Description
Incident Response Manager
6-month contract
Immediate requirement
£700 per day (Outside IR35)
Birmingham - Hybrid - 2 days a week (Some out of hours & weekend work subject to incident type)
The Security Operations and Incident Response Manager will be managing a team of two, ensuring they can respond, effectively and efficiently to Cyber threats. They will be expected to conduct internal Cyber and DLP (Data Loss Prevention) investigations. While managing the outsourced MSSP (Managed Security Service Provider).
The Responsibilities
- Manage the Security Operations & Incident Response Team (SIRT)
- Maintain and improve security incident response procedures and playbooks including Security Incident Crisis/Emergency Management
- Be responsible for the investigation and resolution of security related events from various security appliances and toolsets.
- Promote the role and become recognised as the business SME for Cyber investigation leadership
- Monitor industry trends, products & services and create a vision for Cyber Incident Management within the business
- Be responsible for configuration management of DLP on endpoint devices
- Develop Key stakeholder relationships, lead digital investigations & data forensics requirements
- Promote and assist to deliver the INFOSEC security strategy
- Line management of a small team.
Experience
You will have the following background:
- Demonstrable experience of managing teams and people skills
- Solid understanding of security principles and technologies
- Knowledge in cyber-attacks and techniques and resolutions
- Experience in phishing, ransomware, identity compromise, data Loss (DLP) and risk management.
- Experience in threat and compliance management
- Knowledge of tactics & techniques used by threat actors eg, MITRE ATT&CK framework
As an ideal candidate, you will have a proven track record of managing in a similar role. Will have expert knowledge In-depth knowledge of incident management, response, cyber-attacks and techniques and resolutions