Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Lead incident response efforts and guide teams through complex security challenges.
- Company: Join a global leader in intelligence and cyber security consultancy.
- Benefits: Enjoy 25 days holiday, flexible working, and a supportive culture.
- Other info: Diverse team with opportunities for growth and learning.
- Why this job: Make a real impact in a fast-growing cyber security division.
- Qualifications: 5+ years in technical cyber security; investigative mindset preferred.
The predicted salary is between 60000 - 80000 £ per year.
S-RM is a global intelligence and cyber security consultancy. Since 2005, we’ve helped some of the most demanding clients in the world solve some of their toughest information security challenges. We’re committed to developing sharp, curious, driven individuals who want to think critically, solve complex problems, and achieve success. But we also know that work isn’t everything. It’s about the lives and careers it helps us build. We’re immensely proud of this culture and we invest in our people’s wellbeing, learning, and ideas every day.
Our Cyber Security division is the fastest-growing part of S-RM. The cyber sector is always evolving, and our Advisory, Ethical Hacking, and Incident Response practices are in more demand than ever. We’re building a team to meet this challenge. We’re quick to respond, innovate, and improve. We don’t get too hung up on hierarchy or bureaucracy. If your ideas are good enough, we’ll empower you to implement them. If you’re the best person to talk to a customer, you’ll get that opportunity, regardless of the title in your email signature. And when you need a hand, your team will always have your back.
We also don’t believe there’s a typical cyber security professional. We’ve built a team of intelligence analysts, technical specialists, software developers, investigators, risk managers, and more. You’ll always find a range of perspectives and expertise to help you learn and grow. If that sounds like your kind of team, we’d like to hear from you.
THE ROLE
Our Incident Response Associates are a critical part of our Cyber Security division’s success. As a Response Associate (Technical Lead), you will deploy your incident response expertise in a senior delivery role across our incident response services. You will work across the full lifecycle of security incidents to help our clients respond and recover, including:
- Leading technical incident response from first contact through to closure: you will be the primary technical resource on response cases, deploying your own expertise and offering guidance to colleagues on your project team.
- Overseeing host- and network-based incident response investigations: including triage, system recovery, technical evidence collection, forensics, log, malware and root cause analyses.
- Developing and sharing domain expertise: we will support you in growing your cyber expertise, including sharing it with the wider team through internal initiatives and programs.
- Participating in an on-call rotation to provide 24X7X365 client incident coverage.
Other features of the role include:
- Variety of casework: no day will be the same. Our team responds to a huge variety of incidents for both public and corporate clients.
- Range of opportunities: you will have opportunities to broaden your security awareness into testing and advisory projects, in addition to deepening your incident response expertise.
- Flexible working practices: responding to incidents can be intense, high-pressure work. We are mindful of our team’s work/life balance and offer flexible working options to support your wellbeing.
WHAT WE’RE LOOKING FOR
Candidates with the following qualifications and experience are likely to succeed as Incident Response Associates at S-RM. That said, if you don’t think you meet all of the criteria below but still are interested in the job, please apply. Nobody checks every box—we’re looking for candidates that are particularly strong in a few areas and have some interest and capabilities in others. We nurture a culture of equality, diversity and inclusion and we are dedicated to developing a workforce that displays a variety of talents, experiences and perspectives.
- Experience: 5+ years’ experience in a technical cyber security role. Direct experience working in an incident response team is beneficial but not essential.
- Approach: an investigative mindset. You should be comfortable solving problems with limited information and guidance.
- Threat intelligence: some demonstrable knowledge of cyber threat actors, and their tactics, techniques, and procedures.
- Skillset: you should be comfortable using scripting to solve cyber security problems and ideally be able to demonstrate an interest in doing so, e.g. through your own research projects or prior experience.
- Communication: you should be able to communicate your technical findings for a non-technical audience in a professional setting.
- Qualifications: relevant industry certifications are not required for this role. However, holding any of the following is beneficial: GCFE, GCFA, EnCE, CFSR, CISSP, GREM, CCNA, MCFE, OSCP, Network+ and Security+.
OUR BENEFITS
We offer thoughtful, balanced rewards and support to help our people do their best work and live their lives outside it, including: 25 days holiday per year in addition to...
Lead Incident Response Engineer in London employer: S-RM
Contact Detail:
S-RM Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Lead Incident Response Engineer in London
✨Tip Number 1
Network like a pro! Get out there and connect with folks in the cyber security scene. Attend meetups, webinars, or even local events. You never know who might have the inside scoop on job openings or can put in a good word for you.
✨Tip Number 2
Show off your skills! Create a portfolio or GitHub repository showcasing your projects, scripts, or any incident response scenarios you've tackled. This gives potential employers a taste of what you can bring to the table.
✨Tip Number 3
Prepare for interviews by brushing up on common incident response scenarios. Think about how you'd handle different situations and be ready to discuss your thought process. Practice makes perfect, so consider mock interviews with friends or mentors.
✨Tip Number 4
Don't forget to apply through our website! It’s the best way to ensure your application gets seen. Plus, it shows you're genuinely interested in joining our awesome team at S-RM. Let's make it happen!
We think you need these skills to ace Lead Incident Response Engineer in London
Some tips for your application 🫡
Show Your Passion for Cyber Security: When writing your application, let your enthusiasm for cyber security shine through! Share any personal projects or experiences that highlight your investigative mindset and problem-solving skills. We love seeing candidates who are genuinely excited about the field.
Tailor Your Application: Make sure to customise your application to reflect the specific requirements of the Lead Incident Response Engineer role. Highlight your relevant experience and skills that align with what we’re looking for. This shows us you’ve done your homework and are serious about joining our team!
Keep It Clear and Concise: While we appreciate detail, clarity is key! Make sure your application is easy to read and gets straight to the point. Use bullet points where necessary to break up information and make it digestible. We want to see your qualifications without wading through unnecessary fluff.
Apply Through Our Website: Don’t forget to submit your application through our website! It’s the best way for us to receive your details and ensures you’re considered for the role. Plus, it gives you a chance to explore more about our culture and values while you’re at it!
How to prepare for a job interview at S-RM
✨Know Your Stuff
Make sure you brush up on your technical knowledge related to incident response. Be ready to discuss your past experiences, especially any specific incidents you've handled. This will show that you have the expertise and confidence needed for the role.
✨Show Your Investigative Mindset
Prepare to demonstrate your problem-solving skills. Think of examples where you had to work with limited information and how you approached those challenges. This will highlight your ability to think critically, which is crucial in cyber security.
✨Communicate Clearly
Practice explaining complex technical concepts in simple terms. You might be asked to present your findings to a non-technical audience, so being able to communicate effectively is key. Use relatable analogies if it helps!
✨Be Ready to Share Ideas
S-RM values innovation and fresh perspectives. Come prepared with ideas or suggestions on how to improve incident response processes. This shows that you're not just looking to fit in but are eager to contribute and make an impact.