×
Register Here to Apply for Jobs or Post Jobs. X

Cyber Digital Forensics & Incident Response Manager

Remote / Online - Candidates ideally in
Inverness, Highland, IV1 9AQ, Scotland, UK
Listing for: Capgemini
Remote/Work from Home position
Listed on 2026-07-02
Job specializations:
  • IT/Tech
    Cybersecurity, IT Project Manager
Job Description & How to Apply Below
Cyber Digital Forensics & Incident Response Manager - Inverness Reference Code:

- Type:

Permanent Professional Communities:
Cybersecurity

About the job youre considering

This is a Hybrid Role Onsite 2-3 Days Per Week

Work Location either Manchester or inverness

An excellent opportunity has arisen within our Team for a Digital Forensics & Incident Response (DFIR) Manager. DFIR (Digital Forensics and Incident Response) is a specialist cyber security capability which is responsible for delivering rapid, high impact incident response and investigation during significant cyber events, such as Malware or Ransomware attacks or Cyber security breaches.

The Digital Forensics and Incident Response Manager is a leadership position within Capgeminis Cyber Defence Centres (CDCs) team, this role will oversee the DFIR Service, taking responsibility for all aspects of service delivery, and the successful candidate will be one of the foremost technical experts for all aspects of cyber incident response, ensuring that the team are all suitably trained and that cyber incidents are handled in accordance with the requirements of our clients.

You will manage a team of DFIR analysts and be responsible for the management of the services provided to our clients, ensuring they cover the key contractual deliverables/requirements and that clients are satisfied with the quality and performance of the services.

You will need to demonstrate experience of developing, managing and mentoring a Team and ensuring that appropriate resources are in place to deliver a first-class service, delivering against SLAs and KPIs.
You will also need excellent Stakeholder management skills including the ability to translate complex technical threats and vulnerabilities into executive-friendly insights that articulate potential business risks and recommended actions.

Who Youll Work With

Youll lead a close-knit team of DFIR analysts within a 24x7 oncall model, Cyber Threat Intelligence (CTI) analysts and collaborating with DFIR, CDC, and client teams. You'll be surrounded by professionals who are passionate about cybersecurity and committed.

Hybrid working :
The places that you work from day to day will vary according to your role, your needs, and those of the business; it will be a blend of Company offices, client sites, and your home; noting that you will be unable to work at home 100% of the time.

Your role

  • Lead and coordinate end-to-end cyber incident response activities, ensuring effective containment, eradication, and recovery during high-severity incidents
  • Oversee and perform digital forensic investigations, including evidence collection, preservation, and analysis across endpoint and cloud-based environments
  • Own the delivery of incident reporting and executive briefings, translating technical findings into business risk and actionable recommendations
  • Establish and maintain DFIR processes, playbooks, and runbooks, ensuring alignment with recognised standards such as NCSC CIR
  • Lead, mentor, and manage a team of DFIR analysts, ensuring operational readiness, on-call coverage, and delivery against SLAs and KPIs

You can bring your whole self to work. At Capgemini building an inclusive future is part of everyday life and will be part of your working reality. We have built a representative and welcoming environment, for everyone.

Your skills and experience

  • Experienced in managing a distributed team of DFIR specialists and related technical teams.
  • Strong experience leading cyber incident response, managing high-severity incidents and coordinating technical and stakeholder response
  • Hands-on expertise in digital forensics, including evidence collection and analysis across endpoint and cloud environments (e.g. AWS, Azure)
  • Ability to deliver clear incident reports and executive briefings, translating technical findings into business impact and actions
  • Experience developing and improving DFIR processes and playbooks, aligned to recognised frameworks such as NCSC CIR
  • Relevant industry certifications such as CREST (CPIA/CRIA) or SANS (GCIA, GCIH, GCFA).

We are a Disability Confident Employer

Capgemini is proud to be a Disability Confident Employer (Level
2) under the UK…

Note that applications are not being accepted from your jurisdiction for this job currently via this jobsite. Candidate preferences are the decision of the Employer or Recruiting Agent, and are controlled by them alone.
To Search, View & Apply for jobs on this site that accept applications from your location or country, tap here to make a Search:
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)
0
200
Filters
Education Level
Experience Level (years)
Posted in last:
Salary