We have a new and exciting role available within our Cyber Security division in London for an Associate in the Restoration & Recovery Team. S-RM is a global intelligence and cyber security consultancy. Since 2005, we've helped some of the most demanding clients in the world solve some of their toughest information security challenges. We've been able to do this because of our outstanding people. We're committed to developing sharp, curious, driven individuals who want to think critically, solve complex problems, and achieve success. But we also know that work isn't everything. It's about the lives and careers it helps us build. We're immensely proud of this culture and we invest in our people's wellbeing, learning, and ideas every day. We're excited you're thinking about joining us. Working in cyber at S-RM Our Cyber Security division is the fastest-growing part of S-RM. The cyber sector is always evolving, and our Advisory , Ethical Hacking, and Incident Response practices are in more demand than ever. We're building a team to meet this challenge. We're quick to respond, innovate, and improve. We don't get too hung up on hierarchy or bureaucracy. If your ideas are good enough, we'll empower you to implement them. If you're the best person to talk to a customer, you'll get that opportunity, regardless of the title in your email signature. And when you need a hand, your team will always have your back. We also don't believe there's a typical cyber security professional. We've built a team of intelligence analysts, technical specialists, software developers, investigators, risk managers, and more. You'll always find a range of perspectives and expertise to help you learn and grow. If that sounds like your kind of team, we'd like to hear from you. Open roles We are looking for talented consultants to join the Restoration & Recovery team within our growing Incident Response practice. These individuals will play a critical role in the continued success of our Cyber Security division. You will work across the full lifecycle of security incidents to help our clients respond and recover, including: Overseeing restoration workstreams during Incident Response cases: you will be integral to supporting the Incident Response team to develop bespoke restoration strategies during live incidents, focusing on ensuring security and capability is maintained. Leading and developing relationships with supporting restoration partners: in some cases where we need to surge additional resources through our partners, you will need to be able to manage and direct them to achieve a positive resolution. Developing plans, policies, and training: you will be part of a team designed to strengthen the Incident Response process regarding restoration, training the Incident Response team in this area to ensure effective collaboration during cases. Developing and sharing domain expertise: we will support you in growing your cyber expertise, including sharing it with the wider team through internal initiatives and programs. On-site Restoration Support: in some cases, it may be beneficial to support clients locally at their data centres or office locations. You may be expected to attend their sites during the early stages of restoration to help support these efforts. Participating in an on-call rotation to provide 24X7X365 client incident coverage. Other features of the role include: Variety of casework: no day will be the same. Our team responds to a huge variety of incidents for both public and corporate clients. Developing an understanding of Incident Response: you will have opportunities to broaden your security awareness into the wider incident response process, learning how restoration fits into the bigger picture of a response. Flexible working practices: responding to incidents can be intense, high-pressure work. We are mindful of our team's work/life balance and offer flexible working options to support your wellbeing. What we're looking for We are looking for consultants with varying levels of seniority and experience to fill different roles within our expanding team. Initially, we are looking for candidates to join at Associate and Associate Director levels. Associate candidates will likely have moderate experience in IT Engineering, System Administration or Cyber Security. Associate Director candidates will likely have extensive equivalent experience. Candidates with the following qualifications and experience are likely to succeed as Consultants within our Restoration & Recovery team. That said, if you don't think you meet all of the criteria below but still are interested in the job, please apply. Nobody checks every box-we're looking for candidates that are particularly strong in a few areas and have some interest and capabilities in others. We nurture a culture of equality, diversity and inclusion and we are dedicated to developing a workforce that displays a variety of talents, experiences and perspectives. We're looking for candidates with: In-depth knowledge of on-premise, virtualised (ESXi / Hypervisor Technology) and Cloud-hosted (AWS / Azure / GCP) configuration and implementation In-depth knowledge of Active Directory functions, implementation, and configuration, including integrations with AzureAD functionality. Comprehensive understanding of standard backup solution practices, restoration of data and preparing systems for introduction into production environments. Comprehensive understanding of general network appliance integration and configuration as well as security and network-based tooling implementations. Relevant industry certifications are not required for this role. However, holding any of the following is beneficial: Microsoft Certified Systems Administrator (MCSA), Virutalised Environment Courses & Certifications (vCentre/vSphere), Network Administration Qualifications/Certifications. The successful candidate must have permission to work in the UK by the start of their employment. We offer thoughtful, balanced rewards and support to help our people do their best work and live their lives outside it, this includes but is not exhaustive of: 20 days holiday per year in addition to 12 public holidays (+1 day for every day of service up to a maximum of 25 days); Life insurance - 4x annual salary; Matching pension contribution up to 6% (up to a maximum of 12% combined), and financial education; Military Leave- to a maximum of 5 years; Hybrid working and flexible working hours. Parental Support: Fertility treatment leave - 5 days of leave per cycle of treatment per year; Maternity leave - 26 weeks of full pay followed by 13 weeks of half pay; Paternity leave - 6 weeks of full pay. Various Health and Medical Benefits including: 100% Company paid private medical, dental and vision insurance for employee, partner and children; Gym discounts for you and your partner; EAP programme for you and your immediate family; Free access to the world-famous mindfulness app Headspace. The application process We want to get to know you, and for you to get to know us, to see if we'd be a good fit. We are responsive and respectful of people's time throughout our hiring process. A typical application process includes: Initial screening of your application by our recruiting team. An interview to assess your baseline technical skills. An interview to discuss your previous experience, broader competencies, and suitability for the role. Get industry news and expert insights straight to your inbox.
