Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Manage cyber incidents and improve response frameworks for clients.
- Company: Join a £100M+ IT Services Consultancy transforming the public sector.
- Benefits: Flexible working, 25 days leave, wellness support, and professional development.
- Why this job: Make a real impact in cyber security while developing your skills.
- Qualifications: Experience in cyber security, incident management, or risk assurance.
- Other info: Collaborative culture with fun office events and strong leadership.
The predicted salary is between 36000 - 60000 £ per year.
Methods is a £100M+ IT Services Consultancy who has partnered with a range of central government departments and agencies to transform the way the public sector operates in the UK. Established over 30 years ago and UK-based, we apply our skills in transformation, delivery, and collaboration from across the Methods Group, to create end-to-end business and technical solutions that are people‑centred, safe, and designed for the future.
Our human touch sets us apart from other consultancies, system integrators and software houses – with people, technology, and data at the heart of who we are, we believe in creating value and sustainability through everything we do for our clients, staff, communities, and the planet. We support our clients in the success of their projects while working collaboratively to share skill sets and solve problems. At Methods we have fun while working hard; we are not afraid of making mistakes and learning from them.
This role sits at the intersection of incident response, governance, and risk management. Rather than operating solely as a technical responder, you will focus on how incidents are managed, assured, reported, and improved across the organisation. You’ll support clients in designing, operating, and assuring incident response frameworks that stand up to regulatory scrutiny, audit, and real‑world pressure.
Key Responsibilities
- Define and maintain incident response policies, playbooks, and escalation models
- Ensure incidents are classified, handled, and closed in line with organisational risk appetite
- Act as a governance point of contact during significant cyber incidents
- Assess incidents for control failures, systemic risk, and regulatory impact
- Map incident response activities to frameworks such as NIST, ISO/IEC 27001, and organisational risk policies
- Support audits, assurance reviews, and post‑incident evidence packs
- Lead or support lessons‑learned reviews and root‑cause analysis
- Translate technical findings into risk, control, and governance outcomes
- Track remediation actions and ensure they are owned, prioritised, and delivered
- Brief senior stakeholders on incident impact, response posture, and residual risk
- Produce clear, defensible reporting suitable for boards, regulators, and auditors
- Bridge the gap between SOC teams, technical specialists, risk, and leadership
Experience What We’re Looking For
- Cyber security, incident management, risk, assurance, or GRC background
- Experience working with or alongside SOC / IR teams (without needing to live on shift)
- Exposure to regulated or high‑assurance environments (public sector, finance, critical services, etc.)
Knowledge & Skills
- Strong understanding of incident response lifecycle from a governance perspective
- Ability to translate technical incidents into business risk and control language
- Familiarity with security and risk frameworks (NIST, ISO 27001, CAF, etc.)
- Confident producing documentation that survives audit without inducing migraines
Mindset
- Calm under pressure, structured in chaos
- Comfortable saying "this is a governance issue" when everyone else says "just fix it"
- Naturally curious about why incidents happen
This role will require you to have or be willing to go through Security Clearance. As part of the onboarding process candidates will be asked to complete a Baseline Personnel Security Standard; details of the evidence required to apply may be found on the government website Gov.UK. If you are unable to meet this and any associated criteria, then your employment may be delayed, or rejected. Details of this will be discussed with you at interview.
Methods is passionate about its people; we want our colleagues to develop the things they are good at and enjoy.
By joining us you can expect
- Autonomy to develop and grow your skills and experience
- Be part of exciting project work that is making a difference in society
- Strong, inspiring and thought‑provoking leadership
- A supportive and collaborative environment
Development
- Access to LinkedIn Learning, a management development programme, and training.
Wellness
- 24/7 confidential employee assistance programme.
Flexible Working
- Including home working and part time.
Social
- Office parties, breakfast Tuesdays, monthly pizza Thursdays, Thirsty Thursdays, and commitment to charitable causes.
Time Off
- 25 days of annual leave a year, plus
Cyber Security Consultant - Incident Management in London employer: EdgeMethods
Contact Detail:
EdgeMethods Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Cyber Security Consultant - Incident Management in London
✨Tip Number 1
Network like a pro! Reach out to folks in the cyber security field, especially those who work at Methods or similar companies. LinkedIn is your best mate here; drop them a message and ask for a chat about their experiences. You never know, they might just point you towards an opportunity!
✨Tip Number 2
Prepare for the interview by brushing up on your incident management knowledge. Make sure you can discuss how you would handle real-world scenarios, not just theoretical ones. We want to see that you can think on your feet and bring practical solutions to the table.
✨Tip Number 3
Show off your curiosity! During interviews, ask insightful questions about the company's incident response frameworks and how they handle governance. This shows you're genuinely interested and ready to engage with the challenges they face.
✨Tip Number 4
Don’t forget to apply through our website! It’s the best way to ensure your application gets seen by the right people. Plus, it shows you’re keen on joining our team and contributing to the exciting projects we have lined up.
We think you need these skills to ace Cyber Security Consultant - Incident Management in London
Some tips for your application 🫡
Tailor Your Application: Make sure to customise your CV and cover letter for the Cyber Security Consultant role. Highlight your experience in incident management and governance, and show us how your skills align with our needs.
Showcase Your Experience: We want to see your background in cyber security and risk management. Share specific examples of how you've handled incidents or contributed to compliance frameworks, as this will help us understand your expertise.
Be Clear and Concise: When writing your application, keep it straightforward. Use clear language and avoid jargon where possible. We appreciate well-structured documents that are easy to read and understand.
Apply Through Our Website: Don’t forget to submit your application through our website! It’s the best way for us to receive your details and ensures you’re considered for the role. Plus, we love seeing applications come directly from our site!
How to prepare for a job interview at EdgeMethods
✨Know Your Incident Response Frameworks
Familiarise yourself with key frameworks like NIST and ISO/IEC 27001. Be ready to discuss how these frameworks apply to incident management and governance, as this will show your understanding of the role's requirements.
✨Prepare for Scenario-Based Questions
Expect questions that ask you to describe how you would handle specific incidents or governance issues. Think through past experiences where you managed incidents and be prepared to explain your thought process and outcomes.
✨Show Your Curiosity
Demonstrate your natural curiosity about incidents and their root causes. Be ready to discuss why certain incidents happen and how they can be prevented in the future, which aligns with the company's focus on continuous improvement.
✨Communicate Clearly and Confidently
Practice articulating complex technical concepts in simple terms. This is crucial for bridging the gap between technical teams and senior stakeholders, so ensure you can produce clear, defensible reporting that resonates with non-technical audiences.
