Cyber Security Incident Manager job in Horsham West Sussex

Cyber Security Incident Manager | RSA

Cyber Security Incident Manager

Cyber Security Incident Manager

The Cyber Security Incident Manager reports to the Head of Security Services within the CISO (Chief Information Security Officer) function.

The Cyber Security Incident Manager will be responsible for managing cybersecurity incident response through the entire security incident lifecycle. You will also be responsible for managing the configuration and design of monitoring and detection technologies and services to support the incident management process.

You will be responsible for maintaining up-to-date runbooks and reporting on a set of incident detection and response metrics and leading a co-sourced team from RSA and its key suppliers to prioritize and contain incidents and threats as they arise.

In your role you will be responsible for the oversight of third parties delivering advanced incident response and forensics capabilities and will need to act as the intelligent consumer of these services.

As part of the Security Services team within RSA you will also need to assist with managing testing, infrastructure and application security activities and represent the team in design, architectural and project delivery forums.

Role Requirements

• Advanced knowledge of cybersecurity incident response practice and techniques

• Advanced knowledge modern cyber attacks

• Advanced knowledge of modern detection and response technologies and approaches

• Experience in delivering logging, monitoring and SOC capability in complex, hybrid environments

• Ability to communicate technical risk and incident information in business terms and contexts

• Relevant security qualifications or experience, with a preference for CISSP


• Developing and maintaining RSA’s cybersecurity incident response capability.

• Managing the entire lifecycle of cybersecurity incidents.

• Maintaining incident response runbooks.

• Measuring and continuously improving the capability through regular exercises, simulations and other activities.

The Individual

• Significant experience in security incident management

• Security experience, preferably in Financial Services

• Experience of running security incidents in a complex environment using a diverse toolset and involving multiple third parties

• Experience in delivering logging, monitoring and SOC capability in complex, hybrid environments


  • Location: Horsham, West Sussex
  • Job Title: Cyber Security Incident Manager
Apply For This Job

Apply For This Job