03/02/2026
Full time
We have a new and exciting role available within our Cyber Security division in London for an Associate in the Restoration & Recovery Team. S-RM is a global intelligence and cyber security consultancy. Since 2005, we've helped some of the most demanding clients in the world solve some of their toughest information security challenges. We've been able to do this because of our outstanding people. We're committed to developing sharp, curious, driven individuals who want to think critically, solve complex problems, and achieve success. But we also know that work isn't everything. It's about the lives and careers it helps us build. We're immensely proud of this culture and we invest in our people's wellbeing, learning, and ideas every day. We're excited you're thinking about joining us. Working in cyber at S-RM Our Cyber Security division is the fastest-growing part of S-RM. The cyber sector is always evolving, and our Advisory , Ethical Hacking, and Incident Response practices are in more demand than ever. We're building a team to meet this challenge. We're quick to respond, innovate, and improve. We don't get too hung up on hierarchy or bureaucracy. If your ideas are good enough, we'll empower you to implement them. If you're the best person to talk to a customer, you'll get that opportunity, regardless of the title in your email signature. And when you need a hand, your team will always have your back. We also don't believe there's a typical cyber security professional. We've built a team of intelligence analysts, technical specialists, software developers, investigators, risk managers, and more. You'll always find a range of perspectives and expertise to help you learn and grow. If that sounds like your kind of team, we'd like to hear from you. Open roles We are looking for talented consultants to join the Restoration & Recovery team within our growing Incident Response practice. These individuals will play a critical role in the continued success of our Cyber Security division. You will work across the full lifecycle of security incidents to help our clients respond and recover, including: Overseeing restoration workstreams during Incident Response cases: you will be integral to supporting the Incident Response team to develop bespoke restoration strategies during live incidents, focusing on ensuring security and capability is maintained. Leading and developing relationships with supporting restoration partners: in some cases where we need to surge additional resources through our partners, you will need to be able to manage and direct them to achieve a positive resolution. Developing plans, policies, and training: you will be part of a team designed to strengthen the Incident Response process regarding restoration, training the Incident Response team in this area to ensure effective collaboration during cases. Developing and sharing domain expertise: we will support you in growing your cyber expertise, including sharing it with the wider team through internal initiatives and programs. On-site Restoration Support: in some cases, it may be beneficial to support clients locally at their data centres or office locations. You may be expected to attend their sites during the early stages of restoration to help support these efforts. Participating in an on-call rotation to provide 24X7X365 client incident coverage. Other features of the role include: Variety of casework: no day will be the same. Our team responds to a huge variety of incidents for both public and corporate clients. Developing an understanding of Incident Response: you will have opportunities to broaden your security awareness into the wider incident response process, learning how restoration fits into the bigger picture of a response. Flexible working practices: responding to incidents can be intense, high-pressure work. We are mindful of our team's work/life balance and offer flexible working options to support your wellbeing. What we're looking for We are looking for consultants with varying levels of seniority and experience to fill different roles within our expanding team. Initially, we are looking for candidates to join at Associate and Associate Director levels. Associate candidates will likely have moderate experience in IT Engineering, System Administration or Cyber Security. Associate Director candidates will likely have extensive equivalent experience. Candidates with the following qualifications and experience are likely to succeed as Consultants within our Restoration & Recovery team. That said, if you don't think you meet all of the criteria below but still are interested in the job, please apply. Nobody checks every box-we're looking for candidates that are particularly strong in a few areas and have some interest and capabilities in others. We nurture a culture of equality, diversity and inclusion and we are dedicated to developing a workforce that displays a variety of talents, experiences and perspectives. We're looking for candidates with: In-depth knowledge of on-premise, virtualised (ESXi / Hypervisor Technology) and Cloud-hosted (AWS / Azure / GCP) configuration and implementation In-depth knowledge of Active Directory functions, implementation, and configuration, including integrations with AzureAD functionality. Comprehensive understanding of standard backup solution practices, restoration of data and preparing systems for introduction into production environments. Comprehensive understanding of general network appliance integration and configuration as well as security and network-based tooling implementations. Relevant industry certifications are not required for this role. However, holding any of the following is beneficial: Microsoft Certified Systems Administrator (MCSA), Virutalised Environment Courses & Certifications (vCentre/vSphere), Network Administration Qualifications/Certifications. The successful candidate must have permission to work in the UK by the start of their employment. We offer thoughtful, balanced rewards and support to help our people do their best work and live their lives outside it, this includes but is not exhaustive of: 20 days holiday per year in addition to 12 public holidays (+1 day for every day of service up to a maximum of 25 days); Life insurance - 4x annual salary; Matching pension contribution up to 6% (up to a maximum of 12% combined), and financial education; Military Leave- to a maximum of 5 years; Hybrid working and flexible working hours. Parental Support: Fertility treatment leave - 5 days of leave per cycle of treatment per year; Maternity leave - 26 weeks of full pay followed by 13 weeks of half pay; Paternity leave - 6 weeks of full pay. Various Health and Medical Benefits including: 100% Company paid private medical, dental and vision insurance for employee, partner and children; Gym discounts for you and your partner; EAP programme for you and your immediate family; Free access to the world-famous mindfulness app Headspace. The application process We want to get to know you, and for you to get to know us, to see if we'd be a good fit. We are responsive and respectful of people's time throughout our hiring process. A typical application process includes: Initial screening of your application by our recruiting team. An interview to assess your baseline technical skills. An interview to discuss your previous experience, broader competencies, and suitability for the role. Get industry news and expert insights straight to your inbox.
Lab Manager / Quality Manager / Analyst, London We have a new and exciting role available within our Corporate Intelligence division in London. S-RM is a global intelligence and cyber security consultancy. Since 2005, we've helped companies, governments and private individuals solve some of their most complex challenges. We've been able to do this because of our outstanding people. We're committed to developing sharp, curious, enthusiastic people who want to think critically, solve complex problems, and achieve success. But we also know that work isn't everything. It's about the lives and careers it helps us build. We're immensely proud of this culture and we invest in our people's wellbeing, learning, and ideas every day. We're excited you're thinking about joining us. The role The successful candidate will lead on the delivery of forensic investigations as well as playing an important part in developing S-RM's Digital Forensics team. They will bring in-depth technical expertise and project management skills to effectively deliver complex projects to multinational corporate and private clients. The key areas of responsibility will be: Acting as an expert witness to support cases; Project management: Manage investigations by directing the research and analysis of analysts, reviewing output and ensuring the delivery of high-quality findings, analysis and reporting. Practice development: Contribute to thought leadership around forensic processes and procedures and support development and implementation of new technology and methodologies. Training: Deliver training on forensic preservation and analysis and other areas of expertise. Forensic preservation and analysis: Forensic evidence preservation from a range of digital sources. Conducting in-depth forensic analysis of evidence preserved from digital sources, including but not limited to: computers, mobile devices, email and personal cloud storage accounts such as iCloud, Google, and Dropbox; corporate cloud environments such as O365, AWS and Azure; third party chat applications such as WhatsApp, Signal, Skype and Telegram; and IOT devices such as gaming consoles and wearables. Research and testing: Conduct in-depth research and testing of new technologies, devices and platforms as part of investigations that are more bespoke in nature e.g. new wearable device or chat application. Develop and