Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Lead the enhancement of cyber incident response processes using ServiceNow SecOps.
- Company: Join a leading financial services firm focused on security and innovation.
- Benefits: Competitive daily rate, hybrid work model, and opportunities for professional growth.
- Other info: Dynamic role with a focus on governance and regulatory compliance.
- Why this job: Make a real impact in cyber security while working with cutting-edge technology.
- Qualifications: Experience with ServiceNow SecOps and a strong understanding of cyber incident response.
The predicted salary is between 30000 - 40000 £ per year.
Duration: contract to run until 30/10/2026
Location: Knutsford, Hybrid 3 days per week onsite
Rate: up to £579.60 p/d Umbrella inside IR35
Role Purpose / Summary
As part of the CEP Incident Management Enhancements project, the Security Incident Manager will play a key role in enhancing the ServiceNow SecOps Security Incident Response (SIR) module as a core deliverable of the Runbook Modernisation workstream. This role is focused on implementing, configuring, and operationalising the SIR capability while ensuring incident response processes, runbooks, and tooling align with regulatory expectations and recognised cyber security frameworks. The role combines hands‑on ServiceNow SecOps (SIR) implementation responsibilities with the accountabilities of a Security Incident Manager, supporting effective cyber incident response and operational readiness within a regulated financial services environment.
Key Responsibilities
- Lead the configuration, implementation, and optimisation of the ServiceNow SecOps Security Incident Response (SIR) module.
- Ensure the SIR platform supports the end‑to‑end cyber incident lifecycle in line with the organisation’s security incident management operating model.
- Configure workflows, playbooks, and integrations to enable consistent, efficient, and auditable incident response.
- Support automation and tooling integration to enhance response speed and reduce operational risk.
- Act as a Security Incident Manager within the implementation context, ensuring processes, runbooks, and tooling support effective incident coordination and decision‑making.
- Ensure alignment with recognised cyber incident response frameworks, including NIST.
- Embed governance, risk, and regulatory considerations into incident workflows and response procedures.
- Design, develop, and maintain cyber incident response runbooks as part of the runbook modernisation initiative.
- Ensure runbooks are practical, actionable, and aligned to ServiceNow SIR workflows and automation.
- Apply structured process design approaches in line with recognised modelling standards such as BPMN.
- Maintain runbooks to reflect changes in tooling, processes, and regulatory requirements.
- Deliver knowledge transfer and enablement activities to operational security and incident response teams.
- Support adoption of the enhanced ServiceNow SIR capability and updated runbooks.
- Produce clear documentation to support operational use, governance, and continuous improvement.
Skills and Experience
Essential
- Proven experience implementing and supporting ServiceNow SecOps Security Incident Response (SIR).
- Demonstrated experience operating in or supporting a Security Incident Manager function.
- Strong understanding of cyber incident response operating models and frameworks such as NIST.
- Strong capability in runbook design, including automation and tooling integration.
- Solid process development and documentation skills aligned to frameworks such as BPMN.
- Experience working in a regulated financial services environment.
- Strong understanding of governance, risk, and regulatory expectations for cyber incidents.
Desirable
- Experience supporting incident management or runbook modernisation programmes.
- Familiarity with operational readiness, service transition, and enablement activities.
Incident Manager CGEMJP00339709 employer: Experis
Contact Detail:
Experis Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Incident Manager CGEMJP00339709
✨Tip Number 1
Network like a pro! Get out there and connect with folks in the industry. Attend meetups, webinars, or even just grab a coffee with someone who’s already in the role you want. You never know who might have the inside scoop on job openings!
✨Tip Number 2
Show off your skills! When you get the chance to chat with potential employers, make sure to highlight your experience with ServiceNow SecOps and incident management. Share specific examples of how you've tackled challenges in the past – it’ll make you stand out!
✨Tip Number 3
Don’t forget to follow up! After interviews or networking events, shoot a quick thank-you email. It shows you’re genuinely interested and keeps you fresh in their minds. Plus, it’s a great opportunity to reiterate why you’d be a perfect fit for the role.
✨Tip Number 4
Apply through our website! We’ve got loads of opportunities that might be perfect for you. Plus, applying directly can sometimes give you a leg up in the process. So, don’t hesitate – check us out and get your application in!
We think you need these skills to ace Incident Manager CGEMJP00339709
Some tips for your application 🫡
Tailor Your CV: Make sure your CV is tailored to the Incident Manager role. Highlight your experience with ServiceNow SecOps and any relevant cyber incident response frameworks like NIST. We want to see how your skills match what we're looking for!
Craft a Compelling Cover Letter: Your cover letter is your chance to shine! Use it to explain why you're the perfect fit for this role. Share specific examples of your past experiences that relate to the responsibilities listed in the job description. We love a good story!
Showcase Your Documentation Skills: Since this role involves a lot of documentation, make sure to showcase your process development and documentation skills. Mention any experience you have with runbook design or creating clear operational documents. We appreciate clarity and structure!
Apply Through Our Website: Don't forget to apply through our website! It’s the best way for us to receive your application and ensures you’re considered for the role. Plus, it makes the whole process smoother for everyone involved!
How to prepare for a job interview at Experis
✨Know Your ServiceNow SecOps Inside Out
Make sure you brush up on your knowledge of the ServiceNow SecOps Security Incident Response (SIR) module. Be ready to discuss your previous experiences with implementing and optimising this tool, as well as how you've configured workflows and playbooks in the past.
✨Understand Cyber Incident Response Frameworks
Familiarise yourself with recognised frameworks like NIST. Be prepared to explain how these frameworks influence your approach to incident management and how you ensure compliance within a regulated financial services environment.
✨Showcase Your Runbook Design Skills
Be ready to talk about your experience in designing and maintaining runbooks. Highlight any specific examples where your runbooks have improved incident response efficiency or aligned with automation and tooling integration.
✨Prepare for Scenario-Based Questions
Expect scenario-based questions that assess your problem-solving skills in real-time incident management situations. Think of examples from your past roles where you successfully coordinated responses and made critical decisions under pressure.