Senior Incident Responder
3 months ago
Role Purpose
The Senior Incident Response role is part of a global Incident Response team that sits within the Global Security Operations Centre (GSOC). The role is responsible for identifying and responding to cyber security incidents and enhancing the defensive capabilities of the GSOC.
LSEG GSOC is a central function employing people, process and technology to continuously monitor and respond to cyber security incidents. Security Operations spans multiple domains including cyber threat intelligence, cyber threat detection, data loss prevention and cyber incident response.
Key responsibilities
- Serve as a focal technical lead on cyber security events and incidents.
- Provide technical, hands-on incident investigation and support and serve as a main point of contact with management.
- Conduct complex digital forensics and advanced malware analysis investigations.
- Facilitate, document and manage root cause analysis and post-incident review process, including tracking all action items and lessons learned through to implementation.
- Preserve, harvest, and analyse data from computer systems including desktops, servers (virtual/physical) and appliances.
- Handle the chain of custody for all evidence collected during incidents, security, and forensic investigations.
- Build and improve defensive capabilities using monitoring technologies including SIEM and EDR.
- Perform proactive threat hunting and threat modelling to identify cyber threats.
Impact
This role has impact across all parts of the business, as it is responsible for ensuring that cyber-attacks impacting LSEG are appropriately responded to. Impacts include financial, economic, regulatory, customer and brand.
The Global Security Operations Centre (GSOC) where this role sits has responsibility for defending the entire group against cyber-attacks, parts of which are defined by different nations governments as Critical National Infrastructure (CNI).
The role is key to addressing regulatory concerns for all our regulated entities related to cyber security and cyber resilience.
Technical / job functional knowledge
- Experience performing complex digital forensic and incident response investigations.
- Deep knowledge of common operating systems (e.g. macOS, Windows, Unix, Linux) and their associated file systems.
- Proficient with industry-standard incident response toolsets such as EnCase, X-Ways, FTK and Volatility.
- Knowledge of cloud technologies and cloud infrastructures such as AWS, GCP, Azure, O365.
- Experience with conducting log analysis across different components of a typical organisation estate (e.g. OS, network, cloud).
- Deep understanding of advanced cyber adversary tools, techniques and procedures.
- Good understanding of Security Operations Centre (SOC) practices, processes and procedures.
- Good understanding of incident response processes and procedures, including common frameworks (e.g. NIST, SANS).
- Automating and refining incident response procedures/playbooks to improve SOC efficiencies.
- Policies, standards and security frameworks, NIST, CIS.
Business and sector expertise
Must have extensive experience of working in incident response such as within SOCs, digital forensics, or equivalent roles.
Preferred experience and knowledge of cyber security in global financial services and/or regulated environments.
LSEG is a leading global financial markets infrastructure and data provider. Our purpose is driving financial stability, empowering economies and enabling customers to create sustainable growth.
Our purpose is the foundation on which our culture is built. Our values of Integrity, Partnership, Excellence and Change underpin our purpose and set the standard for everything we do, every day. They go to the heart of who we are and guide our decision making and everyday actions.
Working with us means that you will be part of a dynamic organisation of 25,000 people across 65 countries. However, we will value your individuality and enable you to bring your true self to work so you can help enrich our diverse workforce. You will be part of a collaborative and creative culture where we encourage new ideas and are committed to sustainability across our global business. You will experience the critical role we have in helping to re-engineer the financial ecosystem to support and drive sustainable economic growth. Together, we are aiming to achieve this growth by accelerating the just transition to net zero, enabling growth of the green economy and creating inclusive economic opportunity.
LSEG offers a range of tailored benefits and support, including healthcare, retirement planning, paid volunteering days and wellbeing initiatives.
We are proud to be an equal opportunities employer. This means that we do not discriminate on the basis of anyone’s race, religion, colour, national origin, gender, sexual orientation, gender identity, gender expression, age, marital status, veteran status, pregnancy or disability, or any othe
-
Senior Cyber Incident Responder
2 months ago
London, United Kingdom Royal Mail Full timeRole Title: Senior Incident Responder Location: London or Sheffield (Hybrid) What will you do? You will independently lead security incident management activities with limited oversight. Ensure that RMG Security Operations is ready and able to support the organisation during incident response events. Identify and deploy requisite security...
