Chief of Technical Cyber Incident Response

3 weeks ago

London, Greater London, United Kingdom Willis Towers Watson Full time
Director of Global Cyber Incident Management

Willis Towers Watson

Job Overview

We are on the lookout for dedicated professionals to enhance the Cyber Security division at WTW, delivering exceptional service and reliable expertise across our organization. In alignment with our transformative business strategy, we are excited to introduce the role of Director of Global Cyber Incident Management.

As a pivotal member of the Cyber Defence and Security Operations team, you will take on a senior leadership position overseeing the ICS Incident Response service, ensuring WTW's capability to effectively contain and eliminate cyber threats from our systems.

The ideal candidate will possess a strong technical background, outstanding communication skills for both technical and non-technical audiences, and a robust business understanding to engage with senior stakeholders throughout the organization.

This position is well-suited for individuals with extensive experience in Incident Response within large-scale enterprises or those who have led Managed Security Service Provider (MSSP) operations, accustomed to high-pressure environments and managing teams across various geographical locations and time zones.

Key Responsibilities:

  1. Lead and cultivate a global team of Cyber Incident Responders, providing expert guidance during significant cyber incidents and for routine investigations escalated by the Security Operations Center (SOC).
  2. Oversee a diverse range of Incident Response engagements, including supplier breaches, financial fraud, and cyber-related challenges.
  3. Deliver Level 3 support to SOC, Insider Threat, and Threat Hunting teams within WTW.
  4. Formulate and execute Incident Response strategies across ICS to ensure efficient responses to various cyber threats.
  5. Collaborate with the Global Head of Strategic Cyber Incident Response to ensure that Incident Response plans within business segments are comprehensively understood by ICS.
  6. Engage with third-party vendors to establish comprehensive and effective Incident Response protocols for addressing cyber threats.
  7. Facilitate regular TableTop exercises across WTW to simulate cyber-attack scenarios.
  8. Conduct Quality Assurance assessments on SOC operations to verify that incidents have been managed appropriately.
  9. Provide briefings to senior stakeholders and board members, and liaise with legal teams and regulators as necessary.
  10. Undertake any additional tasks as directed by the Global Director of Cyber Defence.
Communication and Collaboration:
Establishing strong working relationships with team members globally is essential. You will collaborate with technical contacts throughout the organization and various third-party partners. Regular briefings to the security leadership team, board members, and other internal business units regarding threat-related matters will be required.

Qualifications

Essential:
  1. Significant experience as a senior leader within enterprise organizations, directing Incident Response Teams and managing major cyber incidents.
  2. Proven track record in handling a diverse array of Incident Response tasks leading to successful outcomes.
  3. Comprehensive understanding of financial regulations related to Incident Response to ensure compliance and legal soundness.
  4. Strong grasp of cyber risk and the methodologies employed in cyber-attacks across endpoints, cloud, and on-premise networks.
Preferred:
  1. Experience within a Global Security Operations Center, either in an MSSP capacity or an internal enterprise-level SOC.
  2. Familiarity with Sentinel and Defender for 'X'.
  3. Excellent verbal and written communication skills, with the ability to draft reports, processes, and procedures in a coherent manner.
  4. Prior exposure to various compliance and regulatory frameworks such as FCA, PCI, ISO27001, GDPR, and other global standards.
  5. Experience managing a global team operating across different time zones.
Equal Opportunity Employer
At WTW, we value diversity as a strength. We aim for our workforce to reflect the diverse markets we serve and to foster a culture of inclusivity that makes every colleague feel welcome, valued, and empowered to bring their authentic selves to work every day. We are committed to creating an inclusive work environment throughout our organization, embracing all forms of diversity.

At WTW, we trust you to understand your role and the resources you need to succeed. Most of our colleagues work in a hybrid model, balancing remote and in-office interactions based on team, role, and client needs. Our flexibility is built on trust, recognizing that hybrid work is not a one-size-fits-all approach.

