Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Lead and build a new Cyber Incident Response Team from scratch.
- Company: Join a global leader in aviation and travel, shaping cyber resilience.
- Benefits: Enjoy hybrid work options and opportunities for career growth.
- Why this job: Make a real impact in a greenfield role with high visibility and strategic influence.
- Qualifications: 5-10 years in Security Operations; experience leading a CIRT is essential.
- Other info: Opportunity to develop and expand a permanent CIRT team.
The predicted salary is between 48000 - 72000 £ per year.
An exciting opportunity to join a global aviation and travel leader in a high-impact, greenfield cyber security role. We’re supporting a well-established organisation in their search for a CIRT Manager to build and lead a new incident response capability from the ground up. You’ll play a pivotal role in shaping cyber resilience across multiple operating companies, working at the heart of a modernising SOC function.
The Role - As CIRT Manager, you’ll be responsible for:
- Designing and implementing the CIRT operating model and incident response processes
- Leading the selection and integration of new incident response and forensic tooling
- Collaborating closely with an MSSP to define playbooks, SLAs, and KPIs
- Acting as the primary escalation point for major incidents across the group
- Developing the business case for scaling an in-house CIRT capability
- Driving post-incident reviews, continuous improvement, and operational readiness
You’ll also build trusted relationships across internal stakeholders and external partners, ensuring CIRT services align with business risk and SOC strategy.
What They’re Looking For:
- Proven experience in Security Operations and Incident Response (5–10 years)
- Experience in or leading a CIRT or similar function
- Strong knowledge of SIEM/SOAR, EDR, forensic tools, and incident handling best practices
- Excellent communication and stakeholder engagement skills
- Understanding of key frameworks (e.g. MITRE ATT&CK, NIST CSF)
Desirable: CISM, CISSP or similar; scripting (Python, Bash); cloud security exposure.
Why It’s Worth Considering:
- A true greenfield opportunity with autonomy to shape the function
- Work across one of the most recognised names in global aviation and travel
- High visibility and strategic influence across the group and vendors
- Career growth: roadmap to expand and lead a permanent CIRT team
Contact Detail:
Adeptis Group Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Cyber Incident Response Manager
✨Tip Number 1
Network with professionals in the cyber security field, especially those who have experience in incident response. Attend industry conferences or local meetups to connect with potential colleagues and learn about the latest trends and tools in the sector.
✨Tip Number 2
Familiarise yourself with the specific frameworks mentioned in the job description, such as MITRE ATT&CK and NIST CSF. Being able to discuss these frameworks in detail during interviews will demonstrate your expertise and understanding of the role.
✨Tip Number 3
Prepare to showcase your leadership skills by thinking of examples where you've successfully led a team or project in a high-pressure environment. This will be crucial for a role that involves building and leading a new incident response capability.
✨Tip Number 4
Research the company’s current cyber security posture and any recent incidents they may have faced. This knowledge will not only help you tailor your discussions but also show your genuine interest in the organisation and its challenges.
We think you need these skills to ace Cyber Incident Response Manager
Some tips for your application 🫡
Tailor Your CV: Make sure your CV highlights relevant experience in Security Operations and Incident Response. Emphasise any leadership roles you've held, particularly in a CIRT or similar function, and showcase your knowledge of SIEM/SOAR and forensic tools.
Craft a Compelling Cover Letter: In your cover letter, express your enthusiasm for the role and the opportunity to build a new incident response capability. Mention specific experiences that demonstrate your ability to design and implement incident response processes and your understanding of frameworks like MITRE ATT&CK.
Highlight Communication Skills: Given the importance of stakeholder engagement in this role, ensure you provide examples of how you've successfully communicated with internal and external partners in previous positions. This could include leading post-incident reviews or collaborating with MSSPs.
Showcase Continuous Improvement Mindset: Discuss your approach to continuous improvement and operational readiness in your application. Provide examples of how you've driven improvements in past roles, particularly in relation to incident handling and response capabilities.
How to prepare for a job interview at Adeptis Group
✨Showcase Your Experience
Be prepared to discuss your previous roles in Security Operations and Incident Response. Highlight specific incidents you've managed, the tools you used, and the outcomes of your actions. This will demonstrate your hands-on experience and ability to lead a CIRT.
✨Understand the Frameworks
Familiarise yourself with key frameworks like MITRE ATT&CK and NIST CSF. Be ready to explain how these frameworks can be applied in real-world scenarios, as this knowledge is crucial for shaping the incident response processes.
✨Communicate Effectively
Since excellent communication skills are essential for this role, practice articulating complex technical concepts in a way that non-technical stakeholders can understand. This will show your ability to engage with various teams and build trusted relationships.
✨Prepare for Scenario-Based Questions
Expect scenario-based questions that assess your problem-solving skills and decision-making under pressure. Think through potential incidents and how you would respond, including the tools and processes you would implement.
