This list contains only the countries for which job offers have been published in the selected language (e.g., in the French version, only job offers written in French are displayed, and in the English version, only those in English).
As Incident Response Manager within our Security Operations team, you will perform a crucial role in the management and prevention of cyber security indents. You will be a specialist in cyber incident response working in support of our missions to minimise the potential for harm or loss from cyber incidents.
Job Responsibility
You'll contribute to the development, maintenance, and assessment of our Cyber Incident Response Plan while developing and implementing procedures related to incident handling
Identifying, analyzing, mitigating, and communicating cyber security incidents, you'll apply problem management to prevent incidents from reoccurring and measure detection and response effectiveness
We'll look to you to collect, analyze, and correlate cyber threat information from multiple sources, producing actionable intelligence for dissemination to stakeholders at tactical, operational, and strategic levels
Evaluating the resilience of cyber security controls, you'll adopt and develop incident handling testing techniques while establishing procedures for incident results analysis and reporting
Your role will involve cooperating with and supporting Secure Operation Centres and Computer Security Incident Response Teams while documenting incident handling actions comprehensively
Working closely with the Cyber Security Operations Lead, information security colleagues, IT operations teams globally, and key personnel, you'll ensure reporting of security incidents according to applicable regulatory and legal frameworks
Requirements
You have experience practicing all technical, functional, and operational aspects of cyber security incident handling and response in an enterprise organization
Your ability to collect, analyze, and correlate cyber threat information enables you to manage incident response related to operating systems, servers, clouds, and relevant infrastructures
You bring strong knowledge of cyber incident handling standards, methodologies, and frameworks along with Secure Operation Centres platform technology such as SIEM, SOAR and CTI
You possess management skills for incident records, report writing and presentation with the ability to analyze and report security incidents to technical and non-technical stakeholders
Your communication skills, both written and verbal, enable you to influence information security and IT operations colleagues from around the world
You have solid understanding of cyber threats, Cyber Kill Chain, Attack and Defend Frameworks, along with knowledge of cyber security-related certifications, laws, regulations, and legislations
What we offer
Attractive remuneration
discretionary bonus schemes
generous travel benefits
extensive health & well-being support
Flexible working
dynamic working environment
Access the TUI Learning Hub
opportunities to work on global projects and teams
local charity and sustainability initiatives like the TUI Care Foundation