CrawlJobs Logo

Cyber Security Consultant (Cyber Incident Response)

United Kingdom, City of London · Job Posted May 05, 2026
Apply Position
Job Link Share

Job Description

We’re supporting a major, ZERO CARBON energy organisation at the forefront of building a secure and resilient energy future in the appointment of a Cyber Incident Response Manager. This is a high-impact role focused on evolving and optimising an already established cyber incident management capability. You’ll take ownership of the strategy, maturity, and continuous improvement of the organisation’s incident response and crisis management function-ensuring it is robust, scalable, and aligned to the threat landscape facing critical national infrastructure. This is not a purely operational role. It’s about transformation, governance, and embedding best-in-class incident management practices across a complex enterprise environment.

Job Responsibility

  • Define and deliver a multi-tier Cyber Incident Management strategy, aligned to enterprise risk and integrated with wider incident and crisis frameworks
  • Drive the maturity and optimisation of the existing incident management function, identifying gaps and implementing improvements
  • Own and maintain the Incident Management standards, policies, and processes within the ISMS, ensuring alignment with best practice and regulatory expectations
  • Establish metrics, KPIs, and reporting to measure capability effectiveness and drive continuous improvement
  • Manage budgets and resource planning to support capability development and ongoing optimisation
  • Ensure comprehensive incident response and crisis management plans are in place across all levels of the organisation
  • Design and deliver a structured exercising programme (tabletop, simulation, red team scenarios) aligned to real-world threats in the energy sector
  • Embed a culture of continuous learning, ensuring lessons learned are captured and translated into measurable improvements
  • Develop executive-level communication strategies, including briefing packs and reporting frameworks for major incidents
  • Act as a key point of coordination during high-severity incidents and crisis scenarios
  • Build and maintain strong relationships with internal stakeholders and external partners
  • Influence and engage senior leadership to ensure organisation-wide alignment and readiness

Requirements

  • Proven experience in cyber incident response, crisis management, or incident management leadership roles
  • Demonstrated success in transforming or maturing an incident management capability within a complex organisation
  • Strong understanding of the incident management lifecycle, including preparation, detection, response, and post-incident improvement
  • Experience operating within regulated or critical infrastructure environments (energy, utilities, government, etc.) is highly desirable
  • Ability to translate complex technical incidents into clear, actionable insights for senior stakeholders
  • Strong stakeholder management skills, with the ability to influence across technical and business teams
  • Familiarity with frameworks such as ISO 27001, NIST, or similar

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Similar Jobs for

Cyber Security Consultant (Cyber Incident Response)

8 matching positions

Information Security Incident Response Analyst

The Information Security Incident Response Analyst supports clients during secur...
Location
Location
United Kingdom , London
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Proven experience in incident response and digital forensics, with capability in host‑based, image, and log analysis
  • Experience using SIEM, EDR, IDS/IPS, and other security tools to triage, investigate, and respond to incidents
  • Ability to perform network analysis using tools such as Wireshark, tcpdump, and other tools
  • Experience in cybersecurity operations, consulting, DFIR services, or related technical security roles
  • Bachelor’s degree or equivalent experience in Information Technology, Computer Science, Cybersecurity, or a related discipline (preferred)
  • Relevant cybersecurity certifications such as SANS GIAC Security Essentials (GSEC) or equivalent preferred
  • SANS GIAC Certified Intrusion Analyst (GCIA) or equivalent preferred
  • SANS GIAC Certified Incident Handler (GCIH) or equivalent preferred
  • Additional DFIR‑related certifications are considered a plus
  • Active UK Security Clearance is required
Job Responsibility
Job Responsibility
  • Investigates security incidents by performing host, disk, memory, network, and cloud forensic analysis under established processes and guidance
  • Analyzes artifacts across Windows, Linux, and macOS systems, helping reconstruct timelines and determine root cause
  • Supports clients through containment and recovery efforts by providing technical recommendations and clear communication
  • Participates in the team’s on‑call rotation for urgent incident response needs
  • Completes internal and client tasks such as tabletop exercises, IR readiness assessments, basic forensic reviews, and environment hardening support
  • Identifies observable gaps and risks within client environments and recommends improvements to strengthen security posture
  • Produces accurate documentation—including investigation notes, status updates, and final reports
  • Collaborates with global DFIR and other teams and stays current on threats, attacker techniques, and emerging forensic tools
  • Fulltime
Read More
Arrow Right

