Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Lead incident response efforts and guide your team through security challenges.
- Company: Join a global leader in cyber security consultancy with a dynamic culture.
- Benefits: Enjoy 25 days holiday, flexible working, and comprehensive health benefits.
- Other info: Diverse team environment with opportunities for career growth and learning.
- Why this job: Make a real impact in cyber security while growing your expertise.
- Qualifications: 5+ years in technical cyber security; investigative mindset and scripting skills preferred.
The predicted salary is between 60000 - 80000 £ per year.
S-RM is a global intelligence and cyber security consultancy. Since 2005, we have helped some of the most demanding clients in the world solve some of their toughest information security challenges.
Our Cyber Security division is the fastest-growing part of S-RM. The cyber sector is always evolving, and our Advisory, Ethical Hacking, and Incident Response practices are in more demand than ever. We are building a team to meet this challenge. We are quick to respond, innovate, and improve. We do not get too hung up on hierarchy or bureaucracy. If your ideas are good enough, we will empower you to implement them. If you are the best person to talk to a customer, you will get that opportunity, regardless of the title in your email signature. And when you need a hand, your team will always have your back.
We also do not believe there is a typical cyber security professional. We have built a team of intelligence analysts, technical specialists, software developers, investigators, risk managers, and more. You will always find a range of perspectives and expertise to help you learn and grow.
If that sounds like your kind of team, we would like to hear from you.
Our Incident Response Associates are a critical part of our Cyber Security division's success. As a Response Associate (Technical Lead), you will deploy your incident response expertise in a senior delivery role across our incident response services. You will work across the full lifecycle of security incidents to help our clients respond and recover, including:
- Leading technical incident response from first contact through to closure: you will be the primary technical resource on response cases, deploying your own expertise and offering guidance to colleagues on your project team.
- Overseeing host- and network-based incident response investigations: including triage, system recovery, technical evidence collection, forensics, log, malware and root cause analyses.
- Developing and sharing domain expertise: we will support you in growing your cyber expertise, including sharing it with the wider team through internal initiatives and programs.
- Participating in an on-call rotation to provide 24X7X365 client incident coverage.
Other features of the role include:
- Variety of casework: no day will be the same. Our team responds to a huge variety of incidents for both public and corporate clients.
- Range of opportunities: you will have opportunities to broaden your security awareness into testing and advisory projects, in addition to deepening your incident response expertise.
- Flexible working practices: responding to incidents can be intense, high-pressure work. We are mindful of our team's work/life balance and offer flexible working options to support your wellbeing.
WHAT WE'RE LOOKING FOR
Candidates with the following qualifications and experience are likely to succeed as Incident Response Associates at S-RM. That said, if you do not think you meet all of the criteria below but still are interested in the job, please apply. Nobody checks every box—we're looking for candidates that are particularly strong in a few areas and have some interest and capabilities in others. We nurture a culture of equality, diversity and inclusion and we are dedicated to developing a workforce that displays a variety of talents, experiences and perspectives.
- Experience: 5+ years' experience in a technical cyber security role. Direct experience working in an incident response team is beneficial but not essential.
- Approach: an investigative mindset. You should be comfortable solving problems with limited information and guidance.
- Threat intelligence: some demonstrable knowledge of cyber threat actors, and their tactics, techniques, and procedures.
- Skillset: you should be comfortable using scripting to solve cyber security problems and ideally be able to demonstrate an interest in doing so, e.g. through your own research projects or prior experience.
- Communication: you should be able to communicate your technical findings for a non-technical audience in a professional setting.
- Qualifications: relevant industry certifications are not required for this role. However, holding any of the following is beneficial: GCFE, GCFA, EnCE, CFSR, CISSP, GREM, CCNA, MCFE, OSCP, Network+ and Security+.
OUR BENEFITS
- 25 days holiday per year in addition to bank holidays (+1 day for every year of service up to a maximum of 30 days).