  • Cyber Incident Response

    2 months ago

    London, Greater London, United Kingdom Marsh McLennan Full time

    Marsh Advisory's Consulting Solutions provides you with the insights, deep technical expertise, and global resources needed to create and implement risk management strategies that help you move beyond cost savings to building resilienceR_ Senior Managing Consultant - Incident Response AdvisoryWhat can you expect?Marsh takes an analytical, data-driven, and...

  • Cyber Incident Response Lead

    3 weeks ago

    London, Greater London, United Kingdom Royal Mail Group Full time

    Position Title: Senior Cyber Incident ResponderWork Arrangement: HybridKey Responsibilities:Oversaw the management of security incidents with a strategic approach.Ensured the operational readiness of the Security Operations team for incident response scenarios.Identified, implemented, and optimized tools for managing security incidents.Reviewed and enhanced...

  • Cyber Security Incident Response Manager

    1 week ago

    London, Greater London, United Kingdom Oliver James Full time

    Job SummaryOliver James is seeking a highly skilled Cyber Security Incident Response Manager to join our team in London. As a key member of our cyber security practice, you will be responsible for delivering incident response services to our clients, working collaboratively with colleagues and clients to identify and mitigate cyber threats.About the RoleThis...

  • Cyber Security Incident Response Manager

    3 days ago

    London, Greater London, United Kingdom Oliver James Full time

    Job Summary:Oliver James is seeking a highly skilled Cyber Security Incident Response Manager to join our team in London. As a key member of our cyber security practice, you will be responsible for delivering incident response services to our clients, working collaboratively with colleagues and clients to identify and mitigate cyber threats.Key...

  • Cyber Security Incident Response Manager

    4 days ago

    London, Greater London, United Kingdom Oliver James Full time

    Job Summary:Oliver James is seeking a highly skilled Cyber Security Incident Response Manager to join our team in London. As a key member of our cyber security practice, you will be responsible for delivering incident response services to our clients, working collaboratively with colleagues and clients to identify and mitigate cyber threats.Key...

  • Cyber Security Incident Response Manager

    2 days ago

    London, Greater London, United Kingdom Lorien Full time

    Cyber Response & Recovery ManagerJob Summary:Lorien is seeking a highly skilled Cyber Response & Recovery Manager to join our team. As a key member of our Cyber Security Operations team, you will be responsible for leading our incident response efforts and ensuring the highest level of service delivery to our clients.Key Responsibilities:Manage and...

  • Cyber Security Incident Response Manager

    3 days ago

    London, Greater London, United Kingdom Lorien Full time

    Cyber Response & Recovery ManagerJob Summary:Lorien is seeking a highly skilled Cyber Response & Recovery Manager to join our team. As a key member of our Cyber Security Operations team, you will be responsible for leading our incident response efforts and ensuring the highest level of service delivery to our clients.Key Responsibilities:Manage and...

  • Cyber Security Manager

    2 days ago

    London, Greater London, United Kingdom Lorien Full time £5,000 - £15,000

    Cyber Security Manager - Incident Response LeaderJob Summary:Lorien is seeking a highly skilled Cyber Security Manager to lead our incident response team. As a Cyber Security Manager, you will be responsible for managing and coordinating cyber security incidents for our clients, working closely with the cyber response leadership team.Key...

  • Cyber Security Manager

    2 days ago

    London, Greater London, United Kingdom Lorien Full time £5,000 - £15,000

    Cyber Security Manager - Incident Response LeaderJob Summary:Lorien is seeking a highly skilled Cyber Security Manager to lead our incident response team. As a Cyber Security Manager, you will be responsible for managing and coordinating cyber security incidents for our clients, working closely with the cyber response leadership team.Key...

  • Cyber Security Incident Response Manager

    6 days ago

    London, Greater London, United Kingdom Cognita Asia Holdings Pte Ltd Full time

    About Cognita Asia Holdings Pte LtdCognita Asia Holdings Pte Ltd is a leading global education company with a presence in 16 countries. Our mission is to provide a world-class education to over 85,000 students across the globe.Job SummaryWe are seeking a highly skilled Cyber Security Incident Response Lead to join our Group IT Team. As a key member of our...