Senior Information Security Incident Response Analyst

The Senior Information Security Incident Response Analyst leads complex incident...
Location
Location
India , Hyderabad
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree or equivalent in Information Technology, Computer Science, Cybersecurity, or a related discipline (preferred)
  • Relevant GIAC or equivalent certifications such as: GSEC – Security Essentials GCIA – Certified Intrusion Analyst GCIH – Certified Incident Handler
  • Significant hands‑on experience in digital forensics and incident response across host, disk, memory, network, cloud, and mobile environments
  • Advanced experience using SIEM, EDR, IDS/IPS, packet analysis utilities, and forensic toolsets in active investigations
  • Advanced ability to analyze network traffic using tools such as Wireshark or tcpdump to distinguish normal and malicious behavior
  • Experience working in cybersecurity consulting, DFIR services, or equivalent technical security roles
  • Advanced knowledge of digital forensics, including disk and memory image analysis across Windows, Linux, and macOS platforms
  • Strong understanding and experience with network forensics, cloud forensics (Azure, AWS, GCP) and mobile forensics (iOS/Android)
  • Ability to communicate complex technical findings clearly to both technical and non‑technical client stakeholders
  • Strong analytical, critical thinking, and problem‑solving abilities during high‑pressure investigations
Job Responsibility
Job Responsibility
  • Investigates security incidents for clients by performing host, disk, memory, network, cloud, and mobile forensics
  • Conducts detailed artifact analysis across Windows, Linux, and macOS systems and reconstructs event timelines using disk images, memory captures, network data, and cloud logs
  • Guides clients through containment, eradication, and recovery activities, providing clear technical recommendations and communications
  • Acts as a senior escalation point for complex incidents and supports the development and mentoring of junior analysts
  • Participates in an on‑call rotation to support urgent, time‑sensitive incident response needs
  • Completes internal and client project work such as tabletop exercises, IR readiness engagements, environment hardening reviews, and forensic assessments
  • Identifies gaps and weaknesses in client environments and provides recommendations to reduce risk and strengthen posture
  • Produces accurate, concise documentation, including investigation notes, status communications, and final reports
  • Collaborates with global DFIR and cyber defense teams and maintains awareness of current threats, tactics, and forensic methodologies
  • Fulltime
Read More
Arrow Right

Managing Consultant - Digital Trust and Cyber Security

We are seeking a highly accomplished Managing Consultant to join our Digital Tru...
Location
Location
United Kingdom , London
Salary
Salary:
Not provided
paconsulting.com Logo
PA Consulting
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Extensive experience in cyber security, some of which in a leadership role, ideally gained within a consulting organisation or a consulting style role
  • Proven track record of leading large-scale cyber security projects and engagements
  • Deep understanding of cyber security principles, technologies, and best practices
  • Strong business acumen with the ability to align cyber security strategies with organizational goals
  • Excellent client management skills, with a demonstrated ability to build and maintain executive-level relationships
  • Exceptional communication and presentation skills, with the ability to articulate complex technical concepts to non-technical stakeholders
  • Proven leadership and team management skills, with a commitment to fostering a positive and inclusive work environment
Job Responsibility
Job Responsibility
  • Shape and lead the firm’s Digital Trust & Cyber Security strategy, ensuring alignment with financial services sector needs
  • Provide expert guidance on specialist areas such as identity & access management (IAM), zero-trust architectures, cloud security, and data privacy frameworks, payment systems, fraud detection, digital banking security, and third-party/vendor risk management
  • Advise financial institutions on regulatory compliance (e.g., FCA/PRA, relevant regulations, ISO 27001, NIST, CSF, Data Privacy regulation)
  • Act as a thought leader, contributing to industry forums, white papers, and public discussions on digital security, cyber risks, and operational resilience
  • Leverage an extensive C-suite network to drive business development and build long-term client relationships
  • Identify and secure new business opportunities, positioning the firm as a trusted advisor in digital trust, cyber security, and resilience consulting
  • Develop and execute go-to-market strategies, ensuring revenue growth and client retention in the financial sector
  • Lead high-profile client engagements, from origination to execution, ensuring measurable impact and business outcomes
  • Advise clients in areas such as identity & access management (IAM), zero-trust architectures, cloud security, data privacy frameworks, fraud detection, digital banking security, and third-party/vendor risk management
  • Support financial institutions in achieving compliance with evolving regulations, enhancing operational resilience and cyber incident response capabilities
What we offer
What we offer
  • Health and lifestyle perks accompanying private healthcare for you and your family
  • 25 days annual leave (plus a bonus half day on Christmas Eve) with the opportunity to buy 5 additional days
  • Generous company pension scheme
  • Opportunity to get involved with community and charity-based initiatives
  • Annual performance-based bonus
  • PA share ownership
  • Tax efficient benefits (cycle to work, give as you earn)
  • Fulltime
Read More
Arrow Right