document processes for preserving and analysing evidence from new sources to ensure the team is kept up to date on the latest capabilities. Client and case management. The role will be based at our London office, however, we offer flexible working options to support your wellbeing. What we're looking for We think candidates with the following qualifications and experience are likely to succeed as an Senior Associate at S RM. That said, if you don't think you meet all of the criteria below but still are interested in the job, please apply. Nobody checks every box-we're looking for candidates that are particularly strong in a few areas and have some interest and capabilities in others. We nurture a culture of equality, diversity and inclusion and we are dedicated to developing a workforce that displays a variety of talents, experiences and perspectives. Ideally a Bachelor's degree in a relevant discipline from an accredited university. Relevant disciplines include any STEM or other analytical subjects. Exceptional candidates with relevant professional experience outside of these fields will be considered. Direct experience in client and case management. Experience acting as an expert witness. A minimum of 8 years professional experience servicing private sector clients in forensic and intelligence consulting, cyber incident response, or technical investigations. This requirement is a guide, ultimately we are looking for extensive experience in this industry, please feel free to apply if you have close to, or significantly more experience than is listed. Deep familiarity with digital forensics tools and techniques including but not limited to: Forensic preservation methodologies including the ACPO guidelines, chain of custody, and record keeping. iOS and Android forensics; Mac OS X forensics (preferable, not essential). Experience conducting forensic analysis and leading the technical investigation for cases including: Intellectual property theft. Fraud, embezzlement or other financial crime. Defamation and reputation damage. Employee misconduct. Insider trading. Bribery and corruption. Proven ability to deliver high quality findings from forensic analysis to board executives and legal counsel. Excellent written and communication skills. Excellent research and investigative skills. The successful candidate must have permission to work in the UK by the start of their employment. Benefits We offer thoughtful, balanced rewards and support to help our people do their best work and live their lives outside it, this includes but is not exhaustive of: 25 days holiday per year in addition to bank holidays (+1 day for every day of service up to a maximum of 30 days). Matching pension contribution up to 7% (up to a maximum of 14% combined), and financial education. Life Insurance 4X Annual salary. Parental Support: Fertility treatment leave - 5 days of leave per cycle of treatment per year. Maternity leave - 26 weeks of full pay followed by 13 weeks of half pay. Paternity leave - 6 weeks of full pay. Various Health and Medical Benefits including: Private dental and medical insurance (taxable benefit) for you and your family. Virtual GP for you and your family members that live in the same household. Various gym discounts for you and your partner. EAP programme for you and your immediate family. Free access to the world-famous mindfulness app Headspace. The application process We want to get to know you, and for you to get to know us, to see if we'd be a good fit. We are responsive and respectful of people's time throughout our hiring process. We expect the interview process will consist of a two stage interview, followed by an in person meeting. To apply, send a CV and Cover Letter to this LINK.
03/02/2026
Full time
Lab Manager / Quality Manager / Analyst, London We have a new and exciting role available within our Corporate Intelligence division in London. S-RM is a global intelligence and cyber security consultancy. Since 2005, we've helped companies, governments and private individuals solve some of their most complex challenges. We've been able to do this because of our outstanding people. We're committed to developing sharp, curious, enthusiastic people who want to think critically, solve complex problems, and achieve success. But we also know that work isn't everything. It's about the lives and careers it helps us build. We're immensely proud of this culture and we invest in our people's wellbeing, learning, and ideas every day. We're excited you're thinking about joining us. The role The successful candidate will lead on the delivery of forensic investigations as well as playing an important part in developing S-RM's Digital Forensics team. They will bring in-depth technical expertise and project management skills to effectively deliver complex projects to multinational corporate and private clients. The key areas of responsibility will be: Acting as an expert witness to support cases; Project management: Manage investigations by directing the research and analysis of analysts, reviewing output and ensuring the delivery of high-quality findings, analysis and reporting. Practice development: Contribute to thought leadership around forensic processes and procedures and support development and implementation of new technology and methodologies. Training: Deliver training on forensic preservation and analysis and other areas of expertise. Forensic preservation and analysis: Forensic evidence preservation from a range of digital sources. Conducting in-depth forensic analysis of evidence preserved from digital sources, including but not limited to: computers, mobile devices, email and personal cloud storage accounts such as iCloud, Google, and Dropbox; corporate cloud environments such as O365, AWS and Azure; third party chat applications such as WhatsApp, Signal, Skype and Telegram; and IOT devices such as gaming consoles and wearables. Research and testing: Conduct in-depth research and testing of new technologies, devices and platforms as part of investigations that are more bespoke in nature e.g. new wearable device or chat application. Develop and document processes for preserving and analysing evidence from new sources to ensure the team is kept up to date on the latest capabilities. Client and case management. The role will be based at our London office, however, we offer flexible working options to support your wellbeing. What we're looking for We think candidates with the following qualifications and experience are likely to succeed as an Senior Associate at S RM. That said, if you don't think you meet all of the criteria below but still are interested in the job, please apply. Nobody checks every box-we're looking for candidates that are particularly strong in a few areas and have some interest and capabilities in others. We nurture a culture of equality, diversity and inclusion and we are dedicated to developing a workforce that displays a variety of talents, experiences and perspectives. Ideally a Bachelor's degree in a relevant discipline from an accredited university. Relevant disciplines include any STEM or other analytical subjects. Exceptional candidates with relevant professional experience outside of these fields will be considered. Direct experience in client and case management. Experience acting as an expert witness. A minimum of 8 years professional experience servicing private sector clients in forensic and intelligence consulting, cyber incident response, or technical investigations. This requirement is a guide, ultimately we are looking for extensive experience in this industry, please feel free to apply if you have close to, or significantly more experience than is listed. Deep familiarity with digital forensics tools and techniques including but not limited to: Forensic preservation methodologies including the ACPO guidelines, chain of custody, and record keeping. iOS and Android forensics; Mac OS X forensics (preferable, not essential). Experience conducting forensic analysis and leading the technical investigation for cases including: Intellectual property theft. Fraud, embezzlement or other financial crime. Defamation and reputation damage. Employee misconduct. Insider trading. Bribery and corruption. Proven ability to deliver high quality findings from forensic analysis to board executives and legal counsel. Excellent written and communication skills. Excellent research and investigative skills. The successful candidate must have permission to work in the UK by the start of their employment. Benefits We offer thoughtful, balanced rewards and support to help our people do their best work and live their lives outside it, this includes but is not exhaustive of: 25 days holiday per year in addition to bank holidays (+1 day for every day of service up to a maximum of 30 days). Matching pension contribution up to 7% (up to a maximum of 14% combined), and financial education. Life Insurance 4X Annual salary. Parental Support: Fertility treatment leave - 5 days of leave per cycle of treatment per year. Maternity leave - 26 weeks of full pay followed by 13 weeks of half pay. Paternity leave - 6 weeks of full pay. Various Health and Medical Benefits including: Private dental and medical insurance (taxable benefit) for you and your family. Virtual GP for you and your family members that live in the same household. Various gym discounts for you and your partner. EAP programme for you and your immediate family. Free access to the world-famous mindfulness app Headspace. The application process We want to get to know you, and for you to get to know us, to see if we'd be a good fit. We are responsive and respectful of people's time throughout our hiring process. We expect the interview process will consist of a two stage interview, followed by an in person meeting. To apply, send a CV and Cover Letter to this LINK.