- Matching pension contribution up to 7% (up to a maximum of 14% combined), and financial education.
- Life Insurance 4X Annual salary.
- Parental Support.
- Fertility treatment leave – 5 days of leave per cycle of treatment per year.
- Maternity leave – 26 weeks of full pay followed by 13 weeks of half pay.
- Paternity leave – 6 weeks of full pay.
- Various Health and Medical Benefits.
- Private dental and medical insurance (taxable benefit).
- Virtual GP for you and your family members that live in the same household.
- Gym discounts for you and your partner.
- EAP programme for you and your immediate family.
- Free access to the mindfulness app Headspace.
The successful candidate must have permission to work in the United Kingdom by the start of their employment.
THE APPLICATION PROCESS
We want to get to know you, and for you to get to know us, to see if we would be a good fit. We are responsive and respectful of people's time throughout our hiring process. A typical application process includes:
- Initial screening of your application by our recruiting team.
- An interview to assess your baseline technical skills.
- An interview to discuss your previous experience and broader competencies.
- A final interview to determine alignment with the role.
Please apply via: Job Application for Technical Lead, Incident Response at S-RM.
Technical Lead, Incident Response in London employer: S-RM
Contact Detail:
S-RM Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Technical Lead, Incident Response in London
✨Tip Number 1
Network like a pro! Reach out to folks in the cyber security field, especially those at S-RM. Attend industry events or webinars and don’t be shy about introducing yourself. You never know who might have the inside scoop on job openings!
✨Tip Number 2
Show off your skills! If you’ve got a project or a case study that highlights your incident response expertise, share it during interviews or even on LinkedIn. It’s a great way to demonstrate your hands-on experience and problem-solving abilities.
✨Tip Number 3
Prepare for the interview by brushing up on your technical knowledge and communication skills. Be ready to explain complex concepts in simple terms, as you’ll need to communicate effectively with both technical and non-technical audiences.
✨Tip Number 4
Don’t forget to apply through our website! It’s the best way to ensure your application gets seen by the right people. Plus, it shows you’re genuinely interested in joining the S-RM team!
We think you need these skills to ace Technical Lead, Incident Response in London
Some tips for your application 🫡
Tailor Your CV: Make sure your CV reflects the skills and experiences that align with the Technical Lead role. Highlight your incident response expertise and any relevant projects you've worked on. We want to see how you can bring value to our team!
Craft a Compelling Cover Letter: Your cover letter is your chance to shine! Use it to tell us why you're passionate about cyber security and how your investigative mindset makes you a great fit for the role. Keep it engaging and personal, so we get a sense of who you are.
Showcase Your Communication Skills: Since you'll be communicating technical findings to non-technical audiences, it's crucial to demonstrate your ability to explain complex concepts clearly. Use examples in your application that show how you've done this in the past.
Apply Through Our Website: We encourage you to apply directly through our website. It’s the best way for us to receive your application and ensures you’re considered for the role. Plus, it shows us you're keen to join our team at S-RM!
How to prepare for a job interview at S-RM
✨Know Your Stuff
Make sure you brush up on your technical knowledge related to incident response. Be prepared to discuss specific incidents you've handled, the tools you used, and the outcomes. This role requires a solid understanding of cyber threats and response strategies, so show them you’re the expert they need.
✨Show Your Investigative Mindset
During the interview, demonstrate your problem-solving skills by discussing how you've tackled complex issues in the past. Use examples that highlight your ability to work with limited information and how you approached those challenges. This will resonate well with their focus on an investigative approach.
✨Communicate Clearly
You’ll need to explain technical findings to non-technical audiences, so practice articulating your thoughts clearly and concisely. Use simple language when discussing complex topics, and be ready to provide examples of how you've done this in previous roles.
✨Be Ready for Scenario Questions
Expect scenario-based questions that test your incident response skills. Prepare by thinking through various types of incidents you might encounter and how you would respond. This will not only showcase your expertise but also your ability to think on your feet under pressure.