Lead Cybersecurity Incident Responder - GIAC, IR, Cyber

Lead Cybersecurity Incident Responder - IR, Cyber, Salary:
Competitive, based on experience + benefits,

Location:

London / Hybrid (some travel European travel)

This forward-thinking cybersecurity intelligence organisation is recognised as a European leader, partnering with some of the most prominent brands to anticipate, prevent, and respond to emerging threats. You will be joining a highly skilled team made up of some of the sharpest minds in the industry, offering an environment where you can grow, innovate, and make a real impact.

We are seeking a highly experienced cybersecurity professional with a strong background in incident response and advanced security operations.

• Extensive hands‑on experience in Incident Response (IR), SOC, MSSP, CSIRT, or DFIR, with a proven ability to handle urgent and complex client incidents under pressure.
• Experience working in a 24/7 SOC environment, with a deep understanding of how SOC operations integrate with IR.
• Expert knowledge of technologies such as Microsoft security stack, DFIR tooling, SIEM, Microsoft Defender/Sentinel, EDR platforms, timeline analysis, and cloud environments (Azure, AWS, or GCP).
• Exposure to penetration testing, including red team or purple team exercises, is advantageous.
• Ability to script or automate using Bash, Perl, Python, or Power Shell.
• Strong analytical mindset and familiarity with hypothesis‑driven investigation methods.
• Confident understanding of compliance, legal requirements, and managing third‑party vendor relationships.
• Solid working knowledge of the MITRE ATT&CK framework.
• Willingness to take part in on‑call rotations.
• Excellent understanding of the cybersecurity landscape and its impact on modern organisations.

• CISSP, CISM, OSCP, GIAC, GCIH, GCFA, GCFE, GPEN, GNFA (holding at least one is preferred).

As the Lead Cybersecurity Incident Responder, you will play a critical role in guiding clients through high‑impact, time‑sensitive security incidents.

• Conducting network, host, and forensic investigations, presenting clear and actionable findings to clients.
• Providing on‑call emergency support and leading swift, effective response actions.
• Handling complex and sensitive IR engagements across a wide range of industries and technical environments.
• Acting as a trusted advisor, consulting directly with clients and collaborating with senior leadership.
• Producing detailed technical reports and executive‑level summaries.
• Mentoring and supporting junior members of the team.

We are proud to be an equal opportunities employer. Adecco is acting as an Employment Agency. We are on the client's supplier list for this position.

Incident Response, Cyber Incident Responder, DFIR, Digital Forensics, SOC Analyst, Lead Incident Responder, Cybersecurity Analyst, SIEM, Microsoft Sentinel, Microsoft Defender, EDR, Azure Security, AWS Security, GCP Security, Threat Hunting, Cyber Threat Intelligence, MITRE ATT&CK, Red Team, Purple Team, Malware Analysis, Cyber Forensics, Security Operations, Security Engineer, On‑Call IR, Penetration Testing, Python, Power Shell, Bash, Cyber Defence, CSIRT, MSSP, Network Forensics, Endpoint Forensics, Cloud Security, IR Lead, Security Consultant.