A global consultancy is seeking a Lab Manager / Forensic Analyst in London. The role involves managing a digital forensics lab and conducting forensic analyses. Ideal candidates will have proven technical expertise in digital forensics, experience in lab operations, and familiarity with ISO/IEC 17025 principles. Strong communication and organizational skills are essential. Flexible work arrangements are available, with a primary focus on onsite operations.
03/02/2026
Full time
A global consultancy is seeking a Lab Manager / Forensic Analyst in London. The role involves managing a digital forensics lab and conducting forensic analyses. Ideal candidates will have proven technical expertise in digital forensics, experience in lab operations, and familiarity with ISO/IEC 17025 principles. Strong communication and organizational skills are essential. Flexible work arrangements are available, with a primary focus on onsite operations.
We have a new and exciting role available within our Cyber Security division in the U.K for an Incident Response Engagement Lead. S-RM is a global intelligence and cybersecurity consultancy. Since 2005, we've helped some of the most demanding clients in the world solve some of their toughest information security challenges. We've been able to do this because of our outstanding people. We're committed to developing sharp, curious, driven individuals who want to think critically, solve complex problems, and achieve success. But we also know that work isn't everything, it's about the lives and careers it helps us build. We're immensely proud of this culture and we invest in our people's wellbeing, learning, and ideas every day. We're excited you're thinking about joining us. Working in Cyberat S-RM Our Cybersecurity division is the newest and fastest-growing part of S-RM. The cyber sector is always evolving, and our Advisory , Testing , Incident Response and Forensics practices are in more demand than ever. We're building a team to meet this challenge. We're quick to respond, innovate, and improve. We don't get too hung up on hierarchy or bureaucracy. If your ideas are good enough, we'll empower you to implement them. We also don't believe there's a typical cybersecurity professional. We've built a team of intelligence analysts, technical specialists, software developers, investigators, risk managers, and more. You'll always find a range of perspectives and expertise to draw on and help you grow. If that sounds like your kind of team, we'd like to hear from you. The role We are looking for a German speaking consultant to join our Cyber Incident Response team as an Engagement Lead. A successful cyber response only happens when a group of technical experts works seamlessly with a team leader who can get the best out of them. Role responsibilities include: Project scoping: you will be a first responder to cyber-attacks, running triage calls with clients to understand the scope of the incident and setting out how S-RM can support. Project management: from that first call to the incident's conclusion, you will be responsible for ensuring the response is managed effectively and efficiently, delivering for all stakeholders while on schedule and within budget. Typical workstreams include: Working with clients to ensure that incidents are contained. Overseeing a team of forensic analysts investigating the incident. Advising strategies for responding to cyber threat actors. Providing crisis management expertise to help clients navigate the incident. Relationship management: you will be responsible for building and developing relationships with the various stakeholders involved in a cyber incident, from the victims themselves to lawyers and insurance professionals. We nurture a culture of equality, diversity and inclusion, and we are dedicated to developing a workforce that displays a variety of talents, experiences, and perspectives. What we're looking for We think candidates with the following skills and experience are likely to succeed as Incident Response Engagement Leads at S-RM. You will need great consulting skills and a developed understanding of networks and security technologies. We will prioritise candidates with demonstrable digital forensics and incident response ('DFIR') experience, especially those that have worked in an incident handling capacity before. However, we'd encourage candidates with adjacent experience to apply. We believe that, with the right training, anyone that fits the profile below can make an excellent Engagement Lead. We have a proven track record of supporting those from diverse backgrounds to develop into this role. Native or professional fluency in German language . A calm and empathetic style when under pressure. A thoughtful approach to solving problems. An instinct to seek the expertise of others and bring diverse skillsets together. Excellent client service and advocacy skills in your daily work. Candidates must have permission to work in the United Kingdom by the start of their employment. We offer thoughtful, balanced rewards and support to help our people do their best work and live their lives outside of work. This includes but is not exhaustive of: 23 days holiday per year in addition to public holidays (+1 day for every year of service up to a maximum of 30 days in total);yes Hybrid working and flexible working hours; Matching pension contribution up to 7% (up to a maximum of 14% combined), and financial education; Life Insurance 4X annual salary. Parental Support: Fertility treatment leave - 5 days of leave per cycle of treatment per year; Maternity leave - 26 weeks of full pay followed by 13 weeks of half pay; Paternity leave - 6 weeks of full pay. Various Health and Medical Benefits including: Medical insurance (taxable benefit) for you and your family; Virtual GP for you and your family members that live in the same household; EAP programme for you and your immediate family; Free access to the world-famous mindfulness app The application process We want to get to know you, and for you to get to know us, to see if we'd be a good fit. We are responsive and respectful of people's time throughout our hiring process. A typical application process includes: Initial screening of your application by our recruiting team. An interview to assess your baseline technical skills. An interview to discuss your previous experience, broader competencies, and suitability for the role. Receive industry news and expert insights First name Last name Company email Job title S-RM is committed to protecting and respecting your privacy, and we'll only use your personal information to administer your account and to provide the services you requested from us. By clicking submit below, you consent to allow us to send you thought leadership and updates on S-RM's services via email, in addition to storing and processing the personal information submitted above to provide you the content requested. You can update your preferences or unsubscribe at any time. Please select the newsletter(s) you would like to subscribe to. All newsletters and thought leadership from S-RM's global teams. Cyber insights Receive Cyber Intelligence Briefing our weekly analysis of the top cyber security news stories hitting the headlines plus threat alerts, guides and insights on managing cyber security. ESG Watch Monthly round up of the latest ESG regulations and policies from around the globe. Latest thinking Thought leadership, ideas and insights on the latest trends and issues in cyber security and corporate intelligence. Global Risk Hub Commentary and insights on developing geopolitical risks plus quarterly bulletins on travel risk, political violence and kidnapping. Subscribe to our insights Receive industry news and expert insights First name Last name Company email Job title S-RM is committed to protecting and respecting your privacy, and we'll only use your personal information to administer your account and to provide the services you requested from us. By clicking submit below, you consent to allow us to send you thought leadership and updates on S-RM's services via email, in addition to storing and processing the personal information submitted above to provide you the content requested. You can update your preferences or unsubscribe at any time. Please select the newsletter(s) you would like to subscribe to. All newsletters and thought leadership from S-RM's global teams. Cyber insights Receive Cyber Intelligence Briefing our weekly analysis of the top cyber security news stories hitting the headlines plus threat alerts, guides and insights on managing cyber security. ESG Watch Monthly round up of the latest ESG regulations and policies from around the globe. Latest thinking Thought leadership, ideas and insights on the latest trends and issues in cyber security and corporate intelligence. Global Risk Hub Commentary and insights on developing geopolitical risks plus quarterly bulletins on travel risk, political violence and kidnapping. Get industry news and expert insights straight to your inbox.