Security Consultant

As a Security Consultant, you will lead and support security initiatives for cli...
Location
Location
Belgium , Machelen
Salary
Salary:
Not provided
https://www.soprasteria.com Logo
Sopra Steria
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Minimum 5 years of IT professional experience in Security and Project management
  • Strong knowledge of network and firewall Management (rule approvals, access requests…)
  • Knowledge in Incident response and investigation
  • Knowledge in Vulnerability Management
  • Understanding of security stakeholders' roles such as infrastructure, network management, application development, and IT architecture
  • ITIL, ISO27001, or SIEM certifications (preferred)
  • Excellent communication and team collaboration skills in multi-cultural environments
  • Bachelor's or Master's degree in computer science
  • Fluency in English, Dutch, and/or French
Job Responsibility
Job Responsibility
  • Lead or contribute to cyber security projects for medium to large organisations, working closely with security architects, engineers, and client stakeholders
  • Manage, configure, review, and optimise firewall environments and network security architectures to ensure strong protection and policy compliance
  • Assess customer security needs and recommend appropriate technical and organisational security measures aligned with best practices
  • Develop technical proposals, security documentation, and customer-facing presentations that communicate secure and scalable solutions
What we offer
What we offer
  • Extensive career development opportunities, both local and international
  • Part of a dynamic network of 56,000 professionals at all stages of their careers
  • Wide array of offices to explore
  • Fulltime
Read More
Arrow Right

Lead Security Consultant

Join us at Barclays as a Lead Security Consultant. At Barclays, we are committed...
Location
Location
United Kingdom , Knutsford
Salary
Salary:
Not provided
barclays.co.uk Logo
Barclays
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Secure by Design – Strong understanding of embedding security principles into solution architecture and system development lifecycles, ensuring security controls are proactively integrated rather than retrofitted
  • Threat Modelling – Experience identifying potential threats, attack vectors, and security weaknesses across applications, infrastructure, and data platforms, with the ability to recommend effective mitigations
  • Security Assessment Scoping – Ability to define and scope security assessments, penetration testing engagements, and risk reviews to ensure appropriate coverage and alignment with business and regulatory requirements
Job Responsibility
Job Responsibility
  • Execution of security risk assessments and building threat models during the change & development lifecycle in order to identify vulnerabilities within the banks IT systems, applications and infrastructure, ensuring that compensating security controls and countermeasures are embedded in order to enhance security posture and resilience against cyber threats provision of timely communication of key findings and recommendations to stakeholders
  • Enablement of DevSecOps (and shift left), by providing engagement channels for customers and stakeholders who wish to engage early seeking security advice and input into their business plans and opportunities, or technology change designs, influencing key stakeholders in COO and CSO to create security strategies to enable business and technology evolution
  • Support and guidance to CISO, CIO and Product Team functions providing security reviews for prospective 3rd party technology products and services
  • Transfer of residual risks to the business/customer as required by the bank’s enterprise risk management framework
  • Collaboration with stakeholder and IT teams to support incident response and investigations using their knowledge of the banks technology systems sharing security insights
  • Participation in the development and maintenance of security policies, standards and procedures aligned to the banks risk tolerance, regulatory requirements and industry best practice
What we offer
What we offer
  • Competitive holiday allowance
  • Life assurance
  • Private medical care
  • Pension contribution
  • Fulltime
Read More
Arrow Right

