🚨 Cyber Incident Response – Senior Consultant & Manager Roles

Locations: Manchester | London | Remote (UK-wide)
 

Are you ready to take on advanced cyber threats, lead high-stakes investigations, and make a real impact in global cyber defence?

We’re partnering with a world-leading Cyber Security practice to find passionate Cyber Incident Response Consultants and Managers. You’ll work across enterprise-scale and government-grade environments—helping organisations detect, contain, and recover from complex attacks.

🔍 What You’ll Do

• Lead and support end-to-end incident response engagements—from detection to containment and recovery.

• Conduct digital forensics across endpoints, servers, and cloud environments to uncover root causes and attack vectors.

• Perform network forensics with tools like Wireshark, analysing IDS alerts and packet data to trace threats.

• Utilise EDR platforms such as CrowdStrike, Microsoft Defender, and Velociraptor for hunting and remediation.

• Use forensic tools (X-Ways, Autopsy, FTK, etc.) and sandboxing environments for safe malware analysis.

• Develop and enhance incident playbooks, lead post-incident reviews, and strengthen client resilience.

• Engage in threat simulations, war-gaming, and readiness assessments to test and improve defences.

💼 What We’re Looking For

• Proven background in Incident Response, Digital Forensics, or Threat Hunting.

• Strong technical knowledge of Windows, Linux, and cloud environments.

• Understanding of attack techniques, malware behaviours, and MITRE ATT&CK frameworks.

• Experience with SIEM/IDS/IPS tools and automation/scripting for investigations.

• Clear communicator, calm under pressure, and confident with clients.

• Certifications (preferred): CISSP, GCFE, GCFA, GREM, CISM, or equivalent experience.

• SC Clearance or eligibility (UK residency 5+ years).

• Willingness to travel occasionally for client work.

🌍 Why Join

• Be part of a global Cyber practice with access to SANS training and top-tier technical certifications.

• Hybrid flexibility: typically one office day per week (or every few weeks).

• Work with some of the brightest minds in Cyber Defence on real, mission-critical challenges.

• Competitive package and career progression in a world-class environment.

If you’re driven by complex investigations, thrive under pressure, and want to be on the front line of cyber defence—we want to hear from you.