03/02/2026
Full time
We have a new and exciting role available within our Cyber Security division in the U.K for an Incident Response Engagement Lead. S-RM is a global intelligence and cybersecurity consultancy. Since 2005, we've helped some of the most demanding clients in the world solve some of their toughest information security challenges. We've been able to do this because of our outstanding people. We're committed to developing sharp, curious, driven individuals who want to think critically, solve complex problems, and achieve success. But we also know that work isn't everything, it's about the lives and careers it helps us build. We're immensely proud of this culture and we invest in our people's wellbeing, learning, and ideas every day. We're excited you're thinking about joining us. Working in Cyberat S-RM Our Cybersecurity division is the newest and fastest-growing part of S-RM. The cyber sector is always evolving, and our Advisory , Testing , Incident Response and Forensics practices are in more demand than ever. We're building a team to meet this challenge. We're quick to respond, innovate, and improve. We don't get too hung up on hierarchy or bureaucracy. If your ideas are good enough, we'll empower you to implement them. We also don't believe there's a typical cybersecurity professional. We've built a team of intelligence analysts, technical specialists, software developers, investigators, risk managers, and more. You'll always find a range of perspectives and expertise to draw on and help you grow. If that sounds like your kind of team, we'd like to hear from you. The role We are looking for a German speaking consultant to join our Cyber Incident Response team as an Engagement Lead. A successful cyber response only happens when a group of technical experts works seamlessly with a team leader who can get the best out of them. Role responsibilities include: Project scoping: you will be a first responder to cyber-attacks, running triage calls with clients to understand the scope of the incident and setting out how S-RM can support. Project management: from that first call to the incident's conclusion, you will be responsible for ensuring the response is managed effectively and efficiently, delivering for all stakeholders while on schedule and within budget. Typical workstreams include: Working with clients to ensure that incidents are contained. Overseeing a team of forensic analysts investigating the incident. Advising strategies for responding to cyber threat actors. Providing crisis management expertise to help clients navigate the incident. Relationship management: you will be responsible for building and developing relationships with the various stakeholders involved in a cyber incident, from the victims themselves to lawyers and insurance professionals. We nurture a culture of equality, diversity and inclusion, and we are dedicated to developing a workforce that displays a variety of talents, experiences, and perspectives. What we're looking for We think candidates with the following skills and experience are likely to succeed as Incident Response Engagement Leads at S-RM. You will need great consulting skills and a developed understanding of networks and security technologies. We will prioritise candidates with demonstrable digital forensics and incident response ('DFIR') experience, especially those that have worked in an incident handling capacity before. However, we'd encourage candidates with adjacent experience to apply. We believe that, with the right training, anyone that fits the profile below can make an excellent Engagement Lead. We have a proven track record of supporting those from diverse backgrounds to develop into this role. Native or professional fluency in German language . A calm and empathetic style when under pressure. A thoughtful approach to solving problems. An instinct to seek the expertise of others and bring diverse skillsets together. Excellent client service and advocacy skills in your daily work. Candidates must have permission to work in the United Kingdom by the start of their employment. We offer thoughtful, balanced rewards and support to help our people do their best work and live their lives outside of work. This includes but is not exhaustive of: 23 days holiday per year in addition to public holidays (+1 day for every year of service up to a maximum of 30 days in total);yes Hybrid working and flexible working hours; Matching pension contribution up to 7% (up to a maximum of 14% combined), and financial education; Life Insurance 4X annual salary. Parental Support: Fertility treatment leave - 5 days of leave per cycle of treatment per year; Maternity leave - 26 weeks of full pay followed by 13 weeks of half pay; Paternity leave - 6 weeks of full pay. Various Health and Medical Benefits including: Medical insurance (taxable benefit) for you and your family; Virtual GP for you and your family members that live in the same household; EAP programme for you and your immediate family; Free access to the world-famous mindfulness app The application process We want to get to know you, and for you to get to know us, to see if we'd be a good fit. We are responsive and respectful of people's time throughout our hiring process. A typical application process includes: Initial screening of your application by our recruiting team. An interview to assess your baseline technical skills. An interview to discuss your previous experience, broader competencies, and suitability for the role. Receive industry news and expert insights First name Last name Company email Job title S-RM is committed to protecting and respecting your privacy, and we'll only use your personal information to administer your account and to provide the services you requested from us. By clicking submit below, you consent to allow us to send you thought leadership and updates on S-RM's services via email, in addition to storing and processing the personal information submitted above to provide you the content requested. You can update your preferences or unsubscribe at any time. Please select the newsletter(s) you would like to subscribe to. All newsletters and thought leadership from S-RM's global teams. Cyber insights Receive Cyber Intelligence Briefing our weekly analysis of the top cyber security news stories hitting the headlines plus threat alerts, guides and insights on managing cyber security. ESG Watch Monthly round up of the latest ESG regulations and policies from around the globe. Latest thinking Thought leadership, ideas and insights on the latest trends and issues in cyber security and corporate intelligence. Global Risk Hub Commentary and insights on developing geopolitical risks plus quarterly bulletins on travel risk, political violence and kidnapping. Subscribe to our insights Receive industry news and expert insights First name Last name Company email Job title S-RM is committed to protecting and respecting your privacy, and we'll only use your personal information to administer your account and to provide the services you requested from us. By clicking submit below, you consent to allow us to send you thought leadership and updates on S-RM's services via email, in addition to storing and processing the personal information submitted above to provide you the content requested. You can update your preferences or unsubscribe at any time. Please select the newsletter(s) you would like to subscribe to. All newsletters and thought leadership from S-RM's global teams. Cyber insights Receive Cyber Intelligence Briefing our weekly analysis of the top cyber security news stories hitting the headlines plus threat alerts, guides and insights on managing cyber security. ESG Watch Monthly round up of the latest ESG regulations and policies from around the globe. Latest thinking Thought leadership, ideas and insights on the latest trends and issues in cyber security and corporate intelligence. Global Risk Hub Commentary and insights on developing geopolitical risks plus quarterly bulletins on travel risk, political violence and kidnapping. Get industry news and expert insights straight to your inbox.