-
Senior Cyber Incident Responder
2 months ago
London, United Kingdom Royal Mail Group Full timeRole Title: Senior Incident ResponderLocation: London or Sheffield (Hybrid) What will you do? You will independently lead security incident management activities with limited oversight. Ensure that RMG Security Operations is ready and able to support the organisation during incident response events. Identify and deploy requisite security incident...
-
Senior Incident Responder
3 months ago
London, United Kingdom London Stock Exchange Group Full timeRole Purpose The Senior Incident Response role is part of a global Incident Response team that sits within the Global Security Operations Centre (GSOC). The role is responsible for identifying and responding to cyber security incidents and enhancing the defensive capabilities of the GSOC. LSEG GSOC is a central function employing people, process and...
-
Incident Responder
3 months ago
London, United Kingdom LinkPool Full timeLinkPool is a leading validator, oracle provider, infrastructure services and ecosystem developer within the Chainlink ecosystem and wider Web3 industry.Since 2017, LinkPool has been pioneering modern infrastructure tooling to set precedent and help build an industry that shapes how agreements are formed and settled across all industries. With LinkPool being...
-
Cyber Incident Responder
3 months ago
London, United Kingdom Financial Conduct Authority Full time**Salary**: National ranging from £49,700 to £61,400 and London from £53,300 to £68,300 Interested in joining a team that is pivotal in protecting consumers and UK financial markets against cyber-crime? The team/department The Cyber and Information Resilience (C&IR) department is responsible for the protection of the FCA’s systems and data,...
-
Customer Incident Responder
2 months ago
London, United Kingdom Thames Water Utilites Full time**Who are we?** Thames Water is the UK’s largest water and wastewater company. We make a daily difference to our 15 million customers by supplying 2.6 billion litres of water through 32,000 km of pipes, keeping taps flowing and toilets flushing. At Thames Water, every one of our actions, big and small, matters every day. Water is essential to life, so...
-
Cyber Incident Responder
3 months ago
London, United Kingdom Canopius Full timeThe Role Responsibilities will include: - To act in accordance with the Canopius claims vision: “to continually push the boundaries of customer excellence through an empowered, collaborative and innovative approach to claims; to be the envy of the market”. - Be a reassuring and friendly advisor to businesses caught up in the crisis that is a cyber...
-
Incident Responder
3 months ago
London, United Kingdom BAE Systems Full time**Location(s): UK, Europe & Africa : UK : London || UK, Europe & Africa : UK : Gloucester || UK, Europe & Africa : UK : Great Baddow || UK, Europe & Africa : UK : Guildford || UK, Europe & Africa : UK : Leeds || UK, Europe & Africa : UK : London-CS || UK, Europe & Africa : UK : Manchester || UK, Europe & Africa : UK : NR- London || UK, Europe & Africa : UK :...
-
Security Incident Manager
3 days ago
London, Greater London, United Kingdom Royal Mail Group Full timeAbout the RoleWe are seeking a highly skilled Security Incident Manager to join our team at Royal Mail Group. As a key member of our Security Operations team, you will play a critical role in leading our incident response activities and ensuring the organization is prepared to respond to security incidents.Key ResponsibilitiesLead security incident...
-
Security Incident Manager
3 days ago
London, Greater London, United Kingdom Royal Mail Group Full timeAbout the RoleWe are seeking a highly skilled Security Incident Manager to join our team at Royal Mail Group. As a key member of our Security Operations team, you will play a critical role in leading our incident response activities and ensuring the organization is prepared to respond to security incidents.Key ResponsibilitiesLead security incident...
