Cyber Incident Responder

7 months ago


Remote, United Kingdom CY4OR LEGAL LIMITED Full time

**Full job description**:
**CYFOR is a leading nationwide provider of cyber security services, digital forensics and eDiscovery. Providing services to all business sectors, including law firms, insurance providers and law enforcement agencies, CYFOR are looking for talented cyber security professionals to lead the growth of our cyber security services.**

**Here at CYFOR we look for people who can make a real difference, passionate and high performing people who thrive on technology and thinking outside the box.**

**Our employees are what makes CYFOR truly great, and as they grow so do we.**

**So if youd like a varied and highly fulfilling role, working with great colleagues in a fantastic atmosphere, wed like to hear from you.**

**The Role**

In return, youll receive a salary commensurate with experience; plus training, overtime and excellent career prospects. Youll enjoy a varied and highly fulfilling role, working with great colleagues in a fantastic atmosphere.

This is a unique opportunity to join a highly successful business that truly focuses on its main asset, its team members.

**Security Clearance**

Please note that this role will require NPPV3 clearance in addition to National security clearance to SC level. Applicants MUST have been continuously resident in the United Kingdom for the last 5 years. If you do not hold an active SC clearance, please familiarise yourself with the vetting process before applying.

**Main responsibilities**:

- Perform emergency incident response for customers; including containment (credential resets, network quarantine and EDR rollouts) to prevent further compromise and gathering of relevant forensic evidence.
- Investigate forensic evidence from compromised devices and networks to determine the root-cause of incidents and understand the actions taken by threat actors.
- Acquire and investigate server logs, firewall logs, intrusion detection system alerts, traffic logs and host system logs to determine what data has been impacted during a cyber incident using open-source tools and industry standard forensics software.
- Conduct forensic acquisitions from relevant servers and workstations
- Analyse malware to understand and communicate its impact on systems and data
- Delivering high quality technical investigation and forensic reports to clients
- Deliver regular, high-quality updates to clients throughout an investigation

You will also be required to travel at short notice for Cyber Incident response.

**Skills and Experience**
- Experience collecting forensic evidence from compromised systems.
- Experience investigating cyber incidents to understand malicious activity.
- Proven understanding of the Cyber Kill Chain, MITRE ATT&CK and other information security defence and intelligence frameworks.
- Comprehensive knowledge of incident handling, threat hunting and threat intelligence.
- Ability to correlate events from various sources to create incident timelines.
- Experience in cloud-based infrastructure including Microsoft Azure and Office 365, Amazon AWS, and Google Cloud.
- Excellent client facing skills, with the ability to communicate at all levels, adapting the style of communication to meet the needs of the audience.
- An excellent attitude and the willingness to learn and study for certifications.
- Ability to effectively plan and coordinate projects.
- Excellent written and verbal communication skills,
- An investigative mindset with a high level of attention to detail
- Demonstrate a flexible approach to work and a high level of self-motivation.
- Ability to exercise discretion and confidentiality.

**Desirable Skills**
- Previous exposure to enterprise scale infrastructure and technology stacks.
- Appropriate incident response certifications (E.g., CREST Intrusion Analyst or Incident Manager)
- Experience deploying and monitoring endpoint protection (e.g. SentinelOne) across a variety of systems during incident response

**Benefits**
- Flexible working
- Company pension scheme (3% employer contribution)
- 24 Days annual Holiday plus Bank holidays
- Extra days holiday for your birthday
- Annual holiday loyalty bonus (increasing to 30 days after 3 years)
- MediCash Cashplan
- Life Assurance (Death in Service)
- Annual Media Subscriptions (from a choice of Netflix HD, Amazon Prime, etc)


  • Cyber Specialist

    6 months ago


    Remote, United Kingdom Leidos Full time

    **Description** **Cyber Specialist** Intel Business Development Campaign As a NS&D Intel Portfolio Cyber Specialist you will be required to utilize your cyber experience to evolve advanced technical BIDS, captures and campaigns within the Intelligence Team and wider business. **Responsibilities** - Lead working groups and follow project developments. -...


  • Remote, United Kingdom Turning Point Full time

    Job Introduction Turning Point is a leading health and social care social enterprise that provides support for drug and alcohol use, mental health, learning disability, sexual health, and employment needs. A new opportunity has arisen for an Information and Cyber Security Manager to join our IT and Security Team. This is a business-focussed role with...


  • Remote, United Kingdom Turning Point Full time

    Job Introduction Turning Point is a leading health and social care social enterprise that provides support for drug and alcohol use, mental health, learning disability, sexual health, and employment needs. A new opportunity has arisen for an Information and Cyber Security Manager to join our IT and Security Team. This is a business-focussed role with an...

  • First Responder

    7 months ago


    Remote, United Kingdom First Line Medical Ltd Full time

    **Post** **Division** Operations **Hours of Work** Variable **Pay Band** 4 - £13.50 **Reports to** Director of Operations **Accountable** Director of Operations **Our Expectations**: As an employee at First Line Medical Ltd you will: - Represent the company in a professional manner at all events/locations - Undertake continuous training and...


  • Remote, United Kingdom Consortia Full time

    **Head of Information Security | Greece, Remote!** Consortia is looking for a seasoned **Head of Information Security **to fortify the security and integrity of our client's financial platforms and safeguard customer funds. In this pivotal role, you'll lead efforts to mitigate cyber threats, manage risk in cloud environments, and bolster operational...


