Cyber Security Incident Response Consultant


Job Ref: 
Job Type: 
£28,000 - £32,500 per annum
Consultant Name: 
Jessica Graham
Contact Email:
Contact Number: 
020 7444 4087


1 Role, Purpose and Summary Objectives:

Fast-growing and rapidly expanding innovative security solutions provider and is establishing a reputation for providing high quality services to a diverse set of clients within the UK.

The Cyber Security Incident Response Consultant will be expected to participate in cyber security incident investigations that involve computer crimes, which require log, forensic, and malware analysis across multiple environments (Windows, Linux/Unix, Mac OS).

As the Incident Response Consultant you will also work with clients proactively to create or further develop their cyber incident response plan, inform on best practice, shape CSIRTs and consult on wider cyber security incident response governance and best practice.

You will deliver tailored solutions, implement effective cyber security practices and processes across a fast paced organisations focused on continuous improvement and on delivering effective customer services to major clients.

We want people with a positive attitude who love what they do and embrace ideas even when they are not their own, you will be expected to think creatively, responsibly, work collaboratively and do all you can to get the job done.

Key Objectives include:

* Liaising with clients and potential clients to establish requirements and deliver effective incident response to meet and where possible exceed needs and expectations reducing the potential impact to the business and ensuring legal processes and documentation are followed for criminal prosecution purposes.
* Contributing to the development and continuous improvement of incident response products and services owning product when required.
* Accountability for major client engagements and the successful delivery of engagements.
* Effective and comprehensive reporting of findings and outcomes.
* Debriefing following client engagements
* Engagement with the pre-sales process

Key Relationships and Interfaces:

The Cyber Security Incident Response Consultant will report directly into the Principal Consultant. The Consultant will also be required to establish working relationships across key customer accounts and may be required to provide subject matter expertise during the pre-sales process. Key interactions and partnerships will be required between the working party and:

* Lead Technical Consultant
* The Technical Function within Cyber Security
* Principal Consultant
* Operations Manager
* Business Development Team
* Group CISO and IT Security Department



* The overall business to deliver client engagements successfully.
* To provide subject matter expertise when required.
* Help to build the business’ track record and customer references.


* To provide exceptional reporting both written and verbal.
* To clearly articulate technical issues to non-technical individuals.
* Effectively monitor and keep up to date with latest industry trends and product developments.


* On engagements internally and externally.
* Exceptional customer service.
* Effective technical resolution or containment of incidents.
* Effective and compliant evidence collection during incidents for the purposes of criminal prosecution.
* Positive client engagement debrief sessions.
* Perform forensic analyses to identify the presence of any malware, or indicators of compromise.


* To take ownership for the improvement and development of products and services in the employee’s area of expertise.
* To evaluate latest trends and tooling to ensure that methodologies and best practice is up to date or even better market leading.
* To ensure the ways of working positively impact customer experience.
* Provide support and technical guidance when required to the Principle Consultant including: triage support and presentation of engagement findings.

1 Working Environment:

Your primary place of work will be Oxford with some travel to client sites likely.

Qualifications & Experience


* Knowledge of ISO/IEC 27025:2016.
* Eligible for SC clearance.
* Full UK or equivalent driving license and ability to travel within the UK as client engagements dictate.
* Excellent written and spoken English skills are essential, with the ability to clearly explain technical findings to a non-technical client.
* Desirable: Qualifications, such as GCIH, GCFE, GCFA, GASF, GREM, CCNIA, CCHIA, CCMRE, CRIA, or others.
* Desirable: Degree or similar level qualification in Computer Science or Cyber Security.


* Previous experience working on projects in an investigatory capacity.
* Understanding of mitigation and clean-up strategies
* Understanding of how to leverage existing security applications and appliances to address a compromise or malware/ransomware outbreak.
* Proficient in log analysis of multiple types.
* Ability to correlate events from multiple sources to create a timeline analysis across endpoints of an incident.
* Cybersecurity incident response plan development and testing.
* Exceptional organisational skills, which include a high level of literacy and detailed note taking abilities.

Ability to work efficiently and effectively in a high pressure situations

E-Synergy Solutions Limited is acting as an Employment Agency in relation to this vacancy.

Apply for this role

Send us your CV

Apply for this Role

Apply for the role via your Indeed account.