At a Glance
- Tasks: Lead and coordinate responses to cyber security incidents while ensuring best practices.
- Company: Join Admiral, a diverse and inclusive company committed to a people-first culture.
- Benefits: Enjoy remote work, flexible hours, 33-38 days holiday, and up to £3,600 in free shares annually.
- Other info: Opportunities for training, mentoring, and continuous improvement in a fast-paced environment.
- Why this job: Be part of a dynamic team improving security posture and making a real impact.
- Qualifications: 3+ years in cyber security or digital forensics with strong communication and problem-solving skills.
The predicted salary is between 43200 - 72000 £ per year.
We are looking for a highly skilled Cyber Security Incident Responder to coordinate our response efforts on cyber security incidents, from detection to resolution. It’s an exciting time to join Admiral’s Security Operations as we are a fast growing, dynamic function with a wide range of tooling and expertise available to support the role. You will be responsible for the overall response to cyber incidents with a focus on driving actions, root cause analysis and lessons learnt. Whilst excellent communication and stakeholder management skills will play an important part of the role, an understanding of Digital Forensic principles and the curiosity to learn from the Digital Forensics and Incident Response (DFIR) analysts in the team is highly desired.
You’ll be reporting directly to the Head of DFIR but as an expert in your field, are encouraged to proactively engage and work with wider teams across the business to reduce risk and improve our security posture. Leading the coordination of cyber security incidents, you will guide and support others in applying cyber best practice ensuring continuous improvement in both security posture and risk mitigation. You will need to be able to work under pressure in a fast-paced environment. There are opportunities to get involved and drive other exciting team objectives such as tooling integration, training/simulation delivery, problem management and the overall strategy of Admiral’s DFIR capability.
We are offering this as a remote role and encourage our employees to manage their time in line with our flexible working policy, to ensure optimal work-life balance for everyone at Admiral.
Main Duties
- Lead and coordinate cyber security incidents while implementing cyber best practice in line with industry standards (SANS, NIST)
- Collaborate with technical and cross functional teams such as cyber security, privacy, legal, fraud and risk management
- Bring expertise to ensure all lines of inquiry are exhausted and effective root cause analysis is performed
- Conduct post incident reviews to improve our security posture and mitigate risk for the business
- Guide and support the DFIR analysts conducting technical analysis during incidents and investigations
- Develop and maintain incident response plans, playbooks and procedures
- Drive incident and post incident activities effectively to ensure our response and remediation actions are carried out within specified timeframes
- Act as the primary point of contact for cyber incidents while issuing timely communications to stakeholders and thorough documentation of our incident response
- Mentor and coach others as a recognised leader in your field
- Provide training and awareness to your peers through DFIR’s incident response training and attack simulations
- Continuous improvement of our processes, tooling, strategy and cyber governance
Key Skills, Qualifications and Experience
- Experience working in technical role within cyber security, incident response or digital forensics for at least 3 years
- Great communication skills – written and verbal
- Stakeholder management from technical and cross functional teams to senior directors
- Strong problem solving, analytical and decision-making skills with a keen sense for detail
- Proactive and curious mind set to exhaust all lines of enquiry and identify potential risks to the business
- Experience working in large organisations, able to build long lasting business relationships and operate well within a team
- Strong understanding of cyber security frameworks (NIST, SANs, Mitre Att&ck, ISO 27001)
- Proactive and highly organised
- Information Technology, Computer Science or relevant bachelor’s degree
- Experience handling complex cyber incidents for a large organisation
- Knowledge of malware and digital forensics techniques and procedures
- Ability to perform technical incident response activities such as log analysis
- Experience working in the Financial Services industry
We take pride in being a diverse and inclusive business. It\'s a place where you can Be You, and show up as you are. We’re committed to fostering a people-first culture where everyone is accepted, supported, and empowered to be brilliant. You can, Grow And Progress at a pace and direction that suits you, Make A Difference for our customers and each other, and Share in Our Future with all colleagues eligible for up to £3,600 of free shares each year after one year of service.
Everyone receives 33 days holiday (including bank holidays) when they join us, increasing the longer you stay with us, up to a maximum of 38 days (including bank holidays). You also have the option to buy or sell up to an additional five days of annual leave.
We’re proud of our people-first culture. In fact, we\'ve been recognised as a Great Place to Work for Women, a Great Place to Work for Wellbeing, and an overall Great Place to Work for over 25 years! We’re fully committed to making sure your progression is not slowed or halted by barriers related to race, gender, age, sexuality or any of the protected characteristics.