  • Remote, United Kingdom CrowdStrike Full time

    Overview of the Company:CrowdStrike is a leading cybersecurity company that provides cloud-native security solutions to protect organizations from advanced cyber threats. Our mission is to stop breaches and keep our customers safe in an ever-evolving threat landscape.About the Role:We are looking for highly motivated and self-driven technical senior analysts...


  • Remote, United Kingdom CrowdStrike Full time

    About the RoleCrowdStrike is seeking highly skilled and motivated individuals to join our virtual security operations center as Cybersecurity Threat Analysts. In this role, you will play a crucial part in detecting and responding to sophisticated cyber threats, protecting our customers' networks and systems from advanced attacks.


  • Remote, United Kingdom IRIS Software Group Full time

    **What will you be doing?** As a Customer Support Analyst within this team, your responsibilities will be as follows: - Taking calls, raising/resolving tickets or escalating to relevant teams or 3rd party suppliers - Carrying out initial troubleshooting on customer queries and diagnostics - Using the Incident Management system to raise and resolve...


  • Remote, United Kingdom Government Consulting Solutions, LLC Full time

    Our client is looking for a dynamic, well organized, and highly motivated individual with prior relevant experience to serve as the **Facility Security Officer (FSO)** to ensure full-scope program support and compliance. The FSO will be responsible for ensuring the company’s adherence to policies, practices, and procedures of the 32 CFR Part 117 “NISPOM...


  • Remote, United Kingdom System C Full time

    **Installations Specialist - Careflow PAS** **Location: Flexible** The purpose of this role is to work within the Installations Team to deliver the requirements as part of the upgrade process, through robust software installation management and to respond to issues logged through the Service Desk that are deemed to be installation / core product...


  • Remote, United Kingdom Deel Full time

    **Who we are and what we do** Deel is a global team that helps businesses hire anyone, anywhere, easily. Deel consists of more than two thousand self-driven individuals spanning over 100 countries. Our unified yet diverse culture keeps us continually learning and innovating the Deel platform and our products for customers. Companies should be able to hire...


  • Remote, United Kingdom DomainTools Full time

    You will use your extensive experience and consultative selling skills to communicate our value to a mix of highly technical practitioners and business-level stakeholders. You will be responsible for initiating relationships with new customers and employ effective engagement strategies to successfully position DomainTools as a critical element in any...

  • Senior Health

    6 months ago


    Remote, United Kingdom Simon Lincoln Recruitment Solutions Ltd Full time

    **Major Duties**: **Responsibilities**: **Health and Safety**: - A good level of understanding and working knowledge of the Health and Safety at Work Act and experience in acting as a competent person. - Support the competent person as required by Regulation 7 of the Management of Health and Safety at Work Regulations, providing advice and guidance to...

  • Systems Administrator

    6 months ago


    Remote, United Kingdom Public Sector Resourcing Full time

    **Systems Administrator** **Contract Term: 6 Months** **Contracting Authority: MOJ** **Location: Remote working** *** The Ministry of Justice (MoJ) priorities include improving public safety and reducing reoffending by reforming prisons, probation and youth justice, and building a justice system which makes access to justice swifter and more certain for...

  • Se Leader Emea

    6 months ago


    Remote, United Kingdom Saviynt Full time

    Saviynt is an identity authority platform built to power and protect the world at work. In a world of digital transformation, where organizations are faced with increasing cyber risk but cannot afford defensive measures to slow down progress, Saviynt’s Enterprise Identity Cloud gives customers unparalleled visibility, control and intelligence to better...

  • Database Administrator

    6 months ago


    Remote, United Kingdom Daisy Corporate Services Full time

    **Company Description** - ** Location: Home Based**: - ** Working Style: Remote**: - ** Contract Type: Permanent, Full Time** **Requirement: To be eligible to gain SC Clearance** **Job Description** What does a day look like for you here?** You will be responsible for delivering proactive Managed Services in line with the contractual obligations outlined...


  • Remote, United Kingdom Police Digital Service Full time

    **Join Police Digital Service as ServiceNow Administrator** **Key Responsibilities**: - Manage, configure and maintain ServiceNow platform, including Incident, Change, Problem, Asset, Configuration, and Service Catalogue management modules. - Develop, test, and deploy ServiceNow solutions, workflows, reports, and integrations to meet business...


  • Remote, United Kingdom Educ8 Full time

    The Governors of this Bootle Primary School would like to appoint an enthusiastic and dedicated Teaching Assistant at Level 2 who has experience of delivering a range of interventions. **Main Duties**: - To work with and supervise groups of children or individual pupils under the direction/ instruction of teaching and/or senior staff. - Assist and support...


  • Remote, United Kingdom Davies Group Full time

    **Desktop Loss Adjuster** **#INDHP** We support our clients through the width and breadth of the Nation, and this is only possible with our Davies colleagues out in the field. If you enjoy using your expertise in a direct client facing role, joining Davies as a Desktop Loss Adjuster will be a great fit for you. Our Desktop Loss Adjusters all bring...


  • Remote, United Kingdom Remote Medical Inc. Full time

    **Remote Healthcare Provider (RHCP)** with Global Wind Organisation training. **ROLE SUMMARY** This position will be responsible for the management of emergent and non-emergency medical care at worksites as designated by the client or content of the scope of work (SOW). Examples of such worksites may include but are not limited to, drilling rigs, hazardous...