Job Description

Posted 1 hour ago

A Cyber Incident Response Manager is needed for a high-impact contract where cyber security isn’t just talked about — it’s actively evolving.

You’ll step into a critical role helping a financially regulated environment strengthen how it detects, responds to, and manages cyber threats. 

This is a hands-on leadership opportunity where your work directly improves how security operations perform day to day. You’ll be shaping how incidents are handled, how services are measured, and how a modern SOC capability continues to mature. Expect real influence across tooling, governance, and operational standards. 

What’s in it for you

£550 per day PAYE on a 6-month contract with strong likelihood of extension
Hybrid working with only two days per week in a central London office
The opportunity to influence the evolution of a modern security operations capability
Work closely with internal technology teams and external security partners
Exposure to enterprise security tooling, monitoring frameworks, and operational governance
A role where operational improvements you deliver will have immediate impact
What you’ll be getting stuck into as a Cyber Incident Response Manager

Leading day-to-day security operations while helping shape the SOC roadmap
Overseeing cyber incident response, detection monitoring, triage, and mitigation activity
Managing security production incidents and contributing to problem and change forums
Working with the MSSP to review service performance, SLAs, and operational metrics
Improving policies, procedures, and security controls to support regulatory compliance
Driving improvements across ticketing, service requests, root cause analysis, and operational reporting
What you’ll bring to the table as a Cyber Incident Response Manager

Previous experience leading security operations or IT security service delivery
Strong understanding of SIEM and monitoring frameworks such as Microsoft Sentinel and MITRE ATT&CK
Knowledge of the Microsoft security ecosystem and associated tooling
Experience across security technologies including DLP, EDR/XDR, CASB, email security, SWG, and ZTNA/SASE
Certifications such as CISSP, CISM, CCSP, or SSCP would be beneficial
If you’re an experienced Cyber Incident Response Manager ready to strengthen and modernise security operations in a highly regulated environment, apply now.

Candidate Source Ltd is an advertising agency.  Once you have submitted your application it will be passed to the third party Recruiter who is responsible for processing your application. This will include holding and sharing your personal data, our legal basis for this is legitimate interest subject to your declared interest in a job. Our privacy policy can be found on our website and we can be contacted to confirm who your application has been forwarded to