Cybersecurity Senior Incident Response Lead

Overview

We’re Kingfisher, A team made up of over 78,000 passionate people who bring Kingfisher - and all our other brands: B&Q, Screwfix, Brico Depot, Castorama and Koctas - to life. That’s right, we’re big, but we have ambitions to become even bigger and even better. We want to become the leading home improvement company and grow the largest community of home improvers in the world. And that’s where you come in.

At Kingfisher our customers come from all walks of life, and so do we. We want to ensure that all colleagues, future colleagues, and applicants to Kingfisher are treated equally regardless of age, gender, marital or civil partnership status, colour, ethnic or national origin, culture, religious belief, philosophical belief, political opinion, disability, gender identity, gender expression or sexual orientation.

We are open to flexible and agile working, both of hours and location. Therefore, we offer colleagues a blend of working from home and our offices, located in London, Southampton & Yeovil. Talk to us about how we can best support you!

The lead will support the day-to-day leadership of the Cyber Defence Centre (CDC) team and services. This role involves advising the technical response to cyber incidents, ensuring effective documentation, communication, and resolution in line with the organisation’s cybersecurity policies, they will also drive strategic decisions and improvements in CDC operations, continuously enhancing the efficiency, effectiveness, and overall maturity of the cybersecurity detect and response function.

What's the job?

• Incident Management: Monitor, track, and own the progress of cybersecurity events and incidents.
• Stakeholder Communication: Maintain strong communication with stakeholders, business leaders, partners, and function heads. Ensure that all relevant parties are informed and engaged in cybersecurity initiatives.
• Threat Detection and Response: Utilise expertise in cyber threat detection, especially within cloud environments (e.g., GCP, Kubernetes) and SIEM tools like Splunk, to drive improvements in threat detection and response performance
• Crisis Management: Play a key role in crisis management, ensuring that the CDC team is prepared to respond effectively to high-priority issues and incidents.
• Strategic Improvements: Drive strategic decisions and improvements in CDC operations, continuously enhancing the efficiency, effectiveness, and overall maturity of the cybersecurity defence program.
• Best Practices: Guide the development and implementation of best practices in threat response and guide incident teams on the resolution of cyber incidents.
• Collaboration: Collaborate and build working relationships with various departments to ensure a cohesive approach to cybersecurity.
• Experience in tasking and prioritising, providing direction for a team of cybersecurity professionals.
• Evidence of driving strategic decisions and improvements in SOC operations.
• Leadership in guiding the development and implementation of best practices in threat response.
• Active experience in leading incident response events in a highly sophisticated technical and business operational environment.
• A working understanding of technical architecture and security aspects of infrastructure and cloud technologies.
• Proficiency in audit and control processes and frameworks.
• Experience in supporting forensic investigations that require auditable documentation.
• The creation and validation of threat reports for technology and business stakeholders.
• Ability to analyse incident data to identify trends and improve security posture.

What you'll bring

Be Customer Focused – constantly improving our customers’ experience 

• We listen to our customers and colleagues 

• We innovate products and experiences to stay ahead 

Be Human – leading with purpose, humanity and care 

• We do the right thing 

• We invest in our people and build great teams 

Be Curious – thrive on learning, thinking beyond the obvious 

• We focus externally, globally and build the long term 

• We experiment and share our learnings 

Be Agile – building trust and empowering people to work with agility  

• We act with pace, not perfection, role modelling 80/20 

• We take risks, fail fast and adapt quickly 

Be Inclusive – inspiring diverse teams to achieve together 

• We celebrate difference as a strength 

• We collaborate, breaking down silos 

Be Accountable – owning the plan, delivering results and growth  

• We focus on performance outcomes 

• We prioritise and simplify for others 

At Kingfisher, we value the perspectives that any new team members bring, and we want to hear from you. We encourage you to apply for one of our roles even if you do not feel you meet 100% of the requirements. 

In return, we offer an inclusive environment, where what you can achieve is limited only by your imagination! We encourage new ideas, actively support experimentation, and strive to build an environment where everyone can be their best self. Find out more about Diversity & Inclusion at Kingfisher here!  

We also offer a competitive benefits package and plenty of opportunities to stretch and grow your career. 

#LI-BN1