A leading consulting firm in Greater London is seeking a Lab Manager / Quality Manager / Analyst to lead forensic investigations and develop the Digital Forensics team. The role demands in-depth technical expertise, project management skills, and the ability to deliver high-quality findings to clients. The successful candidate will have a minimum of 8 years of experience in forensic and intelligence consulting and must be able to work independently and collaboratively with flexibility offered in work arrangements.
03/02/2026
Full time
A leading consulting firm in Greater London is seeking a Lab Manager / Quality Manager / Analyst to lead forensic investigations and develop the Digital Forensics team. The role demands in-depth technical expertise, project management skills, and the ability to deliver high-quality findings to clients. The successful candidate will have a minimum of 8 years of experience in forensic and intelligence consulting and must be able to work independently and collaboratively with flexibility offered in work arrangements.
Lab Manager / Forensic Analyst, London We have a new and exciting role available within our Corporate Intelligence division in London. Who we are S-RM is a global intelligence and cyber security consultancy. Since 2005, we've helped companies, governments and private individuals solve some of their most complex challenges. We've been able to do this because of our outstanding people. We're committed to developing sharp, curious, enthusiastic people who want to think critically, solve complex problems, and achieve success. But we also know that work isn't everything. It's about the lives and careers it helps us build. We're immensely proud of this culture and we invest in our people's wellbeing, learning, and ideas every day. We're excited you're thinking about joining us. The role The successful candidate will lead on the management of our digital forensics lab, including our ISO/IEC 17025 accreditation, as well as playing an important part in the delivery of forensic investigations as a forensic analyst. This role encompasses a range of responsibilities and the day-to-day work will vary depending on the business requirements, ongoing investigations, and ISO accreditation cycle. The key areas of responsibility are: FORENSIC ACQUISITION AND ANALYSIS Act as a digital forensics analyst, performing and overseeing forensic acquisition and analysis of digital devices, including: Mobile devices (iOS and Android) Laptops and desktop computers (Windows and macOS) Removable media and other digital storage devices Cloud platforms (iCloud, Google Workspace, Microsoft 365, AWS) Conduct forensically sound imaging, verification, and preservation of digital evidence, ensuring compliance with established SOPs, chain of custody requirements, and ISO/IEC 17025 principles. LAB MANAGEMENT Oversee the day-to-day management and operation of the Digital Forensics Lab, ensuring facilities, workflows, and equipment are maintained to required standards. Provide technical and operational support to the Digital Forensics team, including coordination with colleagues responsible for tooling and infrastructure. Prepare clear summaries, metrics, and reports relating to laboratory operations, validation activity, and audit outcomes for review by senior stakeholders. Work closely with senior colleagues to support the attainment of ISO/IEC 17025 accreditation, including management of validation records, SOPs, training documentation, and audit readiness. Author, review, and maintain Standard Operating Procedures (SOPs) covering digital forensic tools, methodologies, and lab workflows. Plan, perform, and document validation of forensic tools and processes, ensuring methods are fit for purpose, reproducible, and defensible in line with ISO/IEC 17025 requirements. Support the preparation for and coordination of internal and external audits, including addressing findings and tracking corrective actions. This position will be based in our London office and will require a primarily on site presence, although some flexibility for working remotely will be available. What we're looking for Candidates with the following skills and experience are likely to succeed within this function at S-RM. That said, if you don't think you meet all of the criteria below but still are interested in the job, please apply. Nobody checks every box-we're looking for candidates that are particularly strong in a few areas and have some interest and capabilities in others. We nurture a culture of equality, diversity and inclusion and we are dedicated to developing a workforce that displays a variety of talents, experiences and perspectives. We're looking for someone with some or all of these skills who can adapt to change and work comfortably in a fast-paced and dynamic environment: Proven technical experience in Digital Forensics, including forensic acquisition and analysis, with the ability to work independently on casework as an analyst when required. Experience working in a digital forensics lab environment, including practical involvement in evidence handling, forensic imaging, and lab maintenance. Experience supporting or contributing to quality management systems within a digital forensics environment. Any experience in the management of a Digital Forensics laboratory will be beneficial. Familiarity with ISO/IEC 17025 principles and requirements, including exposure to SOPs, validation, documentation, training records, and audit preparation. Experience supporting internal or external audits, maintaining records, and ensuring documentation remains accurate and up to date. Willingness to take ownership of laboratory administration, including supporting tooling, workflows, and technical infrastructure in collaboration with senior colleagues. Excellent written and verbal communication skills, including the ability to document processes clearly and engage with technical and non-technical stakeholders. Strong organisational skills, with the ability to manage competing priorities and work effectively under time pressure. London-based, with the ability to attend the laboratory at short notice when required. All candidates must have permission to work in the UK by the start of their employment. Our benefits We offer thoughtful, balanced rewards and support to help our people do their best work and live their lives outside it, this includes but is not exhaustive of: 25 days holiday per year in addition to bank holidays (+1 day for every day of service up to a maximum of 30 days); Matching pension contribution up to 7% (up to a maximum of 14% combined), and financial education; Life Insurance 4X Annual salary. Parental Support: Fertility treatment leave - 5 days of leave per cycle of treatment per year; Maternity leave - 26 weeks of full pay followed by 13 weeks of half pay; Paternity leave - 6 weeks of full pay. Various Health and Medical Benefits including: Private dental and medical insurance (taxable benefit) for you and your family; Virtual GP for you and your family members that live in the same household; Various gym discounts for you and your partner; EAP programme for you and your immediate family; Free access to the world-famous mindfulness app The role will be based in our London office. However, we have flexible working arrangements available. The application process We want to get to know you, and for you to get to know us, to see if we'd be a good fit. We are responsive and respectful of people's time throughout our hiring process. We expect the interview process will consist of a two-stage interview, followed by an in-person meeting. To apply, send a CV and Cover Letter to this LINK . Subscribe to our insights Get industry news and expert insights straight to your inbox.
