Cyber Incident Response Analyst

Job Title: Cyber Incident Response AnalystContract Type: Full time PermanentLocation: Edinburgh / Glasgow / Alderley Park / LondonWorking style: Hybrid 50% home/office basedClosing date: 19th June 2025This role will assure the response to a cybersecurity event or incident, taking the lead to contain the threat to the Royal London business and support remediation activities to stabilize service. The role will coordinate activities between Defence, Threat Intelligence, SOC, and Engineering, and serve as the point of contact for IT Security within the Royal London Group incident management process. The team aims to minimize and control damage from cybersecurity incidents, ensuring incident management and response controls are effective to enable the identification, protection, detection, response, and recovery of RLG information assets.The role contributes to our purpose by:Helping build financial resilienceMoving fairly to a sustainable worldStrengthening mutual choice for customersAbout the roleCreation and maintenance of RLG incident response plan and proceduresUndertake confidential and sensitive colleague investigationsDevelop and mature the Incident Response policy, process, and proceduresProvide root cause analysis, create metrics, and generate reports and analytics to improve future incident responseCollect supporting information and artifacts for incident response activitiesIdentify and execute projects to enhance intrusion detection and incident response capabilitiesConduct technical analysis on impacted systems to determine impact, scope, and recovery from active and potential cyber incidentsLeverage cybersecurity tools to identify and remediate threatsExecute the Incident Response Lifecycle and coordinate remediation activities across the organizationRecommend solutions to optimize technical and process aspects of the incident lifecyclePresent incidents, improvements, and features to senior managementProvide training and mentoring to team membersAbout youMinimum of 2 years in an incident response or forensic roleUnderstanding of threat analysis and threat modellingExperience with endpoints/EDR in an MDR environmentExperience managing complex cybersecurity or service incidentsAbility to identify patterns, anomalies, and issues across multiple vectorsKnowledge of cybersecurity threats such as phishing, malware, and data complianceAbility to create structured reports on cybersecurity incidentsStrong project management, organizational, and communication skillsSelf-motivated, innovative, and eager to learnForensic investigation knowledgeExperience with MSP/MSSP/MDR preferredAbout Royal London We\’re the UK\’s largest mutual life, pensions, and investment company, offering protection, long-term savings, and asset management products and services.Our People Promise is to work in an inclusive, responsible, enjoyable, and fulfilling environment, underpinned by our Spirit of Royal London values: Empowered, Trustworthy, Collaborate, Achieve.We offer great benefits, including 28 days of annual leave plus bank holidays, up to 14% employer-matched pension scheme, and private medical insurance. All benefits can be viewedhere .Inclusion, Diversity, and Belonging We are an inclusive employer that celebrates diverse backgrounds and cultures. Our diverse perspectives enhance our skills and are valued and respected, regardless of background.#J-18808-Ljbffr