- Type:
Permanent Professional Communities:
Cybersecurity
About the job youre considering
This is a Hybrid Role Onsite 2-3 Days Per Week
Work Location either Manchester or inverness
An excellent opportunity has arisen within our Team for a Digital Forensics & Incident Response (DFIR) Manager. DFIR (Digital Forensics and Incident Response) is a specialist cyber security capability which is responsible for delivering rapid, high impact incident response and investigation during significant cyber events, such as Malware or Ransomware attacks or Cyber security breaches.
The Digital Forensics and Incident Response Manager is a leadership position within Capgeminis Cyber Defence Centres (CDCs) team, this role will oversee the DFIR Service, taking responsibility for all aspects of service delivery, and the successful candidate will be one of the foremost technical experts for all aspects of cyber incident response, ensuring that the team are all suitably trained and that cyber incidents are handled in accordance with the requirements of our clients.
You will manage a team of DFIR analysts and be responsible for the management of the services provided to our clients, ensuring they cover the key contractual deliverables/requirements and that clients are satisfied with the quality and performance of the services.
You will need to demonstrate experience of developing, managing and mentoring a Team and ensuring that appropriate resources are in place to deliver a first-class service, delivering against SLAs and KPIs.
You will also need excellent Stakeholder management skills including the ability to translate complex technical threats and vulnerabilities into executive-friendly insights that articulate potential business risks and recommended actions.
Who Youll Work With
Youll lead a close-knit team of DFIR analysts within a 24x7 oncall model, Cyber Threat Intelligence (CTI) analysts and collaborating with DFIR, CDC, and client teams. You'll be surrounded by professionals who are passionate about cybersecurity and committed.
Hybrid working :
The places that you work from day to day will vary according to your role, your needs, and those of the business; it will be a blend of Company offices, client sites, and your home; noting that you will be unable to work at home 100% of the time.
Your role
- Lead and coordinate end-to-end cyber incident response activities, ensuring effective containment, eradication, and recovery during high-severity incidents
- Oversee and perform digital forensic investigations, including evidence collection, preservation, and analysis across endpoint and cloud-based environments
- Own the delivery of incident reporting and executive briefings, translating technical findings into business risk and actionable recommendations
- Establish and maintain DFIR processes, playbooks, and runbooks, ensuring alignment with recognised standards such as NCSC CIR
- Lead, mentor, and manage a team of DFIR analysts, ensuring operational readiness, on-call coverage, and delivery against SLAs and KPIs
You can bring your whole self to work. At Capgemini building an inclusive future is part of everyday life and will be part of your working reality. We have built a representative and welcoming environment, for everyone.
Your skills and experience
- Experienced in managing a distributed team of DFIR specialists and related technical teams.
- Strong experience leading cyber incident response, managing high-severity incidents and coordinating technical and stakeholder response
- Hands-on expertise in digital forensics, including evidence collection and analysis across endpoint and cloud environments (e.g. AWS, Azure)
- Ability to deliver clear incident reports and executive briefings, translating technical findings into business impact and actions
- Experience developing and improving DFIR processes and playbooks, aligned to recognised frameworks such as NCSC CIR
- Relevant industry certifications such as CREST (CPIA/CRIA) or SANS (GCIA, GCIH, GCFA).
We are a Disability Confident Employer
Capgemini is proud to be a Disability Confident Employer (Level
2) under the UK…
To Search, View & Apply for jobs on this site that accept applications from your location or country, tap here to make a Search: