At a Glance
- Tasks: Lead high-stakes cyber incidents and ensure rapid recovery and communication.
- Company: Join Analog Devices, a leader in innovative security solutions.
- Benefits: Enjoy competitive salary, benefits, and continuous professional development.
- Other info: Collaborative culture that values integrity, innovation, and work-life balance.
- Why this job: Make a real impact on global security while working with cutting-edge tools.
- Qualifications: 5+ years in cyber incident management and strong communication skills.
The predicted salary is between 60000 - 80000 £ per year.
Location: UK (hybrid)
Role Overview
We’re looking for a Cyber Incident Manager who brings calm, speed, and precision to high‑stakes security events. At Analog Devices, you’ll play a central role in our end‑to‑end cyber incident response—protecting operations, safeguarding intellectual property, and upholding the trust our customers place in us. You will take command when it matters most. You’ll act as Incident Commander across the full lifecycle using ADI’s SANS‑based process and severity model, ensuring disciplined execution from detection to recovery. You’ll lead cyber incidents, run the Incident Action Group (IAG), and drive rapid containment, recovery, and high‑quality post‑incident reviews. You’ll own clear communication, maintain legal privilege, ensure record‑keeping, and work closely with legal, engineering, and cross‑functional partners. Ultimately, you’ll raise our incident response maturity and strengthen resilience—fast and with lasting impact.
Key Responsibilities
- Own incident communications: run executive updates and stakeholder calls per ADIs Comms & Escalation Matrix; produce concise executive summaries and impact assessments.
- Stand up and run the Incident Action Group (IAG); set strategy, assign workstreams, and steer decisions at pace.
- Operate within the incident case management platform to ensure real‑time logging, status, actions and decisions are captured and auditable.
- Orchestrate SOC, IR retainer, legal and engineering to deliver containment, focused monitoring, and durable remediation.
- Operate to NIST‑aligned IR practices and ADI governance; align evidence and timelines to other applicable obligations (e.g., sectoral regulators).
- When appropriate, maintain legal privilege throughout investigations using ADI’s privilege guidance and approved channels.
- Partner with SOC and Threat Intel to apply MITRE ATT&CK mapping, enable proactive detection, and reduce dwell time.
- Drive post‑incident reviews (PIRs), root‑cause analysis and action plans; track MTTD/MTTR, severity distributions and regulatory timelines.
- Be a pivotal part of tabletops and simulations; evolve playbooks to reflect new tactics, cloud patterns and control gaps.
Essential Experience
- 5+ years leading cyber incidents and complex intrusions (SOC/IR/major incident command) in global enterprise environments.
- Mastery of incident lifecycle execution (SANS six steps), evidence handling, and cross‑functional coordination.
- Strong grasp of SIEM/EDR (e.g., Microsoft Sentinel, Defender, Splunk) and cloud incident patterns (Azure/AWS).
- Clear, executive‑level communication—translating technical impact into business risk and decisions.
Nice‑to‑have Certifications
- GCIH, GCFA/GCFR, GCTI, CISSP, CCSP, CISM; UK CREST credentials welcome but not essential.
Why Join Us?
- Work with cutting‑edge security tools and technologies in a dynamic, innovative environment.
- Play a meaningful role in shaping and strengthening the security posture of a global enterprise.
- Competitive salary, benefits, and continuous professional development opportunities.
- A collaborative culture that values integrity, innovation, and work‑life balance.
Cyber Incident Manager employer: Dormont Manufacturing Co
At Analog Devices, we pride ourselves on being an exceptional employer, offering a dynamic and innovative work environment where you can make a meaningful impact on global security. Our collaborative culture values integrity and work-life balance, while providing competitive salaries, comprehensive benefits, and continuous professional development opportunities to help you grow in your career. Join us in shaping the future of cybersecurity and enjoy the unique advantages of working in a hybrid role that fosters both personal and professional growth.
StudySmarter Expert Advice🤫
We think this is how you could land Cyber Incident Manager
✨Tip Number 1
Network like a pro! Reach out to folks in the cyber security field, especially those who work at Analog Devices. A friendly chat can open doors and give you insights that might just help you stand out.
✨Tip Number 2
Prepare for the interview by brushing up on your incident management skills. Be ready to discuss real-life scenarios where you've led cyber incidents. We want to hear how you kept calm under pressure and drove effective responses!
✨Tip Number 3
Showcase your communication skills! Practice explaining complex technical concepts in simple terms. Remember, as a Cyber Incident Manager, you'll need to translate tech talk into business impact for stakeholders.
✨Tip Number 4
Don’t forget to apply through our website! It’s the best way to ensure your application gets seen by the right people. Plus, it shows you're genuinely interested in joining our team at Analog Devices.
We think you need these skills to ace Cyber Incident Manager
Some tips for your application 🫡
Tailor Your Application:Make sure to customise your CV and cover letter to highlight your experience in cyber incident management. Use keywords from the job description to show that you understand what we're looking for.
Showcase Your Communication Skills:Since clear communication is key in this role, give examples of how you've effectively communicated during past incidents. We want to see how you can translate technical details into business risks.
Highlight Relevant Experience:Don’t forget to emphasise your experience with incident lifecycle execution and any tools like SIEM/EDR. We’re keen to see how your background aligns with our needs.
Apply Through Our Website:We encourage you to apply directly through our website. It’s the best way to ensure your application gets the attention it deserves, and we can’t wait to see what you bring to the table!
How to prepare for a job interview at Dormont Manufacturing Co
✨Know Your Incident Lifecycle
Make sure you’re well-versed in the SANS six steps of incident response. Be ready to discuss how you've applied these steps in past roles, especially in high-pressure situations. This will show that you can bring calm and precision when it matters most.
✨Communicate Like a Pro
Since clear communication is key for this role, practice translating technical jargon into business language. Prepare examples where your communication made a difference during an incident. This will demonstrate your ability to keep stakeholders informed and engaged.
✨Familiarise Yourself with Tools
Brush up on your knowledge of SIEM/EDR tools like Microsoft Sentinel and Splunk. Be prepared to discuss how you’ve used these tools in previous incidents, as well as any cloud incident patterns you’ve encountered. This shows you’re not just familiar but also hands-on with the technology.
✨Prepare for Scenario Questions
Expect scenario-based questions that test your decision-making under pressure. Think about past incidents you've managed and be ready to walk through your thought process, actions taken, and outcomes. This will highlight your leadership skills and ability to drive rapid containment and recovery.
