Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Lead incident response efforts and support clients during cyber security incidents.
- Company: Join a passionate team of cyber defenders focused on making a real impact.
- Benefits: Enjoy hybrid work options, amazing training opportunities, and potential career growth.
- Why this job: This role offers hands-on experience and the chance to shape your career in cybersecurity.
- Qualifications: 2+ years in a SOC/Blue team role; strong communication skills and tech familiarity required.
- Other info: Opportunity for referral bonuses and iPad rewards for new client referrals.
The predicted salary is between 39000 - 46000 £ per year.
We are looking for an Incident Response (IR) Consultant to join our team of passionate and pragmatic cyber defenders. This is a unique opportunity for someone with a few years of experience in a SOC (Blue Team / Security Operations Centre) environment who is ready to step up into a more client-facing, hands-on incident response role.
In this role, you'll be at the heart of our Incident Response capability, supporting clients during active incidents and helping them to prepare through compromise assessments, readiness exercises, and defensive content. You'll also be part of our escalation rota, supporting our Managed Detection and Response (MDR) service - sometimes leading incidents, other times mentoring junior SOC / Blue Team analysts.
We are ideally looking for someone who can work hybrid, attending an office in Ealing one day per week, but we're open to some flexibility for the right candidate.
Key Responsibilities- Lead and coordinate technical response during cyber security incidents.
- Act as a point of escalation for MXDR services, supporting junior analysts with incident triage and investigation.
- Conduct compromise assessments and deliver Incident Readiness activities (e.g., tabletop exercises).
- Contribute to the development and delivery of high-quality, actionable defensive security content.
- Communicate clearly and confidently with clients - both in writing and verbally - during high-pressure situations.
- Work alongside the team to continually improve incident response and detection capability.
We're not looking for a technical wizard, but someone with a solid grounding and the confidence to roll up their sleeves and figure things out when needed.
Essential experience:- 2+ years in a SOC/Blue team or similar defensive security role, hands on the tech.
- Familiarity with SIEM esp, Microsoft Sentinel and Defender (e.g., Defender for Endpoint, Defender for Identity).
- Strong verbal and written communication skills.
- Ability to lead or coordinate during incident response engagements.
- A broad knowledge base across cybersecurity with a willingness to dive deep when needed.
- Based within commuting distance (60/90mins) of NW London.
- Experience delivering compromise assessments or tabletop exercises.
- Knowledge of security operations across a range of industries.
- Prior client-facing experience.
- Interest in creating or contributing to high-quality threat detection and IR content.
We invest heavily in the development of our people. Many of those we've supported have gone on to become Technical Leads, Principal Consultants, Ops Leaders and even SANS Instructors in some of the most prominent organisations in the world - from big tech and central government to cutting-edge crypto start-ups. This is more than just a job - it's a unique opportunity to grow, shape your career, and make a meaningful impact in the cyber security community.
To Apply:Please submit your CV and a short note outlining your relevant experience and interest in the role via your preferred job platform or application channel. You'll need FULL UK Right to Work, with no exceptions. This is Full UK Passport or ILR. We cannot accept PWS visa.
Incident Response IR Consultant in West London employer: Circle Group
Contact Detail:
Circle Group Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Incident Response IR Consultant in West London
✨Tip Number 1
Familiarise yourself with the specific tools mentioned in the job description, like Microsoft Sentinel and Defender. Having hands-on experience or even a solid understanding of these tools will give you an edge during interviews.
✨Tip Number 2
Prepare to discuss your previous experiences in a SOC environment. Be ready to share specific examples of incidents you've handled, how you coordinated responses, and any mentoring you've done for junior analysts.
✨Tip Number 3
Since this role involves client interaction, practice articulating complex technical concepts in simple terms. This will help you demonstrate your communication skills during the interview process.
✨Tip Number 4
Research the company’s approach to incident response and their values. Understanding their culture and how they operate can help you tailor your responses and show that you're a good fit for their team.
We think you need these skills to ace Incident Response IR Consultant in West London
Some tips for your application 🫡
Tailor Your CV: Make sure your CV highlights your experience in a SOC environment, particularly any hands-on incident response work. Emphasise your familiarity with tools like Microsoft Sentinel and Defender, as well as your communication skills.
Craft a Compelling Cover Note: Write a short note that outlines your relevant experience and why you're interested in the Incident Response Consultant role. Be specific about how your background aligns with the responsibilities mentioned in the job description.
Showcase Your Communication Skills: Since clear communication is crucial in this role, ensure your application reflects your ability to convey complex information simply and effectively. Use concise language and structure your writing well.
Highlight Your Growth Mindset: Mention your willingness to learn and grow within the cyber security field. Discuss any training or development opportunities you've pursued in the past and how they have prepared you for this role.
How to prepare for a job interview at Circle Group
✨Showcase Your SOC Experience
Make sure to highlight your experience in a Security Operations Centre (SOC) environment. Discuss specific incidents you've handled and how you contributed to the team's success, as this role requires a solid grounding in defensive security.
✨Demonstrate Communication Skills
Since you'll be communicating with clients during high-pressure situations, practice articulating your thoughts clearly and confidently. Prepare examples of how you've effectively communicated complex technical information to non-technical stakeholders.
✨Prepare for Technical Scenarios
Be ready to discuss technical scenarios related to incident response. Brush up on your knowledge of SIEM tools, especially Microsoft Sentinel and Defender, and be prepared to explain how you've used them in past roles.
✨Express Your Willingness to Learn
This role is about growth and development, so convey your eagerness to learn and adapt. Share instances where you've taken the initiative to deepen your knowledge in cybersecurity or led training sessions for junior analysts.