-
Senior Cyber Security Incident Manager
1 day ago
London, Greater London, United Kingdom Royal Mail Group Full timeAbout the RoleWe are seeking a highly skilled and experienced Cyber Security Incident Response Lead to join our team at Royal Mail Group. As a key member of our security operations team, you will play a critical role in leading our incident response efforts and ensuring the organization is prepared to respond to security incidents.Key ResponsibilitiesLead...
-
Senior Cyber Security Incident Manager
22 hours ago
London, Greater London, United Kingdom Royal Mail Group Full timeAbout the RoleWe are seeking a highly skilled and experienced Cyber Security Incident Response Lead to join our team at Royal Mail Group. As a key member of our security operations team, you will play a critical role in leading our incident response efforts and ensuring the organization is prepared to respond to security incidents.Key ResponsibilitiesLead...
-
Security Incident Response Lead
4 days ago
London, Greater London, United Kingdom Royal Mail Group Full timeAbout the RoleWe are seeking a highly skilled Security Incident Response Lead to join our team at Royal Mail Group. As a key member of our Security Operations team, you will play a critical role in leading our security incident management activities and ensuring that we are ready to respond to any security incidents that may arise.Key ResponsibilitiesLead...
-
Security Incident Response Lead
5 days ago
London, Greater London, United Kingdom Royal Mail Group Full timeAbout the RoleWe are seeking a highly skilled Security Incident Response Lead to join our team at Royal Mail Group. As a key member of our Security Operations team, you will play a critical role in leading our security incident management activities and ensuring that we are ready to respond to any security incidents that may arise.Key ResponsibilitiesLead...
-
Lead Cybersecurity Incident Analyst
3 weeks ago
London, Greater London, United Kingdom Royal Mail Group Full timeJob Title: Senior Cyber Incident ResponderLocation: London or Sheffield (Hybrid)Key Responsibilities:Directed the management of security incidents with comprehensive oversight.Ensured the preparedness of RMG Security Operations for incident response scenarios.Identified and implemented tools for effective security incident management.Evaluated, enhanced, and...
-
Cyber Incident Response Lead
3 weeks ago
London, Greater London, United Kingdom Royal Mail Group Full timePosition Title: Senior Cyber Incident ResponderWork Arrangement: HybridKey Responsibilities:Oversaw the management of security incidents with a strategic approach.Ensured the operational readiness of the Security Operations team for incident response scenarios.Identified, implemented, and optimized tools for managing security incidents.Reviewed and enhanced...
-
Incident Advisor
3 months ago
London, United Kingdom Environment Agency Full timeNumber of jobs available- 1 - Region- London - City/Town- London - Building/Site- Marsham Street, London, SW1P 4DF - Grade- Staff Grade 5 - Post Type- Fixed Term - Working Pattern- Full Time, Part Time, Part Time/Job Share, Part Time Term Time, Compressed Hours - Role Type- Operational Delivery - Salary Minimum- £37,462 pro rata - Job description- As a...
-
Senior Incident Manager
5 days ago
London, Greater London, United Kingdom Northern Trust Corp. Full timeJob SummaryNorthern Trust Corp. is seeking a highly skilled and experienced Senior Incident Manager to join our team. As a key member of our IT Service Management team, you will be responsible for driving and guiding major incident calls to efficiently and quickly restore service for clients and business partners.Key ResponsibilitiesExecute the major...
-
Senior Incident Manager
4 days ago
London, Greater London, United Kingdom Northern Trust Corp. Full timeJob SummaryNorthern Trust Corp. is seeking a highly skilled and experienced Senior Incident Manager to join our team. As a key member of our IT Service Management team, you will be responsible for driving and guiding major incident calls to efficiently and quickly restore service for clients and business partners.Key ResponsibilitiesExecute the major...
-
Cyber Incident Manager
2 months ago
London, United Kingdom CyberApt Recruitment Ltd Full timeThe Cyber Incident Manager is responsible for leading and managing the Cyber Incident Response Team (CIRT) to effectively respond to and mitigate cybersecurity incidents. This role involves coordinating response efforts, conducting thorough investigations, and ensuring that incidents are resolved promptly and efficiently. Lead and coordinate the response to...
