit the ground running - this is the role for you. At Cadent, you'll be part of a high-impact team shaping cyber resilience in one of the UK's most essential services. Your work will directly contribute to the safe, secure, and continuous operation … of the gas network, driving cyber maturity, safeguarding systems, and building industry-leading response capabilities. This isn't a role for learning on the job - it's a chance to step in and make a difference from day one. Why you'll love this role: You'll take ownership … challenges in a critical national infrastructure environment. This is more than a role - it's a mission. Incident Response & Forensics - Support on CIRT activity, provide root cause insights, and drive remediation activity. Engineering & Integration - Maintain and improve SIEM/SOAR tools, integrate with core OT security platforms. Threat More ❯

Financial Service firm seeks an Incident Response Manager to join their CIRT team. This role plays an essential part in the safeguarding of the firm’s assets, and the strengthening of the firm’s Cyber Security posture. Elements of the role will include but not limited to the … of incidents and deliver clear, comprehensive reports tailored for both technical and non-technical stakeholders, including Senior Leadership. Ensure Vulnerabilities highlighted by the CTI team or Vulnerability Management team are correctly triaged and if required prepare a remediation plan and ensure an incident is stood up to … required detection rules to provide coverage pending remediation. Lesson learnt write up. If you are looking to be part of a supportive, and collaborative team, who are always looking at ways to improve, innovative and drive forward, this role would be a perfect fit for you. This role is More ❯

Financial Service firm seeks an Incident Response Manager to join their CIRT team. This role plays an essential part in the safeguarding of the firm’s assets, and the strengthening of the firm’s Cyber Security posture. Elements of the role will include but not limited to the … of incidents and deliver clear, comprehensive reports tailored for both technical and non-technical stakeholders, including Senior Leadership. Ensure Vulnerabilities highlighted by the CTI team or Vulnerability Management team are correctly triaged and if required prepare a remediation plan and ensure an incident is stood up to … required detection rules to provide coverage pending remediation. Lesson learnt write up. If you are looking to be part of a supportive, and collaborative team, who are always looking at ways to improve, innovative and drive forward, this role would be a perfect fit for you. This role is More ❯

TTPs, and IOCs into detection and response workflows Defining intelligence requirements, deliverables, and reporting outputs across OpCos and leadership teams Supporting SOC and CIRT operations through contextualised intelligence and threat actor profiling Leading external threat sharing partnerships with ISACs, intel vendors, and government bodies Building the business case for … scaling an internal CTI team over time What They’re Looking For: Proven experience in cyber threat intelligence or security operations (SOC, CIRT, threat hunting) Strong understanding of TTPs, IOCs, threat actor profiling, and threat modelling frameworks (e.g. MITRE ATT&CK) Hands-on experience with threat intel tooling and … greenfield opportunity with real strategic ownership and future growth scope Work across a high-profile, multinational enterprise with critical global infrastructure Influence both operational response and long-term threat strategy Internal mobility, learning budget, and exposure to a major MSSP integration More ❯

TTPs, and IOCs into detection and response workflows Defining intelligence requirements, deliverables, and reporting outputs across OpCos and leadership teams Supporting SOC and CIRT operations through contextualised intelligence and threat actor profiling Leading external threat sharing partnerships with ISACs, intel vendors, and government bodies Building the business case for … scaling an internal CTI team over time 🎯 What They’re Looking For: Proven experience in cyber threat intelligence or security operations (SOC, CIRT, threat hunting) Strong understanding of TTPs, IOCs, threat actor profiling, and threat modelling frameworks (e.g. MITRE ATT&CK) Hands-on experience with threat intel tooling and … greenfield opportunity with real strategic ownership and future growth scope Work across a high-profile, multinational enterprise with critical global infrastructure Influence both operational response and long-term threat strategy Internal mobility, learning budget, and exposure to a major MSSP integration More ❯