  • Cyber Security Lead

    5 days ago

    London, Greater London, United Kingdom Cognita Schools Full time

    About Cognita SchoolsCognita Schools is a global leader in independent education, with a growing community of 100+ schools in 16 countries. Our collective purpose is to create an environment where everyone can thrive in a rapidly evolving world.About the RoleWe are seeking a Cyber Security Incident Response Lead to join our Group IT Team as we embark on an...

  • Cyber Security Lead

    4 days ago

    London, Greater London, United Kingdom Cognita Schools Full time

    About Cognita SchoolsCognita Schools is a global leader in independent education, with a growing community of 100+ schools in 16 countries. Our collective purpose is to create an environment where everyone can thrive in a rapidly evolving world.About the RoleWe are seeking a Cyber Security Incident Response Lead to join our Group IT Team as we embark on an...

  • Incident Response Lead

    4 days ago

    London, Greater London, United Kingdom Oliver James Associates Ltd. Full time

    Oliver James Associates Ltd. is partnering with a global cyber security business to hire an Incident & Response Manager to be based in a hybrid work environment. The role offers a competitive basic salary of up to c£70,000, excluding bonuses and benefits, as well as first-class training, development, research, and clear progression opportunities.This...

  • Incident Response Lead

    6 days ago

    London, Greater London, United Kingdom Oliver James Associates Ltd. Full time

    Oliver James Associates Ltd. is partnering with a global cyber security business to hire an Incident & Response Manager to be based in a hybrid work environment. The role offers a competitive basic salary of up to c£70,000, excluding bonuses and benefits, as well as first-class training, development, research, and clear progression opportunities.This...

  • Cyber Security Lead

    6 days ago

    London, Greater London, United Kingdom Cognita Asia Holdings Pte Ltd Full time

    About Cognita Asia Holdings Pte LtdCognita Asia Holdings Pte Ltd is a leading provider of education services in Asia. With a strong presence in the region, we are committed to delivering high-quality education to our students.Job SummaryWe are seeking a highly skilled Cyber Security Incident Response Lead to join our team. As a key member of our Group IT...

  • Cyber Security Lead

    4 days ago

    London, Greater London, United Kingdom Cognita Asia Holdings Pte Ltd Full time

    About Cognita Asia Holdings Pte LtdCognita Asia Holdings Pte Ltd is a leading provider of education services in Asia. With a strong presence in the region, we are committed to delivering high-quality education to our students.Job SummaryWe are seeking a highly skilled Cyber Security Incident Response Lead to join our team. As a key member of our Group IT...

  • Incident Response Manager

    4 days ago

    London, Greater London, United Kingdom Control Risks Full time

    About the RoleWe are seeking a highly skilled Cyber Response Consultant to join our team at Control Risks. As a key member of our Cyber Response team, you will be responsible for managing and delivering threat hunting solutions to our clients.Key ResponsibilitiesThreat HuntingLead threat hunting engagements to evaluate an attacker's spread through a system...

  • Incident Response Manager

    5 days ago

    London, Greater London, United Kingdom Control Risks Full time

    About the RoleWe are seeking a highly skilled Cyber Response Consultant to join our team at Control Risks. As a key member of our Cyber Response team, you will be responsible for managing and delivering threat hunting solutions to our clients.Key ResponsibilitiesThreat HuntingLead threat hunting engagements to evaluate an attacker's spread through a system...

  • Cyber Security Lead

    4 days ago

    London, Greater London, United Kingdom Cognita Asia Holdings Pte Ltd Full time

    About Cognita Asia Holdings Pte LtdCognita Asia Holdings Pte Ltd is a leading provider of education services, with a global presence in 16 countries and a commitment to delivering high-quality education to over 85,000 students.As a forward-thinking organization, we are embarking on an IT transformation project to revolutionize our incident response and...

  • Cyber Security Lead

    6 days ago

    London, Greater London, United Kingdom Cognita Asia Holdings Pte Ltd Full time

    About Cognita Asia Holdings Pte LtdCognita Asia Holdings Pte Ltd is a leading provider of education services, with a global presence in 16 countries and a commitment to delivering high-quality education to over 85,000 students.As a forward-thinking organization, we are embarking on an IT transformation project to revolutionize our incident response and...