Our fantastic benefits make sure our colleagues have a great work-life balance; You can view some of our other key benefits here.
Seniority level
Seniority level
Not Applicable
Employment type
Employment type
Full-time
Job function
Job function
Information TechnologyIndustries
Financial Services, IT Services and IT Consulting, and Insurance
Referrals increase your chances of interviewing at Admiral Group Plc by 2x
Get notified about new Cyber Security Analyst jobs in United Kingdom.
We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.
#J-18808-LjbffrCyber Security Incident Responder employer: Admiral
Admiral is an exceptional employer that prioritises a people-first culture, offering a diverse and inclusive environment where employees can truly be themselves. With a strong focus on professional growth, employees benefit from extensive training opportunities, flexible working arrangements, and generous holiday allowances, ensuring a healthy work-life balance. As part of a dynamic team in the fast-evolving field of cyber security, you will have the chance to make a meaningful impact while enjoying competitive benefits and the potential for share ownership.
StudySmarter Expert Advice🤫
We think this is how you could land Cyber Security Incident Responder
✨Get Involved in the Cybersecurity Community
Diving into the cybersecurity community is key for landing that full-time gig. Join forums like Reddit's r/cybersecurity or attend local meetups to connect with industry veterans and other job seekers. Networking is everything in this field—don’t just be a passive lurker!
✨Show Off Your Skills with Capture the Flag Competitions
Participate in Capture the Flag (CTF) competitions; these are not just a fun way to boost your skills but also a chance to showcase your talent to potential employers. Many companies, including Admiral, love seeing candidates who actively engage in these challenges.
✨Tailor Your Online Presence
Make sure your LinkedIn and any professional profiles reflect your cybersecurity expertise. Share your projects, whether they’re personal or from a previous role, to catch the eye of hiring managers. This is how they’ll find your passion and commitment to the field!
✨Apply Directly Through Admiral
Don’t forget to head straight to our website and check out any openings for cybersecurity roles at Admiral. Applying directly can sometimes give you an edge, especially if you can mention that you've been following our work or engaging in the community.
We think you need these skills to ace Cyber Security Incident Responder
Some tips for your application 🫡
Show off your technical skills:In cybersecurity, it's crucial to highlight your technical prowess. Make sure your CV showcases specific skills like network security, penetration testing, or threat analysis. If you have relevant certifications (like CEH or CISSP), pop those on the front page to grab attention!
Tailor your portfolio for the role:Even for a full-time role, a portfolio can set you apart. If you've worked on any cybersecurity projects—be it CTF challenges, security assessments, or research papers—include these in your application. This demonstrates not just your skills, but also your hands-on experience!
Use real-world examples:When writing your cover letter, don’t just stick to your qualifications. Share real-world examples of how you’ve tackled security issues or vulnerabilities. This gives the hiring team at Admiral insight into your practical problem-solving abilities and makes your application memorable.
Demonstrate your passion for cybersecurity:Cybersecurity is an ever-evolving field, so show us that you’re always learning! Mention any recent courses, webinars, or industry events you’ve attended. This not only exhibits your enthusiasm but also signals to Admiral that you’re committed to staying ahead in the game.
How to prepare for a job interview at Admiral
✨Sharpen Your Technical Skills
For a role in cybersecurity, it’s essential to be up-to-date with the latest tools and techniques. Brush up on your knowledge of firewalls, intrusion detection systems, and vulnerability assessment tools. Be ready to discuss specific scenarios where you’ve applied these skills, as hands-on experience can really set us apart in interviews.
✨Prepare for Scenario-Based Questions
Expect the interviewers at Admiral to throw in some hypothetical situations to see how you’d handle them. Think about common security breaches or incidents and be prepared to explain how you would respond. This not only shows your problem-solving skills but also your understanding of real-world cybersecurity challenges.
✨Highlight Your Certifications
Certifications like CompTIA Security+, CISSP, or CEH can give you a significant edge in a full-time role in cybersecurity. Make sure to mention these during your interview and be prepared to discuss what you learned through those certifications and how they relate to the position at Admiral.
✨Show Your Passion for Cybersecurity
Since you’re going for a full-time gig, showing genuine enthusiasm for the field can make all the difference. Share any personal projects, blogs, or communities you’re part of that relate to cybersecurity. This not only showcases your passion but also your commitment to staying engaged in this ever-evolving field.
