Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Lead cyber incident management plans to protect critical water services.
- Company: Thames Water is the UK's largest water and wastewater company, serving over 16 million customers.
- Benefits: Enjoy a competitive salary, generous annual leave, and a comprehensive benefits package.
- Why this job: Make a real impact on millions while enhancing your career in a diverse and supportive environment.
- Qualifications: Extensive experience in incident management; knowledge of cybersecurity frameworks is essential.
- Other info: Hybrid working model with opportunities for training and frontline support roles.
As the Cyber Incident Management Lead you will play a critical role in developing, implementing and maintaining cyber incident management plans and processes which ensure Thames Water's ability to prevent, detect, respond to and recover from cyber incidents that could disrupt critical water and waste services, or compromise information/data. You will play an integral role in ensuring the security and reliability of Thames Water's operations, reducing cyber risk to our essential services, and continuously improving our ability to respond to a cyber-attack.
What you’ll be doing as a Cyber Incident Management Lead:
- Develop, review, and update cyber incident response and recovery plans to address emerging threats and regulatory requirements.
- Work with third-party vendors, regulators, and governing bodies to ensure a cohesive response to major incidents.
- Provide feedback and recommend improvements based on exercise outcomes and lessons learned.
- Maintain records of cyber incidents, including root cause analyses and post-incident reviews.
- Prepare regular reports for leadership on the effectiveness of cyber incident management processes.
- Ensure cyber incident management compliance with applicable cybersecurity regulations and standards, such as NIS (Network and Information Systems) regulations, ISO 27001, NIST, MITRE.
Base location – Hybrid – Clear Water Court Reading
Working pattern – 36 hours Monday to Friday
What you should bring to the role:
- Essential: Extensive experience in incident management and/or IT risk management.
- Experience in critical infrastructure, utility or public sectors.
- Ability to work under pressure and manage multiple priorities.
- Strong communication and interpersonal skills to liaise effectively with technical and non-technical stakeholders.
- Proficiency in incident management tools and cybersecurity technologies.
- Knowledge of cybersecurity frameworks (e.g., ISO 27001, NIST SP 800-61, MITRE ATT&CK).
- Desirable: Bachelor’s degree in Computer Science, IT, or a related field.
- Experience of Cyber Security.
- Relevant qualifications (CISSP, CISM, CRISC).
- Previous experience conducting training and simulations to enhance organisational preparedness.
What’s in it for you?
- Competitive salary from £57,500 up to £67,500 per annum depending on experience.
- Annual Leave - 26 days holiday per year increasing to 30 with the length of service (plus bank holidays).
- Generous Pension Scheme through AON.
- Access to lots of benefits to help you take care of you and your family’s health and wellbeing, and your finances – from annual health MOTs and access to physiotherapy and counselling, to Cycle to Work schemes, shopping vouchers and life assurance.
Who are we?
We’re the UK’s largest water and wastewater company, with more than 16 million customers relying on us every day to supply water for their taps and toilets. We want to build a better future for all, helping our customers, communities, people and the planet to thrive.
Learn more about our purpose and values.
Working at Thames Water:
Thames Water is a unique, rewarding and diverse place to work, where every day you can make a difference, yet no day is the same. As part of our family, you’ll enjoy fast-tracked career opportunities, flexible working arrangements and excellent benefits.
Whether you’re interested in a role in one of our call centres or science labs, we’re looking for people like you with real passion and a burning desire to make things better.
So, if you’re looking for a sustainable and successful career where you can make a daily difference to millions of people’s lives while helping to protect the world of water for future generations, we’ll be here to support you every step of the way. Together, we can build a better future for our customers, our region and our planet.
Real purpose, real support, real opportunities. Come and join the Thames Water family.
Why choose us? Learn more.
Our overarching aim is to ensure that Thames Water is a great, diverse and inclusive place to work. We welcome applications from everyone and offer extra support for those who need it throughout the recruitment process.
When a crisis happens, we all rally around to support our customers. As part of Team Thames, you’ll have the opportunity to sign up to support our customers on the frontline as an ambassador. Full training will be given for what is undoubtedly an incredibly rewarding experience.
Disclaimer: due to the high volume of applications we receive, we may close the advert earlier than the advertised date, so we encourage you to apply as soon as possible to avoid disappointment.
Cyber Incident Management Lead employer: Thames Water
Contact Detail:
Thames Water Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Cyber Incident Management Lead
✨Tip Number 1
Familiarise yourself with the specific cybersecurity frameworks mentioned in the job description, such as ISO 27001 and NIST. Being able to discuss these frameworks in detail during your interview will demonstrate your expertise and understanding of the role.
✨Tip Number 2
Network with professionals in the cybersecurity field, especially those who have experience in incident management within critical infrastructure sectors. Engaging with industry peers can provide valuable insights and potentially lead to referrals.
✨Tip Number 3
Prepare to discuss real-life scenarios where you successfully managed cyber incidents. Highlighting your hands-on experience will show that you can handle the pressures of the role and effectively communicate with both technical and non-technical stakeholders.
✨Tip Number 4
Stay updated on the latest trends and emerging threats in cybersecurity. Being knowledgeable about current events and advancements in the field will not only help you in interviews but also position you as a proactive candidate who is committed to continuous improvement.
We think you need these skills to ace Cyber Incident Management Lead
Some tips for your application 🫡
Tailor Your CV: Make sure your CV highlights your extensive experience in incident management and IT risk management. Emphasise any relevant qualifications, such as CISSP or CISM, and showcase your proficiency in cybersecurity frameworks like ISO 27001 and NIST.
Craft a Compelling Cover Letter: In your cover letter, explain why you are passionate about cyber incident management and how your skills align with Thames Water's mission. Mention specific experiences that demonstrate your ability to work under pressure and manage multiple priorities.
Showcase Relevant Experience: When detailing your work history, focus on roles that involved critical infrastructure or public sectors. Highlight any experience working with third-party vendors and your ability to liaise with both technical and non-technical stakeholders.
Prepare for Potential Questions: Anticipate questions related to your experience with incident management tools and your approach to developing and updating cyber incident response plans. Be ready to discuss how you've handled past incidents and what lessons you learned from them.
How to prepare for a job interview at Thames Water
✨Showcase Your Incident Management Experience
Be prepared to discuss your extensive experience in incident management and IT risk management. Highlight specific examples where you've successfully managed incidents, particularly in critical infrastructure or public sectors.
✨Demonstrate Knowledge of Cybersecurity Frameworks
Familiarise yourself with relevant cybersecurity frameworks such as ISO 27001, NIST SP 800-61, and MITRE ATT&CK. Be ready to explain how you have applied these frameworks in your previous roles.
✨Communicate Effectively with Stakeholders
Strong communication skills are essential for this role. Practice explaining complex technical concepts in simple terms, as you'll need to liaise with both technical and non-technical stakeholders.
✨Prepare for Scenario-Based Questions
Expect scenario-based questions that assess your ability to respond to cyber incidents. Think through potential situations you might face and how you would handle them, focusing on your decision-making process and prioritisation skills.