Technical Security Consultant

We are looking for a Technical Security Consultants to work as part of our Secur...
Location
Location
Salary
Salary:
Not provided
admiralgroup.co.uk Logo
Admiral Group Plc
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Technical background, with knowledge of one or more of the following, Development, IT support, Data Science, networking or system administration
  • Experience of conducting risk assessments, threat models or security consulting for Generative AI systems
  • Deep knowledge and understanding of Cloud migration and Application Security development lifecycle and DevSecOps principles, automation, and familiarity with security architecture modelling
  • Knowledge and experience of securing Azure and/or Google Cloud Platforms
  • Knowledge and experience of using at least one risk methodology
  • Security Software as a Service implementations
  • Strong stakeholder management and communication skills and a proven track record of working with businesses to meet strategic objectives
  • Ability to discuss highly complex and technical problems and solutions in business language
  • Experienced in cyber security frameworks such as NIST, CIS20, MITRE Attack and STRIDE
Job Responsibility
Job Responsibility
  • Understand the Strategic Business Objectives, actively contribute to achieving them
  • Provide technical security consultancy to the change delivery functions – agile & waterfall
  • Assess security posture in CI/CD pipelines and support improvement
  • Support the Security Champions Programme and DevSecOps
  • Understand and deliver security assessments, threat modelling and security consultancy for Generative AI and Machine Learning
  • Liaise and collaborate with technical stakeholders within Agile Tribes, Projects, and Programmes
  • Assess changes for technical vulnerabilities, threat models, assess security risk exposure, and identify appropriate controls to bring the risk within tolerance
  • Engage effectively with specialists in Security Architecture, Security Operations, Security Culture, Security Delivery, and Security Risk and Governance teams to ensure completeness and consistency of the advice provided to delivery functions
  • Perform design reviews to ensure security principles and controls are included from design phase
  • Ensure advice provided is of a high standard and based on best practice, supported by Security Leadership and withing the cost and risk tolerance of the organisation
What we offer
What we offer
  • Everyone receives 33 days holiday (including bank holidays) when they join us, increasing the longer you stay with us, up to a maximum of 38 days (including bank holidays)
  • You also have the option to buy or sell up to an additional five days of annual leave
  • Share package
  • Career growth and development opportunities
  • Financial & Mortgage Advice
  • 24-Hour Ecare
  • Cycle to Work Scheme
  • Annual Holiday Allowance
  • Flexible Working
  • Simply Health
  • Fulltime
Read More
Arrow Right

Principal Consultant, Incident Preparedness - Proactive Services

As a client-facing Principal Consultant, you will be a key leader in our proacti...
Location
Location
United Kingdom , London
Salary
Salary:
Not provided
paloaltonetworks.com Logo
Palo Alto Networks
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s Degree in Information Security, Computer Science, Cyber Security, or a related field, or equivalent practical experience
  • 8+ years of combined experience in incident preparedness and incident response consulting
  • Demonstrated experience leading and delivering complex, client-facing cybersecurity engagements from scoping through to completion
  • Mandatory, hands-on experience in both incident response (IR) and incident preparedness, with a primary focus on preparedness
  • Professional business fluency in both French and English
Job Responsibility
Job Responsibility
  • Lead the end-to-end delivery of proactive incident preparedness projects, including Tabletop Exercises (TTX), Incident Response Plan development, and Response Maturity Assessments
  • Critically review and analyze client documentation, such as Crisis Management, Incident Response, and Business Continuity plans, to identify gaps and provide actionable recommendations
  • Design, plan, and facilitate a variety of TTXs for diverse audiences, from technical teams to C-suite executives, delivering detailed post-exercise reports with strategic insights
  • Manage the full lifecycle of client engagements, from initial scoping and stakeholder alignment to final deliverable production, ensuring high-quality outcomes and customer satisfaction
  • Proactively collaborate with clients and internal Unit 42 teams, serving as a trusted advisor to enhance their overall cyber resilience and preparedness posture
  • Contribute to the continuous improvement of service delivery methodologies and internal team knowledge by sharing insights and applied learnings from client engagements
  • Travel as required (approximately 20%) to meet client engagement needs and business demands
  • Fulltime
Read More
Arrow Right

Cyber Security Specialist

We are looking for Cyber Secuirity Specialist that will be manage the strategy a...
Location
Location
United States , Washington
Salary
Salary:
Not provided
sipal.it Logo
SIPAL S.p.A.
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Degree in Computer Engineering or Similar
  • E richiesta esperienza di almeno tre anni nell’ambito di competenza, in studi di progettazione, società di ingegneria, o in uffici tecnici di imprese del settore
Job Responsibility
Job Responsibility
  • Develop and implement an effective cybersecurity strategy aligned with clients’ organizational goals
  • Identify security risks, threats, and vulnerabilities specific to the cyber domain
  • Create and maintain security policies, standards, and procedures
  • Oversee security operations, including incident response, threat detection, and vulnerability management
  • Promote development of new service models that rely on hybrid delivery models and product servitization
  • Guarantee security operations automation evolution and extension, ensuring an increase in services effectiveness and efficiency through the expansion of the use of AI
  • Adoption of relevant security frameworks (e.g., NIST, ISO/IEC 27001)
  • Ensure compliance with relevant regulations and standards
  • Define and track key performance indicators (KPIs) specified in contracts with clients
  • Ensure contractual obligations related to security are met
Read More
Arrow Right