Cyber Defense Lead: Incident Response & SIEM (Hybrid) in Horwich

Location: Horwich, BL6 6JW

Contract: Full-Time Hours / Permanent

Salary: Up to £55,000

Company: EG Group

About the Role:

EG Group are looking for a Senior Cybersecurity Analyst to play a key role in protecting the organisation’s technology estate across multiple regions. Reporting to the Head of Information Security, you will lead day-to-day security operations, acting as a technical escalation point for incidents and ensuring threats are effectively identified, investigated, and resolved. This is a hands-on role where you will take ownership during high-severity incidents, working closely with IT, infrastructure, and compliance teams to ensure security controls are effective and aligned with business needs. You will also contribute to the ongoing development of security processes, supporting the organisation in strengthening its overall security posture within a complex, fast-paced environment.

Why Join EG Group?

• Discretionary performance-based bonus scheme
• Grow your career – gain accredited qualifications, apprenticeships, and progression opportunities within a global organisation
• Hybrid working – up to 2 days per week (dependent on role and business needs)
• Salary Sacrifice Schemes – Cycle to Work and Car Scheme available
• Enhanced Maternity & Paternity leave
• Generous annual leave entitlement
• Annual leave buy back scheme – purchase up to 5 additional days
• Discounted gym membership – stay healthy and save on fitness costs
• One paid volunteering day per year
• Wellbeing facilities – space to relax and recharge
• Free secure on-site parking
• Dress Down Fridays
• Free VDU eye test

What you’ll be doing:

• Leading the investigation and response to security incidents, acting as the escalation point for complex or high-severity events.
• Monitoring and optimising security tooling, including SIEM and endpoint protection platforms, to improve detection and response capabilities.
• Conducting threat hunting, root cause analysis, and forensic investigations to identify risks and control weaknesses.
• Developing and maintaining incident response processes, playbooks, and detection rules aligned to best practice frameworks.
• Translating threat intelligence into actionable controls to strengthen detection and prevention measures.
• Supporting vulnerability management activities, including identifying, prioritising, and tracking remediation of risks.
• Collaborating with IT, infrastructure, and compliance teams to embed secure-by-design principles and improve overall security maturity.

This list is not exhaustive and may be added to or amended from time to time.

What we’re looking for:

• Proven experience in a cybersecurity or security operations role, with exposure to incident response and threat investigation.
• Strong understanding of security technologies such as SIEM, EDR/XDR, and vulnerability management tools.
• Experience working with Microsoft security technologies (e.g. Sentinel, Defender, Azure security tools).
• Strong analytical skills, with the ability to assess risk and make sound decisions under pressure.
• Experience supporting security frameworks or regulatory requirements (e.g. ISO 27001, NIS2, PCI DSS).
• Confident communicator, able to engage with both technical and non-technical stakeholders.
• Experience mentoring or supporting junior team members is desirable.
• A proactive, detail-oriented, and solutions-focused approach in a fast-paced environment.

Who is EG Group?

EG Group is a leading global convenience retailer, operating a wide range of brands across multiple sectors including fuel, foodservice, and grocery retail. With a presence in over 7 countries and a commitment to innovation and customer service, EG Group continues to expand its portfolio and reach. Our company is focused on delivering value to its customers, partners, and stakeholders through efficient operations and strategic growth.

Please note - the successful applicant will be subject to a DBS check which will be funded by EG Group.