About Company
Are you an Incident Response Specialist seeking to make a tangible impact? Career.zycto is a dynamic recruitment partner, dedicated to connecting top-tier cybersecurity talent with leading organisations across the UK. We understand the critical role you play in safeguarding digital assets and are committed to placing professionals in environments where their expertise is valued, challenged, and nurtured. Our mission is to empower incident responders to thrive, offering unparalleled opportunities for growth and continuous learning within the ever-evolving threat landscape. Join us in shaping the future of digital defense.
Job Description
We are seeking a highly skilled and proactive Incident Response Specialist to join a pioneering cybersecurity team based in the vibrant tech hub of Leeds. This is an exceptional opportunity for a dedicated professional to stand at the forefront of digital defense, safeguarding critical infrastructure and sensitive data against an ever-evolving threat landscape. As an Incident Response Specialist, you will be instrumental in detecting, analysing, and responding to security incidents, ensuring minimal disruption and rapid recovery. You’ll dive deep into complex cyberattacks, utilising your expertise in forensic analysis, threat hunting, and incident management to neutralise threats and strengthen our client’s security posture.
This role demands a meticulous eye for detail, a calm demeanour under pressure, and a profound understanding of cyberattack methodologies and preventative measures. You’ll collaborate closely with cross-functional teams, providing expert guidance and contributing to the continuous improvement of security operations. We’re looking for someone who thrives on challenge, is passionate about cybersecurity, and is eager to contribute to a culture of innovation and resilience. If you are ready to apply your advanced analytical skills and tactical expertise to protect against sophisticated cyber threats, and you’re keen to work within a supportive and dynamic environment that values continuous learning and professional growth, then we encourage you to apply. This role offers the chance to work with cutting-edge technologies, engage with diverse security challenges, and make a tangible difference in the security of vital digital assets.
Key Responsibilities
- Lead and manage security incidents from detection through to resolution, including containment, eradication, and recovery efforts.
- Conduct in-depth forensic analysis of compromised systems and networks to identify root causes, impact, and indicators of compromise (IOCs).
- Develop and implement incident response plans, procedures, and playbooks to enhance incident handling capabilities.
- Utilise SIEM platforms, EDR tools, and other security technologies to monitor for threats and investigate alerts.
- Perform proactive threat hunting to identify hidden threats and vulnerabilities within the environment.
- Communicate effectively with stakeholders, providing timely updates, detailed reports, and actionable recommendations.
- Participate in post-incident reviews to identify lessons learned and implement preventative measures.
- Stay current with the latest cybersecurity threats, vulnerabilities, and incident response best practices.
- Contribute to the continuous improvement of security tools, processes, and overall security posture.
Required Skills
- Proven experience in an Incident Response or Security Operations Center (SOC) role.
- Strong understanding of incident response frameworks (e.g., NIST, MITRE ATT&CK).
- Expertise in digital forensics and memory analysis techniques and tools (e.g., EnCase, FTK Imager, Volatility).
- Proficiency with SIEM solutions (e.g., Splunk, IBM QRadar, Microsoft Sentinel) and EDR platforms.
- Solid knowledge of network protocols, operating systems (Windows, Linux), and cloud environments.
- Experience with scripting languages (e.g., Python, PowerShell) for automation and analysis.
- Excellent analytical, problem-solving, and decision-making skills under pressure.
- Strong written and verbal communication skills for technical and non-technical audiences.
Preferred Qualifications
- Relevant industry certifications such as GCIH, GCFA, CISSP, CEH, or CySA+.
- Experience with cloud security platforms (AWS, Azure, GCP) and their respective security services.
- Prior experience in developing and delivering security awareness training.
- Familiarity with regulatory compliance standards (e.g., GDPR, ISO 27001).
- Experience mentoring junior analysts or leading small incident response teams.
Perks & Benefits
- Competitive salary and performance-based bonuses.
- Generous holiday allowance and pension scheme.
- Comprehensive private medical and dental insurance.
- Dedicated budget for professional development, certifications, and conferences.
- Access to cutting-edge cybersecurity tools and technologies.
- Collaborative and supportive work environment.
- Opportunities for career advancement and growth within a dynamic industry.
- Employee assistance program and wellbeing initiatives.
How to Apply
Ready to take on this critical role? We invite you to apply by clicking on the application link below. Please ensure your CV highlights your relevant experience in incident response and cybersecurity.