02/02/2026
Full time
Lab Manager / Forensic Analyst, London We have a new and exciting role available within our Corporate Intelligence division in London. Who we are S-RM is a global intelligence and cyber security consultancy. Since 2005, we've helped companies, governments and private individuals solve some of their most complex challenges. We've been able to do this because of our outstanding people. We're committed to developing sharp, curious, enthusiastic people who want to think critically, solve complex problems, and achieve success. But we also know that work isn't everything. It's about the lives and careers it helps us build. We're immensely proud of this culture and we invest in our people's wellbeing, learning, and ideas every day. We're excited you're thinking about joining us. The role The successful candidate will lead on the management of our digital forensics lab, including our ISO/IEC 17025 accreditation, as well as playing an important part in the delivery of forensic investigations as a forensic analyst. This role encompasses a range of responsibilities and the day-to-day work will vary depending on the business requirements, ongoing investigations, and ISO accreditation cycle. The key areas of responsibility are: FORENSIC ACQUISITION AND ANALYSIS Act as a digital forensics analyst, performing and overseeing forensic acquisition and analysis of digital devices, including: Mobile devices (iOS and Android) Laptops and desktop computers (Windows and macOS) Removable media and other digital storage devices Cloud platforms (iCloud, Google Workspace, Microsoft 365, AWS) Conduct forensically sound imaging, verification, and preservation of digital evidence, ensuring compliance with established SOPs, chain of custody requirements, and ISO/IEC 17025 principles. LAB MANAGEMENT Oversee the day-to-day management and operation of the Digital Forensics Lab, ensuring facilities, workflows, and equipment are maintained to required standards. Provide technical and operational support to the Digital Forensics team, including coordination with colleagues responsible for tooling and infrastructure. Prepare clear summaries, metrics, and reports relating to laboratory operations, validation activity, and audit outcomes for review by senior stakeholders. Work closely with senior colleagues to support the attainment of ISO/IEC 17025 accreditation, including management of validation records, SOPs, training documentation, and audit readiness. Author, review, and maintain Standard Operating Procedures (SOPs) covering digital forensic tools, methodologies, and lab workflows. Plan, perform, and document validation of forensic tools and processes, ensuring methods are fit for purpose, reproducible, and defensible in line with ISO/IEC 17025 requirements. Support the preparation for and coordination of internal and external audits, including addressing findings and tracking corrective actions. This position will be based in our London office and will require a primarily on site presence, although some flexibility for working remotely will be available. What we're looking for Candidates with the following skills and experience are likely to succeed within this function at S-RM. That said, if you don't think you meet all of the criteria below but still are interested in the job, please apply. Nobody checks every box-we're looking for candidates that are particularly strong in a few areas and have some interest and capabilities in others. We nurture a culture of equality, diversity and inclusion and we are dedicated to developing a workforce that displays a variety of talents, experiences and perspectives. We're looking for someone with some or all of these skills who can adapt to change and work comfortably in a fast-paced and dynamic environment: Proven technical experience in Digital Forensics, including forensic acquisition and analysis, with the ability to work independently on casework as an analyst when required. Experience working in a digital forensics lab environment, including practical involvement in evidence handling, forensic imaging, and lab maintenance. Experience supporting or contributing to quality management systems within a digital forensics environment. Any experience in the management of a Digital Forensics laboratory will be beneficial. Familiarity with ISO/IEC 17025 principles and requirements, including exposure to SOPs, validation, documentation, training records, and audit preparation. Experience supporting internal or external audits, maintaining records, and ensuring documentation remains accurate and up to date. Willingness to take ownership of laboratory administration, including supporting tooling, workflows, and technical infrastructure in collaboration with senior colleagues. Excellent written and verbal communication skills, including the ability to document processes clearly and engage with technical and non-technical stakeholders. Strong organisational skills, with the ability to manage competing priorities and work effectively under time pressure. London-based, with the ability to attend the laboratory at short notice when required. All candidates must have permission to work in the UK by the start of their employment. Our benefits We offer thoughtful, balanced rewards and support to help our people do their best work and live their lives outside it, this includes but is not exhaustive of: 25 days holiday per year in addition to bank holidays (+1 day for every day of service up to a maximum of 30 days); Matching pension contribution up to 7% (up to a maximum of 14% combined), and financial education; Life Insurance 4X Annual salary. Parental Support: Fertility treatment leave - 5 days of leave per cycle of treatment per year; Maternity leave - 26 weeks of full pay followed by 13 weeks of half pay; Paternity leave - 6 weeks of full pay. Various Health and Medical Benefits including: Private dental and medical insurance (taxable benefit) for you and your family; Virtual GP for you and your family members that live in the same household; Various gym discounts for you and your partner; EAP programme for you and your immediate family; Free access to the world-famous mindfulness app The role will be based in our London office. However, we have flexible working arrangements available. The application process We want to get to know you, and for you to get to know us, to see if we'd be a good fit. We are responsive and respectful of people's time throughout our hiring process. We expect the interview process will consist of a two-stage interview, followed by an in-person meeting. To apply, send a CV and Cover Letter to this LINK . Subscribe to our insights Get industry news and expert insights straight to your inbox.
Senior Analyst, (Delivery Lead), Incident Response London We have a new and exciting role available within our Cyber Security division in London for a Senior Analyst in the Incident Response Team. S-RM is a global intelligence and cybersecurity consultancy. Since 2005, we've helped some of the most demanding clients in the world solve some of their toughest information security challenges. We've been able to do this because of our outstanding people. We're committed to developing sharp, curious, driven individuals who want to think critically, solve complex problems, and achieve success. But we also know that work isn't everything, it's about the lives and careers it helps us build. We're immensely proud of this culture and we invest in our people's wellbeing, learning, and ideas every day. We're excited you're thinking about joining us. Working in Cyber at S-RM Our Cybersecurity division is the newest and fastest-growing part of S-RM. The cyber sector is always evolving, and our Advisory , Testing , Incident Response and Forensics practices are in more demand than ever. We're building a team to meet this challenge. We're quick to respond, innovate, and improve. We don't get too hung up on hierarchy or bureaucracy. If your ideas are good enough, we'll empower you to implement them. We also don't believe there's a typical cybersecurity professional. We've built a team of intelligence analysts, technical specialists, software developers, investigators, risk managers, and more. You'll always find a range of perspectives and expertise to draw on and help you grow. If that sounds like your kind of team, we'd like to hear from you. Our Incident Response Delivery Leads are a critical part of our Cyber Security division's success. As a Delivery Lead on our team, you will deploy your incident response expertise across our incident response services, with a focus on helping clients impacted by cyber incidents in the DACH region. You will work across the full lifecycle of security incidents to help our clients respond and recover, including: Providing technical incident response from first contact through to closure: you will form part of the primary technical resource team on response cases, deploying your own expertise and offering guidance to colleagues on your project team. Delivering host- and network-based incident response investigations: including triage, system recovery, technical evidence collection, forensics, log, malware and root cause analyses. Developing and sharing domain expertise: we will support you in growing your cyber expertise, including sharing it with the wider team through internal initiatives and programs. Participating in an on-call rotation to provide 24x7x365 client incident coverage. Other features of the role include: Variety of casework: no day will be the same. Our team responds to a huge variety of incidents for both public and corporate clients. Range of opportunities: you will have opportunities to broaden your security awareness into testing and advisory projects, in addition to deepening your incident response expertise. Flexible working practices: responding to incidents can be intense, high-pressure work. We are mindful of our team's work/life balance and offer flexible working options to support your wellbeing. Native or professional fluency in German language . Direct experience working in an Incident Response team is strongly preferred, however, candidates with exposure to working with Incident Response teams, or those in roles reflecting aspects of Incident Response will be considered. A critical and investigative mindset. You should be comfortable solving problems with limited information and guidance, developing proportionate strategies to achieve timely outcomes. Clear demonstrable knowledge of cyber threat actors, and their tactics, techniques, and procedures. Demonstrable understanding of the basic workstreams within an incident response engagement. Providing evidence of engagement with forensics, containment and restoration/recovery is a benefit. You are comfortable using scripting to solve cyber security problems and ideally be able to demonstrate an interest in doing so, e.g. through your own research projects or prior experience. It is strongly recommended that candidates hold one of the following certifications (or equivalent) GCFE, GCFA, GCIH, GNFA. However, holding any of the following is beneficial: EnCE, CFSR, CISSP, GREM, CCNA, MCFE, OSCP, Network+ and Security+ The successful candidate must have permission to work in the UK by the start of their employment. We offer thoughtful, balanced rewards and support to help our people do their best work and live their lives outside it, this includes but is not exhaustive of: 25 days holiday per year in addition to bank holidays (+1 day for every year of service up to a maximum of 30 days); Hybrid working and flexible working hours; Matching pension contribution up to 7% and financial education; Fertility treatment leave - 5 days of leave per cycle of treatment per year; Maternity leave - 26 weeks of full pay followed by 13 weeks of half pay; Paternity leave - 6 weeks of full pay. Private dental and medical insurance (taxable benefit) for you and your family; Virtual GP for you and your family members that live in the same household; Various gym discounts for you and your partner; The role will be based in our London office. However, we have flexible working arrangements available. The application process We want to get to know you, and for you to get to know us, to see if we'd be a good fit. We are responsive and respectful of people's time throughout our hiring process. A typical application process includes: Initial screening of your application by our recruiting team. An interview to assess your baseline technical skills. An interview to discuss your previous experience, broader competencies, and suitability for the role. Get industry news and expert insights straight to your inbox.
02/02/2026
Full time
Senior Analyst, (Delivery Lead), Incident Response London We have a new and exciting role available within our Cyber Security division in London for a Senior Analyst in the Incident Response Team. S-RM is a global intelligence and cybersecurity consultancy. Since 2005, we've helped some of the most demanding clients in the world solve some of their toughest information security challenges. We've been able to do this because of our outstanding people. We're committed to developing sharp, curious, driven individuals who want to think critically, solve complex problems, and achieve success. But we also know that work isn't everything, it's about the lives and careers it helps us build. We're immensely proud of this culture and we invest in our people's wellbeing, learning, and ideas every day. We're excited you're thinking about joining us. Working in Cyber at S-RM Our Cybersecurity division is the newest and fastest-growing part of S-RM. The cyber sector is always evolving, and our Advisory , Testing , Incident Response and Forensics practices are in more demand than ever. We're building a team to meet this challenge. We're quick to respond, innovate, and improve. We don't get too hung up on hierarchy or bureaucracy. If your ideas are good enough, we'll empower you to implement them. We also don't believe there's a typical cybersecurity professional. We've built a team of intelligence analysts, technical specialists, software developers, investigators, risk managers, and more. You'll always find a range of perspectives and expertise to draw on and help you grow. If that sounds like your kind of team, we'd like to hear from you. Our Incident Response Delivery Leads are a critical part of our Cyber Security division's success. As a Delivery Lead on our team, you will deploy your incident response expertise across our incident response services, with a focus on helping clients impacted by cyber incidents in the DACH region. You will work across the full lifecycle of security incidents to help our clients respond and recover, including: Providing technical incident response from first contact through to closure: you will form part of the primary technical resource team on response cases, deploying your own expertise and offering guidance to colleagues on your project team. Delivering host- and network-based incident response investigations: including triage, system recovery, technical evidence collection, forensics, log, malware and root cause analyses. Developing and sharing domain expertise: we will support you in growing your cyber expertise, including sharing it with the wider team through internal initiatives and programs. Participating in an on-call rotation to provide 24x7x365 client incident coverage. Other features of the role include: Variety of casework: no day will be the same. Our team responds to a huge variety of incidents for both public and corporate clients. Range of opportunities: you will have opportunities to broaden your security awareness into testing and advisory projects, in addition to deepening your incident response expertise. Flexible working practices: responding to incidents can be intense, high-pressure work. We are mindful of our team's work/life balance and offer flexible working options to support your wellbeing. Native or professional fluency in German language . Direct experience working in an Incident Response team is strongly preferred, however, candidates with exposure to working with Incident Response teams, or those in roles reflecting aspects of Incident Response will be considered. A critical and investigative mindset. You should be comfortable solving problems with limited information and guidance, developing proportionate strategies to achieve timely outcomes. Clear demonstrable knowledge of cyber threat actors, and their tactics, techniques, and procedures. Demonstrable understanding of the basic workstreams within an incident response engagement. Providing evidence of engagement with forensics, containment and restoration/recovery is a benefit. You are comfortable using scripting to solve cyber security problems and ideally be able to demonstrate an interest in doing so, e.g. through your own research projects or prior experience. It is strongly recommended that candidates hold one of the following certifications (or equivalent) GCFE, GCFA, GCIH, GNFA. However, holding any of the following is beneficial: EnCE, CFSR, CISSP, GREM, CCNA, MCFE, OSCP, Network+ and Security+ The successful candidate must have permission to work in the UK by the start of their employment. We offer thoughtful, balanced rewards and support to help our people do their best work and live their lives outside it, this includes but is not exhaustive of: 25 days holiday per year in addition to bank holidays (+1 day for every year of service up to a maximum of 30 days); Hybrid working and flexible working hours; Matching pension contribution up to 7% and financial education; Fertility treatment leave - 5 days of leave per cycle of treatment per year; Maternity leave - 26 weeks of full pay followed by 13 weeks of half pay; Paternity leave - 6 weeks of full pay. Private dental and medical insurance (taxable benefit) for you and your family; Virtual GP for you and your family members that live in the same household; Various gym discounts for you and your partner; The role will be based in our London office. However, we have flexible working arrangements available. The application process We want to get to know you, and for you to get to know us, to see if we'd be a good fit. We are responsive and respectful of people's time throughout our hiring process. A typical application process includes: Initial screening of your application by our recruiting team. An interview to assess your baseline technical skills. An interview to discuss your previous experience, broader competencies, and suitability for the role. Get industry news and expert insights straight to your inbox.